hello Folks Does anyone have an example of content security policy (CSP) that would allow all traffic from rudderstack? it seems like if we have to actually outline all 3rd party url rudderstack uses it'd be pretty tall order to come up w/ a CSP that encompasses all of them

That is why we keep it everything 1st party and proxy + use cloud destinations over device - avoids adblock too

thanks, I'll look into the proxy