Open
Cached
·
just now
13
directives
Content-Security-Policy
Content-Security-Policy: default-src *.salemove.com *.glia.com; connect-src data: *.salemove.com wss://*.salemove.com *.glia.com wss://*.glia.com *.twilio.com wss://*.twilio.com *.twiliocdn.com wss://*.twiliocdn.com graph.facebook.com wss://graph.facebook.com *.sentry.io wss://*.sentry.io http://localhost:9714; font-src data: *.salemove.com *.glia.com fonts.gstatic.com; frame-ancestors 'none'; frame-src blob: *.salemove.com *.glia.com *.facebook.com glia-applets.com *.quicksight.aws.amazon.com *.cobrowsing.com; img-src data: blob: *.salemove.com *.glia.com *.facebook.com *.slack-edge.com; media-src 'self' https: blob:; object-src 'self' https: blob:; script-src *.salemove.com *.glia.com connect.facebook.net 'wasm-unsafe-eval' 'nonce-joaXpGo6krFiTybJk9Z9EEmooXh98EiSXybZa0VpJyA='; style-src https: 'unsafe-inline'; upgrade-insecure-requests; worker-src *.salemove.com *.glia.com 'self' blob:; report-uri https://app.salemove.com/csp_violations
connect-src
Scheme
—
data:
connect-src
Host
—
connect-src
Host
—
connect-src
Host
—
font-src
Scheme
—
data:
frame-ancestors
Keyword
—
'none'
frame-src
Scheme
—
blob:
img-src
Scheme
—
data:
img-src
Scheme
—
blob:
media-src
Keyword
—
'self'
media-src
Scheme
—
https:
media-src
Scheme
—
blob:
object-src
Keyword
—
'self'
object-src
Scheme
—
https:
object-src
Scheme
—
blob:
script-src
Keyword
—
'wasm-unsafe-eval'
script-src
Nonce
—
'nonce-joaXpGo6krFiTybJk9Z9EEmooXh98EiSXybZa0VpJyA='
style-src
Scheme
—
https:
style-src
Keyword
—
'unsafe-inline'
upgrade-insecure-requests
Source
—
(no sources)
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
Content-Security-Policy-Report-Only
No report-only CSP headers found.