Disable Content Security Policy

if refresh the risk me. are 点击可乐icon，红色代表csp被禁用，灰色代表csp正在生效。 turns cola xss. it not. policy(csp). the not to gray,it's you 如果没作用，刷新页面试试。 know it enable page content red,it's being it under 一个帮助你禁用csp的扩展。 or extension that should working.when work,try you by 你应该知道禁用后你就处于xss攻击的风险下了。 turns helps icon.when a click or the you contact security bypass it,you attacked that disable if