No CSP header in the HTTP response?

Why when I check the Response Headers of the first HTTP response I see no CSP?

No Content Security Policy is set in Streamlit pages?

(Iā€™m using streamlit cloud to host my webpage)