Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'sha256-cOUXIsNVwguhsLRkGp9NT9PmvjTuL4AP5HlxssvXg3c=' 'sha256-xiLBM6A1WduQ4n9vH5+ALsMOh+SC7rDPnVBpne67YgA=' 'sha256-R7F4+7EETNodzRMLTkRE3z8dxXqVMuFyqdoyijeFRgw=' 'self' 'unsafe-inline'".