I have developed a Chrome extension (Manifest V3) that is functioning as expected under normal circumstances. However, I have encountered an issue when integrating this extension with a separate web application that has Content Security Policy (CSP) enabled.
When CSP is activated on the web application, the extension triggers several CSP errors, such as the following:
"Refused to apply inline style because it violates the following Content Security Policy directive: 'default-src 'self''. Either the 'unsafe-inline' keyword, a hash ('sha256-vCJmv4Wgwg='), or a nonce ('nonce-...') is required to enable inline execution."
Notably, when the extension is disabled, these errors do not appear in the console.
I am currently unsure of the steps required to investigate and resolve this issue. I would greatly appreciate any guidance or direction that could assist me in addressing this problem.