| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Content-Type | text/html |
| Connection | keep-alive |
| Cf-Ray | 932c99c11f510e89-AMS |
| Cache-Control | public, max-age=0 |
| Cdn-Cache-Control | public, max-age=600, stale-while-revalidate=14400, stale-if-error=86400 |
| Strict-Transport-Security | max-age=31536000; includeSubDomains |
| X-Content-Type-Options | nosniff |
| Last-Modified | Fri, 18 Apr 2025 18:22:08 GMT |
| Cf-Cache-Status | DYNAMIC |
| Server | cloudflare |
| Date | Sat, 19 Apr 2025 13:03:11 GMT |
| Content-Security-Policy | script-src 'self' 'unsafe-inline' *.hsadspixel.net *.hs-analytics.net pixel.byspotify.com js.hsadspixel.net www.redditstatic.com googleads.g.doubleclick.net js.hs-banner.com js.hscollectedforms.net js.hs-analytics.net cdn.linkedin.oribi.io *.hs-scripts.com sidebar.bugherd.com cdn.jsdelivr.net blob: cdn.segment.io connect.facebook.net job-boards.greenhouse.io boards.greenhouse.io snap.licdn.com www.google-analytics.com *.list-manage.com cmp.osano.com www.googletagmanager.com www.googleadservices.com static.ads-twitter.com calendly.com *.calendly.com player.vimeo.com; connect-src 'self' *.algolianet.com *.algolia.net api.hubapi.com *.hubapi.com api.ionq.co api-staging.ionq.co assets.ctfassets.net assets.ctfassets.net api.segment.io evnt.byspotify.com pagead2.googlesyndication.com stats.g.doubleclick.net www.google-analytics.com job-boards.greenhouse.io boards.greenhouse.io www.facebook.com hooks.zapier.com cdn.segment.io *.osano.com www.googletagmanager.com graphql.contentful.com *.oribi.io forms.hscollectedforms.net *.analytics.google.com analytics.google.com zoomwebinarenrollment.lily-3f8.workers.dev; style-src 'self' fonts.googleapis.com cdn.jsdelivr.net 'unsafe-inline'; img-src 'self' alb.reddit.com bugherd-attachments.s3.amazonaws.com www.bugherd.com sidebar.bugherd.com images.ctfassets.net downloads.ctfassets.net data: *.linkedin.com www.facebook.com p.adsymptotic.com www.google-analytics.com um.simpli.fi cm.g.doubleclick.net www.googleadservices.com cmp.osano.com www.google.com static.ads-twitter.com t.co forms.hsforms.com track.hubspot.com analytics.twitter.com i.vimeocdn.com; media-src 'self' videos.ctfassets.net downloads.ctfassets.net; frame-ancestors https://app.contentful.com; frame-src 'self' assets.ctfassets.net www.bugherd.com sidebar.bugherd.com www.facebook.com www.youtube.com job-boards.greenhouse.io boards.greenhouse.io cmp.osano.com td.doubleclick.net calendly.com *.calendly.com vimeo.com *.vimeo.com ionq.zoom.us; font-src 'self' fonts.gstatic.com data: |
| Vary | Accept-Encoding |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar