DNS Gurus
Cached · just now
10 directives

Content-Security-Policy

default-src Keyword
'self'
img-src Host
*
img-src Scheme
data:
style-src Host
*
style-src Keyword
'unsafe-inline'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Host Google Hosted Libraries logo Google Hosted Libraries
https://ajax.googleapis.com
ASN | Google
script-src Host Cloudflare Web Analytics logo Cloudflare Web Analytics
https://static.cloudflareinsights.com
ASN | Cloudflare
script-src Host Cloudflare Turnstile logo Cloudflare Turnstile
https://challenges.cloudflare.com
ASN | Cloudflare
script-src Host AMP logo AMP
https://cdn.ampproject.org
ASN | Google
script-src Host Cloudflare CDN logo Cloudflare CDN
https://*.cloudflare.com
ASN | Cloudflare
object-src Keyword
'none'
frame-ancestors Keyword
'self'
font-src Keyword
'self'
font-src Host Google Fonts logo Google Fonts
https://fonts.gstatic.com
ASN | Google
frame-src Keyword
'self'
frame-src Host Cloudflare Turnstile logo Cloudflare Turnstile
https://challenges.cloudflare.com
ASN | Cloudflare
connect-src Keyword
'self'
connect-src Host
*
worker-src Keyword
'self'
worker-src Scheme
blob:
worker-src Host Google Hosted Libraries logo Google Hosted Libraries
https://ajax.googleapis.com
ASN | Google
worker-src Host AMP logo AMP
https://cdn.ampproject.org
ASN | Google

Content-Security-Policy-Report-Only

No report-only CSP headers found.