Content Security Policy for script-src in SharePoint 2019 Onpremise

I would like to check if anyone could access on the content-security-policy for SharePoint 2019 onpremise. 

My appscan has detected and mandated the use of CSP for frame-ancestors, object-src and script-src. I'm facing issue with script-src it seemed that it requires the use of 'unsafe-inline' and 'unsafe-eval' which the IT security team disagree. Is there any way to set script-src without the use of 'unsafe-inline' and 'unsafe-eval'?

Here is my CSP: Content-Security-Policy: frame-ancestors 'self' https://domain.com/; object-src 'self' https://domain.com/ ; script-src 'self' 'unsafe-inline' 'unsafe-eval'