remote
Options for controlling remote resources in the publication for non-scripted content-documents.
Please note that you may need to specify directives in your app's Content-Security-Policy as a element or as an HTTP header as well since these are inherited by child iframes used for rendering content-documents.