In my content script I make a XHR request to get a audio url for my Audio() object to play. But in developer.mozilla.org webpage, I got a CSP warning, and the audio can not be played.
so ,in my manifest.json
file, I just rewrite the default CSP police like this
"content_security_policy": "script-src 'self' ; media-src https://openapi.youdao.com/; object-src 'self' *://*.youdao.com/*"
but it seems not work, I still got the CSP warning.
and this is my audio url https://openapi.youdao.com/ttsapi?q=once&langType=en&sign=DF8808E04044C6900DF696ED44D0DC8D&salt=1648873379040&voice=4&format=mp3&appKey=30b3aa18e38ef10f&ttsVoiceStrict=false