Generate a nonce per request, for example:
Mzg5NzYxMzcyMCw3OTQ2Njc5NDM=
Include the nonce in your strict CSP:
Content-Security-Policy: script-src 'nonce-Mzg5NzYxMzcyMCw3OTQ2Njc5NDM='
Add the nonce attribute to your AddToAny <script> tag like so:
<script async nonce="Mzg5NzYxMzcyMCw3OTQ2Njc5NDM=" src="https://static.addtoany.com/menu/page.js"></script>