← Back to Sign In

Content Security Policy

Our Content Security Policy (CSP) is designed to protect our users from various types of attacks, including Cross-Site Scripting (XSS) and other code injection attacks.

Policy Details

  • Default-src self
  • Script-src self unsafe-inline unsafe-eval
  • Style-src self unsafe-inline
  • Img-src self data: https:
  • Font-src self
  • Connect-src self

Implementation

This policy is implemented through HTTP headers and is enforced by modern web browsers.