So I have a glitch project that I’m trying to connect to a mongoDB and it’s generating an error:
analytics.min.js:9 Refused to load the script 'https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.js' because it violates the following Content Security Policy directive: "script-src 'self' https://apis.google.com https://cdnjs.cloudflare.com https://cdn.segment.com https://ajax.googleapis.com https://*.woopra.com [...] http://www.luckyorange.com https://ssl.luckyorange.com https://d10lpsik1i8c69.cloudfront.net". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
It looks like a
meta tag was added to my project’s header that included this content security policy… I couldn’t find it in any of the source files, so I created a new project just to test, and sure enough the same
meta tag was there, leading me to believe that glitch automatically adds this in to all projects. Is there anyway to modify this behavior? If not, can anyone take a look at my project linked above and suggest a workaround?