Refused to load the script ' because it violates the following Content Security Policy directive: "default-src 'self code example

Example 1: Refused to load the imagebecause it violates the following Content Security Policy directive: "img-src 'self' data: content:".

<meta http-equiv="Content-Security-Policy" content="default-src * gap:; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src *; img-src * data: blob: android-webview-video-poster:; style-src * 'unsafe-inline';">

Example 2: Refused to execute inline script because it violates the following Content Security Policy directive

If you are using React:

create a .env file in project root

Add variable as follows: INLINE_RUNTIME_CHUNK=false

Build the project again and load the extension again.

Tags:

Misc Example