Open
Cached
·
just now
7
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' https://base.mirror.xyz https://static-assets.coinbase.com/js/cca/v0.0.1.js https://cca-lite.coinbase.com https://cdn.cookielaw.org https://*.walletconnect.org wss://*.walletconnect.org wss://*.walletconnect.com https://*.walletconnect.com https://explorer-api.walletconnect.com https://fonts.googleapis.com https://fonts.gstatic.com/ https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://jsv3.recruitics.com/0778138b-cc59-11ef-a514-fd1759833eec.js ;worker-src 'self' blob:;connect-src 'self' blob: https://blob.vercel-storage.com https://zku9gdedgba48lmr.public.blob.vercel-storage.com https://cdn.cookielaw.org https://geolocation.onetrust.com https://privacyportal.onetrust.com https://*.walletconnect.org wss://*.walletconnect.org wss://*.walletconnect.com https://*.walletconnect.com https://explorer-api.walletconnect.com https://api.sprig.com https://cdn.sprig.com https://boards.greenhouse.io https://boards-api.greenhouse.io https://cca-lite.coinbase.com https://static-assets.coinbase.com/js/cca/v0.0.1.js https://ccip-v2.ens.xyz https://euc.li https://arweave.net https://ens.xyz https://enhanced-provider.rainbow.me https://*.coinbase.com wss://www.walletlink.org/rpc https://analytics-service-dev.cbhq.net mainnet.base.org sepolia.base.org https://cloudflare-eth.com https://i.seadn.io/ https://api.opensea.io https://ipfs.io https://cloudflare-ipfs.com wss://www.walletlink.org https://base.easscan.org/graphql https://api.guild.xyz/ https://flag.lab.amplitude.com/sdk/v2/flags https://api.lab.amplitude.com/sdk/v2/vardata https://browser-intake-datadoghq.com https://*.datadoghq.com https://translate.googleapis.com https://sdk-api.neynar.com/ https://cdn.jsdelivr.net/npm/@lottiefiles/[email protected]/dist/dotlottie-player.wasm https://cdn.jsdelivr.net/npm/@lottiefiles/[email protected]/dist/dotlottie-player.wasm https://unpkg.com/@lottiefiles/[email protected]/dist/dotlottie-player.wasm https://unpkg.com/@lottiefiles/[email protected]/dist/dotlottie-player.wasm https://base.mypinata.cloud https://usdc-claim-git-master-coinbase-vercel.vercel.app https://eth.merkle.io https://blue-api.morpho.org/graphql https://base-sepolia.easscan.org/graphql https://*.google-analytics.com wss://metamask-sdk.api.cx.metamask.io https://metamask-sdk.api.cx.metamask.io ;frame-src https://p.datadoghq.com https://*.walletconnect.org wss://*.walletconnect.org wss://*.walletconnect.com https://*.walletconnect.com https://explorer-api.walletconnect.com;frame-ancestors 'self' https://base.mirror.xyz;form-action 'self' https://base.mirror.xyz;img-src 'self' blob: data: https://cdn.cookielaw.org https://base.org https://*.base.org https://euc.li https://*.walletconnect.com/ https://i.seadn.io/ https://ipfs.io https://cloudflare-ipfs.com https://res.cloudinary.com https://base.mypinata.cloud https://img.reservoir.tools https://d3r81g40ycuhqg.cloudfront.net/;
default-src
Keyword
—
'self'
default-src
Keyword
—
'unsafe-inline'
default-src
Keyword
—
'wasm-unsafe-eval'
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
connect-src
Keyword
—
'self'
connect-src
Scheme
—
blob:
connect-src
Host
—
connect-src
Host
—
connect-src
Host
—
frame-ancestors
Keyword
—
'self'
form-action
Keyword
—
'self'
img-src
Keyword
—
'self'
img-src
Scheme
—
blob:
img-src
Scheme
—
data:
img-src
Host
—
img-src
Host
—
img-src
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.