Result: Only whitelisted domains can be fetched. CSP provides security by blocking unauthorized requests.