Tricks or overrides to make ExtJS application strict CSP compatible

Question

when the server sends a restrictive Content-Security-Policy header,

Content-Security-Policy: default-src \'self\'; script-src \'self\'; img-src \'self\'