Fix $csp rules being applied even when Shields are down

[antonok-edm]

$csp rules, like all adblock filter rules, have some potential of causing webcompat issues. It should be possible to prevent injecting them altogether by bringing Shields down.

[srirambv]

Verification passed on the following devices running 1.25.72 x64 build

• Verified test plan from Update adblock-rust with CSP rule support brave-core#8281
• Unable to verify test plan from CSP (content security policy) breaks some sites when they are launched from an existing web page #16251 (comment) as file url is not supported on Android

OnePlus 6T(Android 10)	Samsung Tab A (Android 10)

[GeetaSarvadnya]

Verification passed on

<!--StartFragment-->
Brave | 1.25.72 Chromium: 91.0.4472.101&nbsp;(Official Build)&nbsp;(64-bit)
-- | --
Revision | af52a90bf87030dd1523486a1cd3ae25c5d76c9b-refs/branch-heads/4472@{#1462}
OS | Windows&nbsp;10 OS Version 2004 (Build 19041.985)

<!--EndFragment-->

• Verified the test plan from Tie CSP rule injection to Shields ads/tracker setting brave-core#9053

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. is shown in the console when Shields are up and ads/trackers blocked setting is the standard - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. is shown in the console when Shields are up and ads/trackers blocked setting is aggressive mode - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. isn't shown in the console when Shields are down - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. isn't shown in the console when Shields ads/trackers are allowed - PASSED

Shield UP - Ads and trackers is Standarad

Shield UP - Ads and trackers is Aggressive

Shield Down

Shield Up - Ads and trackers is Allowed

Verified that the DuckDuckGo page loads rather than displaying a full white screen

---

Verification passed on

Brave	1.25.72 Chromium: 91.0.4472.101 (Official Build) (64-bit)
Revision	af52a90bf87030dd1523486a1cd3ae25c5d76c9b-refs/branch-heads/4472@{#1462}
OS	Ubuntu 18.04 LTS

Verified test plan from brave/brave-core#9053

Verified when Shields are up and ads/trackers blocked setting is set to standard

Verified when Shields are up and ads/trackers blocked setting is set to aggressive

Verified when shields are down

Verified when ads/trackers blocked setting is set to allow all

Verified that the DuckDuckGo page loads rather than displaying a full white screen

---

Verified PASSED using

Brave	1.25.72 Chromium: 91.0.4472.101 (Official Build) (x86_64)
Revision	af52a90bf87030dd1523486a1cd3ae25c5d76c9b-refs/branch-heads/4472@{#1462}
OS	macOS Version 11.4 (Build 20F71)

• Verified the test plan from brave/brave-core#9053
• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. is shown in the console when Shields are up and ads/trackers blocked setting is the standard - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. is shown in the console when Shields are up and ads/trackers blocked setting is aggressive mode - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. isn't shown in the console when Shields are down - PASSED

• Verified that the scripts violating the policy script-src 'self' 'unsafe-inline' https://hcaptcha.com *.hcaptcha.com. isn't shown in the console when Shields ads/trackers are allowed - PASSED

• Verified that the duckduckgo local HTML test page opens, rather than displaying a white screen - PASSED