DNS Gurus
Cached · just now
13 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Host Cloudflare Turnstile logo Cloudflare Turnstile
https://challenges.cloudflare.com
ASN | Cloudflare
style-src Keyword
'self'
style-src-attr Keyword
'unsafe-inline'
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
blob:
font-src Keyword
'self'
font-src Scheme
data:
connect-src Keyword
'self'
connect-src Host Google API JS Client logo Google API JS Client
https://firestore.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://identitytoolkit.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://securetoken.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://firebaseinstallations.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://firebaseappcheck.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://www.googleapis.com
ASN | Google
connect-src Host Firebase logo Firebase
https://*.firebaseio.com
connect-src Host Google Cloud Functions logo Google Cloud Functions
https://*.cloudfunctions.net
connect-src Host Cloudflare Turnstile logo Cloudflare Turnstile
https://challenges.cloudflare.com
ASN | Cloudflare
object-src Keyword
'none'
base-uri Keyword
'self'
form-action Keyword
'self'
frame-ancestors Keyword
'none'
frame-src Host Cloudflare Turnstile logo Cloudflare Turnstile
https://challenges.cloudflare.com
ASN | Cloudflare
upgrade-insecure-requests Source
(no sources)

Content-Security-Policy-Report-Only

No report-only CSP headers found.