Are there some recommendations or best practice for this topic?
I created some settings but there is still some issue. I am not sure what to consider as a normal set of issues and what needs to be solved. I tested my application with ZAP 2.15.
The Radzen.Blazor components rely on inline CSS (style="...") and JavaScript (onclick etc.) so those should be allowed by the CSP you are using.