I am trying to define content-security-policy to get images from limited sources.
const csp = req.headers.set(\'Content-Security-Policy\' : "default-src
