Index: openacs-4/packages/richtext-ckeditor4/tcl/richtext-procs.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/richtext-ckeditor4/tcl/richtext-procs.tcl,v
diff -u -r1.1.2.5 -r1.1.2.6
--- openacs-4/packages/richtext-ckeditor4/tcl/richtext-procs.tcl	15 May 2016 11:39:23 -0000	1.1.2.5
+++ openacs-4/packages/richtext-ckeditor4/tcl/richtext-procs.tcl	7 Sep 2016 12:08:00 -0000	1.1.2.6
@@ -69,9 +69,18 @@
             CKEDITOR.replace( '$text_id', {$ckOptions} );
         }]
 
-        template::head::add_javascript -src "//cdn.ckeditor.com/4.5.9/standard/ckeditor.js"
+        template::head::add_javascript -src "//cdn.ckeditor.com/4.5.10/standard/ckeditor.js"
 
         #
+        # add required directives for content security policies
+        #
+        security::csp::require script-src 'unsafe-eval'
+        security::csp::require script-src 'unsafe-inline'
+        security::csp::require script-src cdn.ckeditor.com
+        security::csp::require style-src cdn.ckeditor.com
+        security::csp::require img-src cdn.ckeditor.com
+        
+        #
         # do we need render_widgets?
         #
         return ""