Many thanks for answering very quickly, Martin!

I configure the CSP using NinjaFirewall WP+ Edition.

After reading the links you supplied I think there is a big chance I break some other WP core and plugin functionalities when using script-src ‘unsafe-inline’.

I have not tested my other plugins WP core functions enough to know if they properly. I just noticed that FV Player got problems loading the videos.

I guess the best thing for me probably is to wait for WP to become free from inline scripts.

Thank a lot for sheding some light on CSP!

Stein :)