style-src

selfblob: ‘unsafe-inline’ ‘unsafe-eval’ fonts.google.com fonts.gstatic.com fonts.googleapis.com unpkg.com cdn.jsdelivr.net cdnjs.cloudflare.com

The HTTP Content-Security-Policy (CSP) style-src directive specifies valid sources for stylesheets.