Scripts injected via `eval` are allowed with `strict-dynamic` with `unsafe-eval`.