Content-Security-Policy Analysis for https://app.easypost.com

Open Cached · just now

10 directives

Content-Security-Policy

Content-Security-Policy: default-src https://assets.app.easypost.com cdn.plaid.com; script-src assets.app.easypost.com track.easypost.com tagmanager.google.com www.googletagmanager.com www.googleadservices.com www.google-analytics.com ssl.google-analytics.com www.gstatic.com www.google.com js.stripe.com cdn.plaid.com maps.googleapis.com eu-cdn.walkme.com cdn.walkme.com eu-playerserver.walkme.com playerserver.walkme.com d3sbxpiag177w8.cloudfront.net d2qhvajt3imc89.cloudfront.net https://*.wistia.com https://*.wistia.net https://*.hsforms.com https://*.hsforms.net https://*.hs-scripts.com https://*.hs-analytics.net https://*.hs-banner.com https://*.hscollectedforms.net https://js.hubspot.com https://browser.sentry-cdn.com https://js.sentry-cdn.com https://*.termly.io https://*.6sc.co 'sha256-t1v231h4Fgv1bBX/cpoBZuwY6r6R6nGx5tOXvVJdBh8=' 'sha256-GNTGX7BhgMv3AL+bv0bfF+5DVGhSrLhYL7AM7TSnAcY=' 'sha256-5yJc48yW6FRCVE9ulLzLOd1lLp7X2Xr2Dd4Y+lZ3XjA=' 'sha256-eV1MSFSoXiIPiHPWbzaJgBby+bxVonlOAE5Cwbaa4lc=' 'sha256-sVKX08+SqOmnWhiySYk3xC7RDUgKyAkmbXV2GWts4fo=' 'sha256-hW1V3UvI+swwT3wQpebXLpXi/7Q9VUws5NlJTNxM/Tg=' 'sha256-zrkY8YxXr6/SilHSYKlWjWW9kOSQsVsrlGluj7eTzoc=' 'sha256-C1JoeFOby67/dRbyCdcT9jfKk3K2hJnqpQZ3LrmmGzs=' 'sha256-h+WTh8pU5uNkzQn34dBoekwaCks6Qgu9hf59Jqb/a8M=' 'sha256-eTkfGrwjfNw4PoTKuTtm3iiIjEC9yQBVj2D5h6tqi6o=' 'sha256-9VUtn35BYOyG8A3cWD4ORP5iuSR9nYksg2G46hplKWU=' 'sha256-z88Cjvn7Zi20w0l+YppzCZisRg7jQyKfRxVJ8po8+r8=' 'sha256-6G78ZCxC1YDH7kTcNmIyrRCYjaMLptJEI2Cx9A2rDBo=' 'sha256-k6J1oE8SmewVpG2+marpuZHcoWF8GNDw9oPpqE2vKeI=' 'sha256-Cn4LqTM3U5W3KadYoTfUSIqhaoay5Tlv/u6H8DdjD0g='; style-src track.easypost.com 'unsafe-inline' tagmanager.google.com fonts.googleapis.com assets.app.easypost.com www.gstatic.com eu-cdn.walkme.com cdn.walkme.com; img-src easypost-files.s3.us-west-2.amazonaws.com assets.easypost.com assets.track.easypost.com assets.app.easypost.com brand.easypostpartnercontent.com cdn.walkme.com d27zb0m07iyic6.cloudfront.net d2qhvajt3imc89.cloudfront.net d3sbxpiag177w8.cloudfront.net dzjsfasj4n94t.cloudfront.net data: ec.walkme.com eu-cdn.walkme.com eu-ec.walkme.com googleads.g.doubleclick.net q.stripe.com region1.analytics.google.com region1.google-analytics.com ssl.google-analytics.com ssl.gstatic.com support.easypost.com track.easypost.com www.google-analytics.com www.google.com www.googletagmanager.com www.gstatic.com assets.ctfassets.net images.ctfassets.net videos.ctfassets.net https://*.wistia.com https://*.wistia.net https://*.hsforms.com https://*.hsforms.net https://track.hubspot.com https://embedwistia-a.akamaihd.net https://*.youtube.com; font-src data: assets.app.easypost.com track.easypost.com fonts.gstatic.com https://*.wistia.com; connect-src embed.easypost.com easypost-files.s3.us-west-2.amazonaws.com adservice.google.com api-canary.easypost.com api.easypost.com assets.app.easypost.com cdn.walkme.com ec.walkme.com eu-ec.walkme.com eu-papi.walkme.com eu-rapi.walkme.com https://www.google.com js.stripe.com maps.googleapis.com papi.walkme.com production.plaid.com rapi.walkme.com region1.analytics.google.com region1.google-analytics.com *.sentry.io track.easypost.com usps.easypost.com www-canary.easypost.com www.easypost.com app-canary.easypost.com app.easypost.com www.google-analytics.com https://hubspot-forms-static-embed.s3.amazonaws.com https://*.hsforms.com https://*.hsforms.net https://*.hubapi.com https://*.hs-banner.com https://*.hscollectedforms.net https://*.wistia.com https://embedwistia-a.akamaihd.net; worker-src assets.app.easypost.com www.gstatic.com www.google.com; frame-src analytics.easypost.com assets.track.easypost hire.withgoogle.com cdn.plaid.com eu-cdn.walkme.com cdn.walkme.com js.stripe.com player.captivate.fm track.easypost.com tagmanager.google.com www.googletagmanager.com www.google.com www.youtube.com https://*.hsforms.com https://*.hsforms.net; media-src blob: assets.app.easypost.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net; frame-ancestors 'self'

default-src Host —

https://assets.app.easypost.com

ASN | Amazon

default-src Host

Plaid

cdn.plaid.com

ASN | Amazon

script-src Host —

assets.app.easypost.com

ASN | Amazon

script-src Host —

track.easypost.com

ASN | Softlayer

script-src Host

Google Tag Manager

tagmanager.google.com

ASN | Google

script-src Host

Google Tag Manager

www.googletagmanager.com

ASN | Google

script-src Host

Google Conversion Tracking

www.googleadservices.com

ASN | Google

script-src Host

Google Analytics

www.google-analytics.com

ASN | Google

script-src Host

Google Analytics

ssl.google-analytics.com

ASN | Google

script-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

script-src Host

Google Search

www.google.com

ASN | Google

script-src Host

Stripe

js.stripe.com

ASN | Amazon

script-src Host

Plaid

cdn.plaid.com

ASN | Amazon

script-src Host

Google Maps

maps.googleapis.com

ASN | Google

script-src Host —

eu-cdn.walkme.com

ASN | Akamai

script-src Host —

cdn.walkme.com

ASN | Akamai

script-src Host —

eu-playerserver.walkme.com

ASN | Akamai

script-src Host —

playerserver.walkme.com

ASN | Akamai

script-src Host

AWS CloudFront

d3sbxpiag177w8.cloudfront.net

ASN | Amazon

script-src Host

AWS CloudFront

d2qhvajt3imc89.cloudfront.net

ASN | Amazon

script-src Host

Wistia

https://*.wistia.com

ASN | Fastly

script-src Host

Wistia

https://*.wistia.net

script-src Host

HubSpot Forms

https://*.hsforms.com

script-src Host

HubSpot Forms

https://*.hsforms.net

script-src Host

HubSpot

https://*.hs-scripts.com

script-src Host

HubSpot Analytics

https://*.hs-analytics.net

script-src Host

HubSpot

https://*.hs-banner.com

script-src Host

HubSpot Forms

https://*.hscollectedforms.net

script-src Host

HubSpot

https://js.hubspot.com

ASN | Cloudflare

script-src Host

Sentry

https://browser.sentry-cdn.com

ASN | Fastly

script-src Host

Sentry

https://js.sentry-cdn.com

ASN | Fastly

script-src Host

Termly

https://*.termly.io

ASN | Cloudflare

script-src Host

6sense

https://*.6sc.co

script-src Hash —

'sha256-t1v231h4Fgv1bBX/cpoBZuwY6r6R6nGx5tOXvVJdBh8='

script-src Hash —

'sha256-GNTGX7BhgMv3AL+bv0bfF+5DVGhSrLhYL7AM7TSnAcY='

script-src Hash —

'sha256-5yJc48yW6FRCVE9ulLzLOd1lLp7X2Xr2Dd4Y+lZ3XjA='

script-src Hash —

'sha256-eV1MSFSoXiIPiHPWbzaJgBby+bxVonlOAE5Cwbaa4lc='

script-src Hash —

'sha256-sVKX08+SqOmnWhiySYk3xC7RDUgKyAkmbXV2GWts4fo='

script-src Hash —

'sha256-hW1V3UvI+swwT3wQpebXLpXi/7Q9VUws5NlJTNxM/Tg='

script-src Hash —

'sha256-zrkY8YxXr6/SilHSYKlWjWW9kOSQsVsrlGluj7eTzoc='

script-src Hash —

'sha256-C1JoeFOby67/dRbyCdcT9jfKk3K2hJnqpQZ3LrmmGzs='

script-src Hash —

'sha256-h+WTh8pU5uNkzQn34dBoekwaCks6Qgu9hf59Jqb/a8M='

script-src Hash —

'sha256-eTkfGrwjfNw4PoTKuTtm3iiIjEC9yQBVj2D5h6tqi6o='

script-src Hash —

'sha256-9VUtn35BYOyG8A3cWD4ORP5iuSR9nYksg2G46hplKWU='

script-src Hash —

'sha256-z88Cjvn7Zi20w0l+YppzCZisRg7jQyKfRxVJ8po8+r8='

script-src Hash —

'sha256-6G78ZCxC1YDH7kTcNmIyrRCYjaMLptJEI2Cx9A2rDBo='

script-src Hash —

'sha256-k6J1oE8SmewVpG2+marpuZHcoWF8GNDw9oPpqE2vKeI='

script-src Hash —

'sha256-Cn4LqTM3U5W3KadYoTfUSIqhaoay5Tlv/u6H8DdjD0g='

style-src Host —

track.easypost.com

ASN | Softlayer

style-src Keyword —

'unsafe-inline'

style-src Host

Google Tag Manager

tagmanager.google.com

ASN | Google

style-src Host

Google Fonts

fonts.googleapis.com

ASN | Google

style-src Host —

assets.app.easypost.com

ASN | Amazon

style-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

style-src Host —

eu-cdn.walkme.com

ASN | Akamai

style-src Host —

cdn.walkme.com

ASN | Akamai

img-src Host

AWS

easypost-files.s3.us-west-2.amazonaws.com

ASN | Amazon

img-src Host —

assets.easypost.com

ASN | Amazon

img-src Host —

assets.track.easypost.com

ASN | Amazon

img-src Host —

assets.app.easypost.com

ASN | Amazon

img-src Host —

brand.easypostpartnercontent.com

ASN | Amazon

img-src Host —

cdn.walkme.com

ASN | Akamai

img-src Host

AWS CloudFront

d27zb0m07iyic6.cloudfront.net

ASN | Amazon

img-src Host

AWS CloudFront

d2qhvajt3imc89.cloudfront.net

ASN | Amazon

img-src Host

AWS CloudFront

d3sbxpiag177w8.cloudfront.net

ASN | Amazon

img-src Host

AWS CloudFront

dzjsfasj4n94t.cloudfront.net

ASN | Amazon

img-src Scheme —

data:

img-src Host —

ec.walkme.com

ASN | Google Cloud

img-src Host —

eu-cdn.walkme.com

ASN | Akamai

img-src Host —

eu-ec.walkme.com

ASN | Google Cloud

img-src Host

Google DoubleClick

googleads.g.doubleclick.net

ASN | Google

img-src Host

Stripe

q.stripe.com

ASN | Amazon

img-src Host

Google Analytics

region1.analytics.google.com

ASN | Google

img-src Host

Google Analytics

region1.google-analytics.com

ASN | Google

img-src Host

Google Analytics

ssl.google-analytics.com

ASN | Google

img-src Host

Google Static File Front End

ssl.gstatic.com

ASN | Google

img-src Host —

support.easypost.com

ASN | Cloudflare

img-src Host —

track.easypost.com

ASN | Softlayer

img-src Host

Google Analytics

www.google-analytics.com

ASN | Google

img-src Host

Google Search

www.google.com

ASN | Google

img-src Host

Google Tag Manager

www.googletagmanager.com

ASN | Google

img-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

img-src Host

Contentful

assets.ctfassets.net

ASN | Amazon

img-src Host

Contentful

images.ctfassets.net

ASN | Amazon

img-src Host

Contentful

videos.ctfassets.net

ASN | Amazon

img-src Host

Wistia

https://*.wistia.com

ASN | Fastly

img-src Host

Wistia

https://*.wistia.net

img-src Host

HubSpot Forms

https://*.hsforms.com

img-src Host

HubSpot Forms

https://*.hsforms.net

img-src Host

HubSpot

https://track.hubspot.com

ASN | Cloudflare

img-src Host

Akamai

https://embedwistia-a.akamaihd.net

ASN | Akamai

img-src Host

YouTube

https://*.youtube.com

ASN | Google

font-src Scheme —

data:

font-src Host —

assets.app.easypost.com

ASN | Amazon

font-src Host —

track.easypost.com

ASN | Softlayer

font-src Host

Google Fonts

fonts.gstatic.com

ASN | Google

font-src Host

Wistia

https://*.wistia.com

ASN | Fastly

connect-src Host —

embed.easypost.com

ASN | Softlayer

connect-src Host

AWS

easypost-files.s3.us-west-2.amazonaws.com

ASN | Amazon

connect-src Host

Google Conversion Tracking

adservice.google.com

ASN | Google

connect-src Host —

api-canary.easypost.com

ASN | Softlayer

connect-src Host —

api.easypost.com

ASN | Softlayer

connect-src Host —

assets.app.easypost.com

ASN | Amazon

connect-src Host —

cdn.walkme.com

ASN | Akamai

connect-src Host —

ec.walkme.com

ASN | Google Cloud

connect-src Host —

eu-ec.walkme.com

ASN | Google Cloud

connect-src Host —

eu-papi.walkme.com

ASN | Akamai

connect-src Host —

eu-rapi.walkme.com

connect-src Host

Google Search

https://www.google.com

ASN | Google

connect-src Host

Stripe

js.stripe.com

ASN | Amazon

connect-src Host

Google Maps

maps.googleapis.com

ASN | Google

connect-src Host —

papi.walkme.com

ASN | Akamai

connect-src Host

Plaid

production.plaid.com

ASN | Amazon

connect-src Host —

rapi.walkme.com

ASN | Amazon

connect-src Host

Google Analytics

region1.analytics.google.com

ASN | Google

connect-src Host

Google Analytics

region1.google-analytics.com

ASN | Google

connect-src Host

Sentry

*.sentry.io

ASN | Google Cloud

connect-src Host —

track.easypost.com

ASN | Softlayer

connect-src Host —

usps.easypost.com

connect-src Host —

www-canary.easypost.com

connect-src Host —

www.easypost.com

ASN | Cloudflare

connect-src Host —

app-canary.easypost.com

ASN | Softlayer

connect-src Host —

app.easypost.com

ASN | Softlayer

connect-src Host

Google Analytics

www.google-analytics.com

ASN | Google

connect-src Host

Amazon S3

https://hubspot-forms-static-embed.s3.amazonaws.com

ASN | Amazon

connect-src Host

HubSpot Forms

https://*.hsforms.com

connect-src Host

HubSpot Forms

https://*.hsforms.net

connect-src Host

HubSpot

https://*.hubapi.com

ASN | Cloudflare

connect-src Host

HubSpot

https://*.hs-banner.com

connect-src Host

HubSpot Forms

https://*.hscollectedforms.net

connect-src Host

Wistia

https://*.wistia.com

ASN | Fastly

connect-src Host

Akamai

https://embedwistia-a.akamaihd.net

ASN | Akamai

worker-src Host —

assets.app.easypost.com

ASN | Amazon

worker-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

worker-src Host

Google Search

www.google.com

ASN | Google

frame-src Host —

analytics.easypost.com

ASN | Google Cloud

frame-src Host —

assets.track.easypost

frame-src Host —

hire.withgoogle.com

ASN | Google

frame-src Host

Plaid

cdn.plaid.com

ASN | Amazon

frame-src Host —

eu-cdn.walkme.com

ASN | Akamai

frame-src Host —

cdn.walkme.com

ASN | Akamai

frame-src Host

Stripe

js.stripe.com

ASN | Amazon

frame-src Host

Captivate

player.captivate.fm

ASN | Amazon

frame-src Host —

track.easypost.com

ASN | Softlayer

frame-src Host

Google Tag Manager

tagmanager.google.com

ASN | Google

frame-src Host

Google Tag Manager

www.googletagmanager.com

ASN | Google

frame-src Host

Google Search

www.google.com

ASN | Google

frame-src Host

YouTube

www.youtube.com

ASN | Google

frame-src Host

HubSpot Forms

https://*.hsforms.com

frame-src Host

HubSpot Forms

https://*.hsforms.net

media-src Scheme —

blob:

media-src Host —

assets.app.easypost.com

ASN | Amazon

media-src Host

Wistia

https://*.wistia.com

ASN | Fastly

media-src Host

Wistia

https://*.wistia.net

media-src Host

Akamai

https://embedwistia-a.akamaihd.net

ASN | Akamai

frame-ancestors Keyword —

'self'

Content-Security-Policy-Report-Only

No report-only CSP headers found.