allow for meaningful Content Security Policy (CSP) headers to be set. It is good practice to avoid inline JavaScript in your plugins as well. If your project’s CSP policy does not allow inline JavaScript, inline communicate with the frontend editor. This allows projects to enforce strict Content Security Policies (CSP) without any issues. For a fully working project, it is also important that other packages used, especially JavaScript. This change enhances the security posture of your django CMS projects by enabling the use of CSP headers to mitigate cross- site scripting (XSS) and other code injection attacks. Use cases: Full