CONSOLE ERROR: The Content Security Policy 'script-src 'nonce-abc';' was delivered in report-only mode, but does not specify a 'report-uri'; the policy will have no effect. Please either add a 'report-uri' directive, or deliver the policy via the 'Content-Security-Policy' header.
CONSOLE ERROR: [Report Only] Refused to load the script 'http://web-platform.test:8001/content-security-policy/script-src/externalScript.js' because it violates the following Content Security Policy directive: "script-src 'nonce-abc'".

