DNS Gurus
Cached · just now
5 directives

Content-Security-Policy

base-uri Keyword
'self'
object-src Host
none
script-src Keyword
'self'
script-src Nonce
'nonce-pyJu9XpUb0htfAGJkEYjSMKvHdmgYhv6'
script-src Host Google Sign-In logo Google Sign-In
https://accounts.google.com
ASN | Google
script-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
script-src Host Google Static File Front End logo Google Static File Front End
https://www.gstatic.com
ASN | Google
script-src Host Zendesk logo Zendesk
https://*.smooch.io
ASN | Amazon
script-src Host Zendesk logo Zendesk
https://static.zdassets.com/messaging/sunco-frontend-assets/dashboard/
ASN | Cloudflare
script-src Host Stripe logo Stripe
https://checkout.stripe.com
ASN | Amazon
script-src Host Stripe logo Stripe
https://stripe.com
ASN | Amazon
script-src Keyword
'unsafe-eval'
script-src Keyword
'unsafe-inline'
script-src Host YouTube logo YouTube
https://www.youtube.com
ASN | Google
script-src Host Zendesk logo Zendesk
https://*.zendesk.com
ASN | Cloudflare
script-src Host Zendesk logo Zendesk
https://static.zdassets.com
ASN | Cloudflare
frame-ancestors Keyword
'self'
report-uri Host Sentry logo Sentry
https://o1025743.ingest.sentry.io/api/6184622/security/?sentry_key=7fa93775fdec4123a149cb5fbd4e7822&sentry_environment=production
ASN | Google Cloud

Content-Security-Policy-Report-Only

No report-only CSP headers found.