Open
Cached
·
just now
5
directives
Content-Security-Policy
Content-Security-Policy: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval' 'self'; img-src https: 'self' data:; font-src 'self' https: data:; object-src 'none'; frame-ancestors 'self' http://localhost:* https://kaldor.admin.pugpig.com https://condenast.admin.pugpig.com;
default-src
Scheme
—
https:
default-src
Scheme
—
wss:
default-src
Scheme
—
blob:
default-src
Keyword
—
'unsafe-inline'
default-src
Keyword
—
'unsafe-eval'
default-src
Keyword
—
'self'
img-src
Scheme
—
https:
img-src
Keyword
—
'self'
img-src
Scheme
—
data:
font-src
Keyword
—
'self'
font-src
Scheme
—
https:
font-src
Scheme
—
data:
object-src
Keyword
—
'none'
frame-ancestors
Keyword
—
'self'
frame-ancestors
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.