Has anyone else started experiencing issues with some javascript in MyAccount? Noticed today that an outsider service "ZenDesk" is not longer working within MyAccount along with another legacy "onclick" event handler. Looking at the browser console, I see an error message like this: •

Content-Security-Policy: The page's settings blocked a script (script-src-elem)

•

Content-Security-Policy: The page's settings blocked an event handler (script-src-attr) from being executed because it violates the following directive: "script-src 'unsafe-eval'

Fairly sure this is related to recent maintenance for the 2025.1 release. If anyone else has experienced it, any suggestions on how you fixed it?

I don't have an answer, but I have seen this when people have set overzealous settings in the Security Headers section of the configuration record. You haven't done this have you?

nope. nothing like that has changed or been updated. I honestly was sure if this was a SC thing or a browser update thing TBH. The timing of our SC bundle getting updated to 2024.2 and this issue being noticed could be coincidental