Refused to load the script 'https://www.googletagmanager.com/gtag/js?id=G-8G1FP5SHDE' because it violates the following Content Security Policy directive: "script-src 'self'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-xe7U3N5rb5J7X9Jhp29L4buleWgu9Zj9UEen2lYCKuA='), or a nonce ('nonce-...') is required to enable inline execution.