Manual:$wgCSPFalsePositiveUrls/en

List of urls which appear often to be triggering CSP reports but do not appear to be caused by actual content, but by client software inserting scripts (i.e. Ad-Ware). List based on results from Wikimedia logs.

A value of $true for a certain URL activates it as a false-positive.

The default value is based on URLs of spam that comes into the Wikimedia log files, based on testing on elwiki.