| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Permissions-Policy | geolocation=(),midi=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=('self' 'https://pay.google.com' 'https://stripe.com' 'https://www.paypal.com') |
| Alt-Svc | h3=":443"; ma=86400 |
| Date | Tue, 13 May 2025 02:04:06 GMT |
| Content-Security-Policy | connect-src 'self' 'unsafe-inline' *.google-analytics.com www.google-analytics.com www.plantlife.org.uk plantlife.org.uk wss://ws.hotjar.com *.analytics.google.com *.hotjar.io *.hotjar.com stats.g.doubleclick.net *.hcaptcha.com api.donorfy.com *.paypal.com *.google.co.uk services.postcodeanywhere.co.uk *.google.com *.donorfy.com *.facebook.com; default-src 'self' 'unsafe-inline' www.googletagmanager.com *.donorfy.com data:; font-src data: www.plantlife.org.uk plantlife.org.uk staging-plantlife-staging.kinsta.cloud fonts.gstatic.com fonts.googleapis.com *.donorfy.com; frame-src 'self' data: www.google.com platform.twitter.com www.googletagmanager.com player.vimeo.com vimeo.com youtube.com www.youtube.com www.youtube-nocookie.com app.donorfy.com r.stripe.com m.stripe.com storymaps.arcgis.com plantlife.maps.arcgis.com survey123.arcgis.com js.arcgis.com pay.gocardless.com api.donorfy.com www.facebook.com facebook.com td.doubleclick.net *.google.com *.hcaptcha.com js.stripe.com www.paypal.com *.donorfy.com; img-src 'self' 'unsafe-inline' data: www.plantlife.org.uk plantlife.org.uk staging-plantlife-staging.kinsta.cloud www.google-analytics.com www.gstatic.com www.google.co.uk www.googletagmanager.com *.gravatar.com *.vimeocdn.com *.stripe.com www.facebook.com facebook.com t.paypal.com www.paypalobjects.com services.postcodeanywhere.co.uk *.donorfy.com; media-src 'self' blob: data:; script-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' connect.facebook.net www.google.com www.gstatic.com *.hcaptcha.com cdn.donorfy.com js.stripe.com services.postcodeanywhere.co.uk *.donorfy.com ; script-src-elem 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' static.hotjar.com script.hotjar.com player.vimeo.com vimeo.com apis.google.com www.youtube.com www.youtube-nocookie.com platform.twitter.com googletagmanager.com www.googletagmanager.com www.google.com google.com www.gstatic.com gstatic.com www.google-analytics.com connect.facebook.net app.donorfy.com r.stripe.com m.stripe.com survey123.arcgis.com js.arcgis.com cdnjs.cloudflare.com www.plantlife.org.uk plantlife.org.uk *.hcaptcha.com cdn.donorfy.com js.stripe.com services.postcodeanywhere.co.uk ajax.aspnetcdn.com *.paypal.com *.donorfy.com; style-src 'self' 'unsafe-inline' blob: fonts.googleapis.com *.hcaptcha.com cdn.donorfy.com services.postcodeanywhere.co.uk *.donorfy.com; style-src-elem 'self' www.plantlife.org.uk plantlife.org.uk 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com *.hcaptcha.com cdn.donorfy.com services.postcodeanywhere.co.uk *.donorfy.com; worker-src 'self' blob:; |
| Ki-Edge | v=21.0.0;mv=4.1.4 |
| X-Content-Type-Options | nosniff |
| X-Edge-Location-Klb | 1 |
| X-Pingback | https://www.plantlife.org.uk/xmlrpc.php |
| Server | cloudflare |
| Content-Type | text/html; charset=UTF-8 |
| Last-Modified | Tue, 13 May 2025 01:08:15 GMT |
| Nel | {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} |
| Link | <https://www.plantlife.org.uk/wp-json/>; rel="https://api.w.org/", <https://www.plantlife.org.uk/wp-json/wp/v2/pages/2>; rel="alternate"; title="JSON"; type="application/json", <https://www.plantlife.org.uk/>; rel=shortlink |
| Ki-Cache-Type | Edge |
| Ki-Cf-Cache-Status | HIT |
| Report-To | {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l3%2FkkOtLHuRa6wZTFUFd3kfvHTNYiYdTueWCEyUzNkbuX27xiNUnOAUmS5Dt1LTmeJtrRE%2BpTL2C3t%2B8oj7jex1gg%2Bmzmal6E0XULgcfAHDqNhS2omDG%2BhEy0bpUgRtiqn1zwezL"}],"group":"cf-nel","max_age":604800} |
| Referrer-Policy | same-origin |
| Connection | keep-alive |
| Cf-Ray | 93ee954c29941c8d-AMS |
| Cf-Cache-Status | HIT |
| Age | 3351 |
| Cache-Control | public, max-age=0, s-maxage=3600 |
| Strict-Transport-Security | max-age=31536000 |
| Vary | Accept-Encoding |
| Ki-Cache-Tag | 2124d1a4-39be-4c05-89fa-a0b85a167fe5,fcaedbd354d9900895d3fb5656c2d4b5ee689e6736065539b6d1c98ef8c47dd2 |
| X-Frame-Options | SAMEORIGIN |
| X-Kinsta-Cache | HIT |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar