https://www.flags.co.uk https://fonts.gstatic.com https://fonts.googleapis.com unsafe-inline: https://www.google.com https://assets.braintreegateway.com none: https://api.braintreegateway.com https://api.sandbox.braintreegateway.com https://payments.sandbox.braintree-api.com https://payments.braintree-api.com https://origin-analytics-sand.braintree-api.com https://origin-analytics-sand.sandbox.braintree-api.com none: https://www.googleapis.com https://www.google.com https://www.gstatic.com https://js.braintreegateway.com none: report-sample: * unsafe-inline: unsafe-eval: block-all-mixed-content: none: none: none: