Inline script attached by DOM manipulation should not run without an 'unsafe-inline' script-src policy, even with default-src *

assert_equals("script-src-elem", "script-src-elem")
    at Test.<anonymous> ( /content-security-policy/script-src/addInlineTestsWithDOMManipulation.js:6:4)