[TOOL-3874] Portal: Fix pl.js script CSP error

[MananTank]

---

PR-Codex overview

This PR updates the Content Security Policy (CSP) in the next.config.mjs file to enhance security by modifying the script-src directive.

Detailed summary

• Updated the script-src directive to include thirdweb.com and thirdweb-dev.com without the wildcard prefix.
• Retained existing sources in the script-src directive.

✨ Ask PR-Codex anything about this PR by commenting with /codex {your question}

[linear]

TOOL-3874 Fix posthog script failed to load error because of CSP error in portal

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
docs-v2	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Mar 31, 2025 5:51pm

4 Skipped Deployments

Name	Status	Preview	Comments	Updated (UTC)
login	⬜️ Skipped (Inspect)			Mar 31, 2025 5:51pm
thirdweb_playground	⬜️ Skipped (Inspect)			Mar 31, 2025 5:51pm
thirdweb-www	⬜️ Skipped (Inspect)			Mar 31, 2025 5:51pm
wallet-ui	⬜️ Skipped (Inspect)			Mar 31, 2025 5:51pm

[changeset-bot]

⚠️ No Changeset found

Latest commit: 3d140ee

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[MananTank]

• [TOOL-3874] Portal: Fix pl.js script CSP error #6591 👈 (View in Graphite)
• main

---

How to use the Graphite Merge Queue

Add either label to this PR to merge it via the merge queue:

• merge-queue - adds this PR to the back of the merge queue
• hotfix - for urgent hot fixes, skip the queue and merge this PR next

You must have a Graphite account in order to use the merge queue. Sign up using this link.

An organization admin has enabled the Graphite Merge Queue in this repository.

Please do not merge from GitHub as this will restart CI on PRs being processed by the merge queue.

This stack of pull requests is managed by Graphite. Learn more about stacking.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 54.96%. Comparing base (a5f005f) to head (3d140ee).
Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #6591   +/-   ##
=======================================
  Coverage   54.96%   54.96%           
=======================================
  Files         885      885           
  Lines       55517    55517           
  Branches     3793     3793           
=======================================
  Hits        30513    30513           
  Misses      24911    24911           
  Partials       93       93           

Flag	Coverage Δ
packages	54.96% <ø> (ø)

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

size-limit report 📦

Path	Size	Loading time (3g)	Running time (snapdragon)	Total time
thirdweb (esm)	47.56 KB (0%)	952 ms (0%)	128 ms (+114.18% 🔺)	1.1 s
thirdweb (cjs)	127.31 KB (0%)	2.6 s (0%)	204 ms (+27.93% 🔺)	2.8 s
thirdweb (minimal + tree-shaking)	5.6 KB (0%)	113 ms (0%)	53 ms (+1091.7% 🔺)	165 ms
thirdweb/chains (tree-shaking)	506 B (0%)	10 ms (0%)	29 ms (+1719.49% 🔺)	39 ms
thirdweb/react (minimal + tree-shaking)	19.34 KB (0%)	387 ms (0%)	74 ms (+526.98% 🔺)	460 ms

[graphite-app]

Merge activity

• Mar 31, 1:43 PM EDT: MananTank added this pull request to the Graphite merge queue.
• Mar 31, 1:51 PM EDT: A user merged this pull request with the Graphite merge queue.