A URL or resource may be blocked by ProxySG policy because the Threat Risk Score returned by Intelligence Services.
However, access to the domain may be needed.
The Threat Risk score is assigned automatically through an algorithm and cannot be changed manually.
The score can change over time, but to access the sites/domain until the Threat Risk score changes,
you can override the Threat Risk Score assigned with policy.
Add the below CPL rules to your Local Policy File in the proxySG/ASG:
url.domain=example.com variable.url.threat_risk.effective_level(1) ALLOW
where example.com must be replaced with the URL domain whose Threat Score you want to override.
For information on how to add CPL policy see: Add CPL to a local policy file on the ProxySG