Per the Jenkins Wiki, Jenkins now sets a restrictive content security policy header that breaks the Gatling reports as no JavaScript is allowed to run on the pages. In our brief experimentation, we found it necessary to completely remove the header (Set -Dhudson.model.DirectoryBrowserSupport.CSP= ) in order to restore functionality.

At a minimum setting this needs to be documented for this plugin. Ideally if you can determine a less promiscuous CSP setting that could be set so that we don't have to totally disable CSP, that would be great.