| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Expires | Thu, 21 Apr 2022 01:00:00 GMT |
| X-Frame-Options | SAMEORIGIN |
| Last-Modified | Mon, 31 Mar 2025 14:57:24 GMT |
| X-Content-Type-Options | nosniff |
| X-Xss-Protection | 1; mode=block |
| Via | 1.1 google |
| Content-Type | text/html; charset=UTF-8 |
| X-Powered-By | PHP/8.4.1 |
| Permissions-Policy | geolocation=(maps.googleapis.com),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() |
| Referrer-Policy | no-referrer-when-downgrade |
| Content-Security-Policy | frame-ancestors 'self';block-all-mixed-content; default-src 'self' ; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'report-sample' *.hotjar.com *.hotjar.com/* *.clarity.ms *.clarity.ms/* beacon-v2.helpscout.net https://cdn.jsdelivr.net *.yoast.com yoast.com *.termly.io https://app.termly.io/embed.min.js https://googleads.g.doubleclick.net https://bat.bing.com/p/action/17549570.js https://www.googleadservices.com https://maps.google.com https://maps.googleapis.com https://*.googleapis.com https://*.googletagmanager.com gateway.zscalertwo.net https://api.github.com *.hotjar.com hotjar.com https://code.jquery.com maxcdn.bootstrapcdn.com djtflbt20bdde.cloudfront.net snap.licdn.com js.hsadspixel.net/fb.js js.hs-scripts.com linkedin.com https://*.amazonaws.com https://*.google-analytics.com cdn.userway.org js.hs-analytics.net c.go-mpulse.net platform.linkedin.com px.ads.linkedin.com js.hs-banner.com www.google.com js.hsforms.net forms.hsforms.com www.webtraxs.com js-agent.newrelic.com bam.nr-data.net ssl.google-analytics.com js-na1.hs-scripts.com bat.bing.com; img-src 'self' www.linkedin.com https://dc.ads.linkedin.com yoast.com *.clarity.ms clarity.ms *.bing.com/* cdn.userway.org updates.themepunch-ext-a.tools leapsandbounds.io demo.magnigenie.com www.elegantthemes.com bat.bing.com www.googletagmanager.com p.adsymptotic.com embedwistia-a.akamaihd.net fast.wistia.com px.ads.linkedin.com forms.hubspot.com *.gravatar.com *.w.org gateway.zscalertwo.net smartslider3.com digitalleap.co.za wponlinesupport.com ajax.googleapis.com wpstorelocator.co www.paypal.com awsmedia.s3.amazonaws.com developers.google.com maps.googleapis.com *.sanmina.com sanmina.com maps.google.com maps.gstatic.com forms.hsforms.com www.google-analytics.com www.google.co.in www.webtraxs.com track.hubspot.com stats.g.doubleclick.net www.google.com ssl.google-analytics.com https://*.vimeocdn.com https://*.vimeocdn.com/* *.doubleclick.net data:; connect-src 'self' 'unsafe-inline' bam.nr-data.net *.clarity.ms clarity.ms https://app.termly.io px.ads.linkedin.com d3hb14vkzrxvla.cloudfront.net cdn77.api.userway.org pagead2.googlesyndication.com www.google.com analytics.google.com googleads.g.doubleclick.net api.userway.org cdn.userway.org embedwistia-a.akamaihd.net distillery.wistia.com pipedream.wistia.com fg8vvsvnieiv3ej16jby.litix.io yoast.com *.yoast.com smartslider3.helpscoutdocs.com api.hubapi.com www.google-analytics.com maps.google.com maps.googleapis.com stats.g.doubleclick.net facebook.com *.hotjar.com hotjar.com wss://ws27.hotjar.com wss://ws27.hotjar.com/* wss://*.hotjar.com wss://*.hotjar.com/* *.hotjar.io *.googleapis.com https://*.bing.com ; font-src 'self' hello.myfonts.net fonts.googleapis.com maxcdn.bootstrapcdn.com fonts.gstatic.com cdn.userway.org data:; style-src 'self' 'unsafe-inline' 'report-sample' ajax.googleapis.com hello.myfonts.net cdn.userway.org cdn-images.mailchimp.com fonts.googleapis.com djtflbt20bdde.cloudfront.net; object-src 'none'; frame-src 'self' www.googletagmanager.com www.elegantthemes.com www.youtube.com www.googletagmananger.com td.doubleclick.net smartslider3.com cdn.userway.org fast.wistia.com forms.hsforms.com bid.g.doubleclick.net *.vimeo.com *.linkedin.com sanminacareers.mua.hrdepartment.com hotjar.com vars.hotjar.com *.hotjar.com *.zscalertwo.net ssozia.sanmina.com;manifest-src 'self';base-uri 'self';form-action 'self' forms.hsforms.com forms.hubspot.com; worker-src 'self' www.sanmina.com; child-src 'self' app.hubspot.com forms.hsforms.com js.hsadspixel.net js.hscollectedforms.net js.usemessages.com www.googletagmanager.com;media-src 'self' *.w.org media.licdn.com;report-uri https://endpoint.sanmina.com;report-to sanminadmin; |
| Server | nginx |
| Connection | keep-alive |
| Vary | Accept-Encoding |
| Alt-Svc | clear |
| Date | Sun, 06 Apr 2025 14:47:09 GMT |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar