credential-management/fedcm-csp.https.html.sub.headers - external/w3c/web-platform-tests - Git at Google

 Cross-Origin-Embedder-Policy: credentialless
 Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline'; img-src 'self'
	Cross-Origin-Embedder-Policy: credentialless
	Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline'; img-src 'self'