correct CSP frame-src value for a scripted iframe src?

A html file contains
<iframe src="javascript:''"></iframe>

Chrome logs:
"[Report Only] Refused to load frame from 'about:blank' because of
Content-Security-Policy."

What would be the correct frame-src value that allows it?

Thanks,
Ingo Chao

Received on Wednesday, 2 May 2012 15:07:20 UTC