Since 5 days ago the juptyer/notebook now uses a --development webpack build by default.
Unfortunately this is incompatible with a sensible Content Security Policy which does not have unsafe-eval
included.
This is the line here: notebook/package.json at 79fc76e890a8ec42f73a3d009e44ef84c14ef0d5 · jupyter/notebook · GitHub
And this is the merge request here:
How come the newest versions of Jupyter/Notebook uses a development webpack build?