AddToAny With A Strict CSP

Use a nonce

1. Generate a nonce per request, for example:
   MzY4OTIwNTUwNiw1NzU0NTg3OTg=
2. Include the nonce in your strict CSP:
   Content-Security-Policy: script-src 'nonce-MzY4OTIwNTUwNiw1NzU0NTg3OTg='
3. Add the nonce attribute to your AddToAny <script> tag like so:
   <script async nonce="MzY4OTIwNTUwNiw1NzU0NTg3OTg=" src="https://static.addtoany.com/menu/page.js"></script>