Content security polices - source of scripts

AvinashDevadass · ‎02-22-2024

We are working on a security improvement for our portal content (secutiry-content-polices), and we need to include a limitation on script origins in the http header. We include the image, media and frame sources, but we still have a pending to include the platform sources. When we include the source <instance>.service-now.com, we lose access to the instance.

Here is a link to the documentation that we are using to support the activity.

David_K · ‎10-23-2024

Hello @AvinashDevadass

Have you possibly found a solution yourself yet?
We unfortunately have the same problem

thoemu_s · ‎06-05-2025

any news on this?