| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Set-Cookie | AWSALB=ZEHb3n5kjN5oCE3KrdLV5RjL1gKhxyne5OmixbbE48yZjqzE6EFfqcxULdr68gt5OXv133OqTjBhDS0nUGDZUfZit0kltqNZ1zDxrGgxfMVcaqoYTD/3FXT7CBpc; Expires=Sat, 12 Apr 2025 19:38:33 GMT; Path=/ |
| Server | Apache |
| Vary | Cookie,Accept-Encoding |
| Connection | keep-alive |
| X-Frame-Options | SAMEORIGIN |
| Referrer-Policy | same-origin |
| X-Thunderbolt-Hit | hit |
| Content-Security-Policy | default-src 'self' 'unsafe-inline' d2f5cg397c40hu.cloudfront.net *.disquscdn.com disqus.com *.googleapis.com github.githubassets.com stats.g.doubleclick.net; script-src 'self' cdn.jsdelivr.net www.google.com player.vimeo.com d2f5cg397c40hu.cloudfront.net maps.googleapis.com js.stripe.com www.facebook.com connect.facebook.net https://connect.facebook.net platform.twitter.com *.disqus.com *.disquscdn.com www.google-analytics.com www.gstatic.com recaptcha.net 'unsafe-inline' 'unsafe-eval' *.algolianet.com *.algolia.net gist.github.com *.helpscout.net ssl.google-analytics.com *.gstatic.cn *.googletagmanager.com tagmanager.google.com cdn-cookieyes.com *.googleoptimize.com optimize.google.com www.klaviyo.com cdnjs.cloudflare.com *.licdn.com *.redditstatic.com static.klaviyo.com static-tracking.klaviyo.com accounts.google.com www.clarity.ms; frame-src 'self' www.youtube.com www.google.com recaptcha.net js.stripe.com player.vimeo.com www.facebook.com web.facebook.com platform.twitter.com e.widgetbot.io disqus.com optimize.google.com; frame-ancestors 'self'; img-src * data:; font-src 'self' d2f5cg397c40hu.cloudfront.net fonts.gstatic.com recaptcha.net data: *.googleapis.com; connect-src 'self' www.google-analytics.com www.facebook.com stats.g.doubleclick.net *.algolia.net links.services.disqus.com syndication.twitter.com *.algolianet.com r2cn6b0sec-dsn.algolia.net recaptcha.net https://ssl.google-analytics.com https://d3hb14vkzrxvla.cloudfront.net beaconapi.helpscout.net maps.googleapis.com *.widgetbot.io *.cookieyes.com cdn-cookieyes.com manage.kmail-lists.com cdn.linkedin.oribi.io static-forms.klaviyo.com *.klaviyo.com *.clarity.ms; style-src-elem 'self' 'unsafe-inline' fonts.googleapis.com recaptcha.net *.algolianet.com *.algolia.net *.google-analytics.com *.disquscdn.com *.googleapis.com github.githubassets.com optimize.google.com www.googletagmanager.com *.klaviyo.com; report-uri /_csp-report; |
| Date | Sat, 05 Apr 2025 19:38:33 GMT |
| Content-Type | text/html; charset=UTF-8 |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar