Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' https://www.google.com".
Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' https://www.google.com".
SSLを使えば外部SCRIPTを呼ぶことができる。
pop.html
manifest.json
"content_security_policy": "script-src 'self' https://www.google.com; object-src 'self'"