Some applications enforce CSP settings. Use these:
script-src 'unsafe-inline' https://*.productfruits.com;
connect-src https://*.productfruits.com;
style-src 'unsafe-inline' https://*.productfruits.com;
img-src data: https://*.productfruits.com https://productfruits-akamai.azureedge.net;
frame-src https://*.productfruits.com;
If you use our Giphy, Tenor, Typeform or other integrations, you must also set their CSP properly.