Engineers are currently investigating the issue.
Summary:
The admin of AWS Academy has found a misconfigured Content-Security-Policy, potentially allowing malicious users to perform an XSS attack: unsafe-inline defined in directive: default-src script-src!
Expected Behavior:
Reconfigure the web server to address the issue: 'unsafe-inline' directive defined!.
