Insecure "unsafe-eval" directive used in browser header for riskminder-client.js The is a client side issue if the riskminder-client.js uses eval() and Function(). The hotfix to address this issue exists and can be requested via a Broadcom support case. Refer to https://stackoverflow.com/questions/37155270/content-security-policy-csp-safe-usage-of-unsafe-eval. Essentially, usage of eval function and Function function is unsafe. Such functions in any application allow any user to execute arbitrary code.
Release : 9.1.x