Content Security Policy directive: "script-src" issues

That’s fine to rely on other documentation but how about referring to it? It would be simple to add one line to the documentation to link the afore mentioned page.