Hi All,
I have developed a custom component and I'm facing an issue related to CSP. When I open the component from the quick action for the first time it works well, but when I close the window that contains the component and I open it again (from the quick action), I'm facing in the console the following error and the component will never load. 

Refused to execute JavaScript URL because it violates the following Content Security Policy directive: "script-src 'self' chrome-extension: https://sfdc.azureedge.net *.na35.visual.force.com https://ssl.gstatic.com/accessibility/". Either the 'unsafe-inline' keyword, a hash ('sha256-...'), or a nonce ('nonce-...') is required to enable inline execution.

Screenshot from Chrome browser.




Note: if I deactive Lightning LockerService Security I'm not facing that problem, but the component never load.

Is this an issue or is going to be the default behaviour from now?

has anyone had this problem?

Thanks in advance