Content-Security-Policy Analysis for https://allaroundazure.com

Open Cached · just now

13 directives

Content-Security-Policy

Content-Security-Policy: default-src *;script-src 'self' 'unsafe-inline' 'unsafe-eval' *.microsoft.com js.monitor.azure.com dc.services.visualstudio.com try-ppe.dot.net aznb-ame-prod.azureedge.net client-api.arkoselabs.com markdowneditor-public-e0gpfpcwcbbze3ag.b01.azurefd.net markdowneditor-PubDev-czdhe4dpdyaee6fj.b01.azurefd.net markdowneditor-external-Public-fmgmfefddycxdmfj.b01.azurefd.net MarkdownEditor-external-PubDev-dfgagughg7fub7h5.b01.azurefd.net h64.online-metrix.net;style-src 'self' 'unsafe-inline' *.microsoft.com aznb-ame-prod.azureedge.net try-ppe.dot.net MarkdownEditor-external-PubDev-dfgagughg7fub7h5.b01.azurefd.net markdowneditor-PubDev-czdhe4dpdyaee6fj.b01.azurefd.net markdowneditor-public-e0gpfpcwcbbze3ag.b01.azurefd.net markdowneditor-external-Public-fmgmfefddycxdmfj.b01.azurefd.net;img-src * data: blob:;frame-ancestors docs.microsoft.com *.docs.microsoft.com learn.microsoft.com *.learn.microsoft.com labclient.labondemand.com portal.azure.com *.portal.azure.com portal.azure.us portal.azure.cn ai.azure.com *.ai.azure.com learn-video.azurefd.net docs.azure.cn *.onecloud.azure-test.net *.sharepoint.com localhost:3000;worker-src 'self' blob: *.microsoft.com aznb-ame-prod.azureedge.net;form-action 'self' *.microsoft.com *.azure.cn *.pearsonvue.com;media-src 'self' blob: *.microsoft.com *.azure.cn videoencodingpublic-hgeaeyeba8gycee3.b01.azurefd.net videoencodingpubdevwus.blob.core.windows.net videoencodingpublicwus.blob.core.windows.net;base-uri 'self';font-src 'self' https: data:;object-src 'none';script-src-attr 'none';upgrade-insecure-requests

default-src Host —

*

script-src Keyword —

'self'

script-src Keyword —

'unsafe-inline'

script-src Keyword —

'unsafe-eval'

script-src Host —

*.microsoft.com

ASN | Microsoft

script-src Host

Azure Monitor

js.monitor.azure.com

ASN | Microsoft

script-src Host —

dc.services.visualstudio.com

ASN | Microsoft

script-src Host —

try-ppe.dot.net

ASN | Microsoft

script-src Host

AzureFrontDoor

aznb-ame-prod.azureedge.net

ASN | Microsoft

script-src Host

Arkose Labs

client-api.arkoselabs.com

script-src Host

AzureFrontDoor

markdowneditor-public-e0gpfpcwcbbze3ag.b01.azurefd.net

ASN | Microsoft

script-src Host

AzureFrontDoor

markdowneditor-PubDev-czdhe4dpdyaee6fj.b01.azurefd.net

ASN | Microsoft

script-src Host

AzureFrontDoor

markdowneditor-external-Public-fmgmfefddycxdmfj.b01.azurefd.net

ASN | Microsoft

script-src Host

AzureFrontDoor

MarkdownEditor-external-PubDev-dfgagughg7fub7h5.b01.azurefd.net

ASN | Microsoft

script-src Host —

h64.online-metrix.net

ASN | THM - ThreatMetrix Inc.

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host —

*.microsoft.com

ASN | Microsoft

style-src Host

AzureFrontDoor

aznb-ame-prod.azureedge.net

ASN | Microsoft

style-src Host —

try-ppe.dot.net

ASN | Microsoft

style-src Host

AzureFrontDoor

MarkdownEditor-external-PubDev-dfgagughg7fub7h5.b01.azurefd.net

ASN | Microsoft

style-src Host

AzureFrontDoor

markdowneditor-PubDev-czdhe4dpdyaee6fj.b01.azurefd.net

ASN | Microsoft

style-src Host

AzureFrontDoor

markdowneditor-public-e0gpfpcwcbbze3ag.b01.azurefd.net

ASN | Microsoft

style-src Host

AzureFrontDoor

markdowneditor-external-Public-fmgmfefddycxdmfj.b01.azurefd.net

ASN | Microsoft

img-src Host —

*

img-src Scheme —

data:

img-src Scheme —

blob:

frame-ancestors Host —

docs.microsoft.com

frame-ancestors Host —

*.docs.microsoft.com

frame-ancestors Host —

learn.microsoft.com

frame-ancestors Host —

*.learn.microsoft.com

frame-ancestors Host —

labclient.labondemand.com

ASN | Microsoft

frame-ancestors Host

Microsoft Azure

portal.azure.com

ASN | Microsoft

frame-ancestors Host

Microsoft Azure

*.portal.azure.com

ASN | Microsoft

frame-ancestors Host —

portal.azure.us

ASN | MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation

frame-ancestors Host —

portal.azure.cn

ASN | BLUECLOUD Shanghai Blue Cloud Technology Co.

frame-ancestors Host

Microsoft Azure

ai.azure.com

ASN | Microsoft

frame-ancestors Host

Microsoft Azure

*.ai.azure.com

ASN | Microsoft

frame-ancestors Host

AzureFrontDoor

learn-video.azurefd.net

ASN | Microsoft

frame-ancestors Host —

docs.azure.cn

ASN | Microsoft

frame-ancestors Host —

*.onecloud.azure-test.net

frame-ancestors Host

Microsoft SharePoint

*.sharepoint.com

ASN | Microsoft

frame-ancestors Host —

localhost:3000

worker-src Keyword —

'self'

worker-src Scheme —

blob:

worker-src Host —

*.microsoft.com

ASN | Microsoft

worker-src Host

AzureFrontDoor

aznb-ame-prod.azureedge.net

ASN | Microsoft

form-action Keyword —

'self'

form-action Host —

*.microsoft.com

ASN | Microsoft

form-action Host —

*.azure.cn

ASN | BLUECLOUD Shanghai Blue Cloud Technology Co.

form-action Host

Pearson VUE

*.pearsonvue.com

media-src Keyword —

'self'

media-src Scheme —

blob:

media-src Host —

*.microsoft.com

ASN | Microsoft

media-src Host —

*.azure.cn

ASN | BLUECLOUD Shanghai Blue Cloud Technology Co.

media-src Host

AzureFrontDoor

videoencodingpublic-hgeaeyeba8gycee3.b01.azurefd.net

ASN | Microsoft

media-src Host

Azure Blob Storage

videoencodingpubdevwus.blob.core.windows.net

ASN | Microsoft

media-src Host

Azure Blob Storage

videoencodingpublicwus.blob.core.windows.net

ASN | Microsoft

base-uri Keyword —

'self'

font-src Keyword —

'self'

font-src Scheme —

https:

font-src Scheme —

data:

object-src Keyword —

'none'

script-src-attr Keyword —

'none'

upgrade-insecure-requests Source —

(no sources)

Content-Security-Policy-Report-Only

No report-only CSP headers found.