Add https://cca-lite.coinbase.com to CSP connect-src directive

[devin-ai-integration]

Description

Added https://cca-lite.coinbase.com to the CSP connect-src directive in the AppKit security documentation. This change allows applications using AppKit to establish network connections to Coinbase's CCA Lite service.

Changes made:

• Updated the connect-src directive in /advanced/security/content-security-policy.mdx to include the Coinbase domain
• Maintained existing CSP syntax and formatting
• Added the domain at the end of the existing connect-src list

This change is part of a coordinated update across both the documentation and AppKit laboratory middleware to ensure consistent CSP configuration.

Tests

• - Ran the changes locally with Mintlify and confirmed that the changes appear as expected.
• - Ran a grammar check on the updated/created content using ChatGPT.
• - Verified CSP syntax is valid and properly formatted
• - Confirmed the added domain matches the requested URL exactly

Direct link to the deployed preview files

• Preview Link 1
• Preview Link 2

Review Checklist

Critical items to verify:

• The Coinbase URL https://cca-lite.coinbase.com is correctly spelled and formatted
• CSP syntax remains valid (proper spacing, semicolon placement)
• Documentation renders without errors in Mintlify
• No other CSP configurations in the docs need updating for consistency

Context:

• Requested by @tomiir in Slack
• Link to Devin run: https://app.devin.ai/sessions/51cad8a479594fb89676c281a60203ee
• This is a companion change to a similar update in the AppKit laboratory middleware

[devin-ai-integration]

🤖 Devin AI Engineer

I'll be helping with this pull request! Here's what you should know:

✅ I will automatically:

• Address comments on this PR. Add '(aside)' to your comment to have me ignore it.
• Look at CI failures and help fix them

Note: I can only respond to comments from users who have write access to this repository.

⚙️ Control Options:

• Disable automatic comment and CI monitoring

[github-actions]

@devin-ai-integration[bot] Please review the tone of voice for the content changes in this PR against Reown's brand guidelines.

📝 Content Review Request

Files to review: 1

• advanced/security/content-security-policy.mdx

Review focus:

• Tone alignment with Reown's brand guidelines
• Clear and accessible language for developers
• Professional yet approachable communication
• Consistent terminology usage

Guidelines summary:

• Clear & Accessible: Translate complex ideas into approachable language
• Professional yet Friendly: Maintain authority while being welcoming
• Developer-Focused: Understand technical audience but remain inclusive
• Avoid: Overly casual language, fear-based messaging, buzzwords, jargon without explanation
• Embrace: Clear explanations, confident tone, transparency, respectful communication

Please analyze the content changes and provide constructive feedback on tone and voice alignment.