I have never implemented a CSP through the .htaccess file before so I might be completely missing something here.

I am getting the following error:

I have added the following to the .htaccess:

<IfModule mod_headers.c>
  Header add Content-Security-Policy "script-src-elem 'self' 'unsafe-inline' data: .js   .js .js;"
</IfModule>

But the error hasn't gone away. I get this error even before adding a CSP to the .htaccess file. Could there be a policy added somewhere I'm not seeing?

Thanks!