10055-11βCSP: Meta Policy Invalid Directive
PUBLISHEDsecurity alertMedium
Passive
Metadata
Summary
The policy specified via meta element contains either or both the sandbox or frame-ancestors directive, which are not permitted inside meta CSP definitions.
Solution
Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.