| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Cache-Control | private, no-store |
| Traceresponse | 00-18336037825383b818b3e2e832c4401b-13b496ac3e0d3068-01 |
| X-Content-Type-Options | nosniff |
| X-Platform-Cluster | gidigy5emdptc-master-7rqtwti |
| Age | 55 |
| Vary | Accept-Encoding |
| Surrogate-Cache-Control | max-age=31536000 |
| X-Platform-Router | lwdpat4ar5ouxdhsskmaybdr7i |
| Strict-Transport-Security | max-age=31557600 |
| Connection | keep-alive |
| Content-Security-Policy | default-src 'self'; font-src 'self' fonts.gstatic.com; frame-src 'self' www.main-bvxea6i-okks773k3br2i.eu-3.platformsh.site *.googletagmanager.com www.google.com player.vimeo.com www.youtube.com www.facebook.com www.youtube-nocookie.com open.spotify.com fast.wistia.net express.theroishop.com js.driftt.com td.doubleclick.net; img-src 'self' c.contentsquare.net bat.bing.com px4.ads.linkedin.com www.main-bvxea6i-okks773k3br2i.eu-3.platformsh.site *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.google.fr alb.reddit.com agencypartner.platform.sh www.google.com analytics.twitter.com t.co www.facebook.com px.ads.linkedin.com heapanalytics.com i.ytimg.com b.6sc.co cdn.cookielaw.org data:; script-src 'self' 'unsafe-inline' static.reo.dev t.contentsquare.net www.gstatic.com www.google.com cdn.cookielaw.org js.driftt.com *.googletagmanager.com cdn.matomo.cloud cdn.heapanalytics.com platformsh.matomo.cloud sdk.us.heap-api.com mt.auryc.com ab-partner-locator.s3-us-west-2.amazonaws.com www.google-analytics.com googleads.g.doubleclick.net ws.zoominfo.com connect.facebook.net munchkin.marketo.net www.redditstatic.com static.ads-twitter.com snap.licdn.com j.6sc.co assets.calendly.com ws-assets.zoominfo.com www.googleadservices.com tracking.g2crowd.com www.youtube.com bat.bing.com cdn.us.heap-api.com; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' fonts.googleapis.com assets.calendly.com; connect-src 'self' c.contentsquare.net *.heap-api.com boards-api.greenhouse.io cdn.cookielaw.org geolocation.onetrust.com privacyportal-eu.onetrust.com platformsh.matomo.cloud client-api.auryc.com mt.auryc.com *.google-analytics.com googleads.g.doubleclick.net g.doubleclick.net *.googletagmanager.com *.google-analytics.com *.analytics.google.com www.google.com api.allbound.eu c.6sc.co ipv6.6sc.co pixel-config.reddit.com www.redditstatic.com conversions-config.reddit.com stats.g.doubleclick.net 232-owy-009.mktoresp.com epsilon.6sense.com ws.zoominfo.com px.ads.linkedin.com assets.calendly.com ws-assets.zoominfo.com google.com www.googleadservices.com tracking.g2crowd.com www.youtube.com tracking-api.g2.com analytics.google.com eps.6sc.co v.eps.6sc.co; |
| Via | 1.1 varnish, 1.1 varnish, 1.1 varnish |
| Date | Sat, 05 Apr 2025 20:51:27 GMT |
| Content-Type | text/html |
| Referrer-Policy | strict-origin-when-cross-origin |
| Accept-Ranges | none |
| X-Edgee-Compute-Duration | 2ms |
| X-Served-By | cache-ams2100136-AMS, cache-ams21039-AMS |
| X-Cache-Hits | 1653, 0, 0, 0 |
| X-Debug-Info | eyJyZXRyaWVzIjowfQ== |
| X-Frame-Options | SAMEORIGIN |
| X-Platform-Processor | lo3www4gfbeludeguocr5mg3ee |
| X-Edgee | compute-aborted(not-safe) |
| X-Cache | HIT, HIT, MISS, MISS |
| Permissions-Policy | camera=(), microphone=(), geolocation=() |
| X-Timer | S1743886288.863405,VS0,VE99 |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar