Content-Security-Policy Analysis for https://beta.paytrace.com

Open Cached · just now

13 directives

Content-Security-Policy

Content-Security-Policy: script-src-elem 'self' paytrace.com *.paytrace.com *.gstatic.com *.google.com fpjscdn.net code.jquery.com fpnpmcdn.net stackpath.bootstrapcdn.com cdnjs.cloudflare.com *.fontawesome.com secure.comodo.net www.livehelpnow.net 'unsafe-inline'; style-src-elem 'self' stackpath.bootstrapcdn.com use.fontawesome.com fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: blob: ssl.google-analytics.com www.livehelpnow.net paytrace.com *.paytrace.com paytrace.net; font-src 'self' data: *.fontawesome.com fonts.gstatic.com; connect-src 'self' paytrace.com *.paytrace.com ssl.google-analytics.com api.fpjs.io *.google.com *.gstatic.com google.com *.fontawesome.com; frame-src 'self' *.google.com *; worker-src 'self' blob:; frame-ancestors *; report-uri https://ptpayments.report-uri.com/r/t/csp/enforce

script-src-elem Keyword —

'self'

script-src-elem Host —

paytrace.com

ASN | Amazon

script-src-elem Host —

*.paytrace.com

ASN | Amazon

script-src-elem Host

Google Static File Front End

*.gstatic.com

ASN | Google

script-src-elem Host

Google Search

*.google.com

ASN | Google

script-src-elem Host —

fpjscdn.net

ASN | Cloudflare

script-src-elem Host

jQuery

code.jquery.com

ASN | Fastly

script-src-elem Host —

fpnpmcdn.net

ASN | Cloudflare

script-src-elem Host

BootstrapCDN

stackpath.bootstrapcdn.com

ASN | Cloudflare

script-src-elem Host

Cloudflare CDNJS

cdnjs.cloudflare.com

ASN | Cloudflare

script-src-elem Host

Font Awesome

*.fontawesome.com

ASN | Cloudflare

script-src-elem Host —

secure.comodo.net

script-src-elem Host —

www.livehelpnow.net

ASN | Cloudflare

script-src-elem Keyword —

'unsafe-inline'

style-src-elem Keyword —

'self'

style-src-elem Host

BootstrapCDN

stackpath.bootstrapcdn.com

ASN | Cloudflare

style-src-elem Host

Font Awesome

use.fontawesome.com

ASN | Cloudflare

style-src-elem Host

Google Fonts

fonts.googleapis.com

ASN | Google

style-src-elem Keyword —

'unsafe-inline'

img-src Keyword —

'self'

img-src Scheme —

data:

img-src Scheme —

blob:

img-src Host

Google Analytics

ssl.google-analytics.com

ASN | Google

img-src Host —

www.livehelpnow.net

ASN | Cloudflare

img-src Host —

paytrace.com

ASN | Amazon

img-src Host —

*.paytrace.com

ASN | Amazon

img-src Host —

paytrace.net

ASN | Cloudflare

font-src Keyword —

'self'

font-src Scheme —

data:

font-src Host

Font Awesome

*.fontawesome.com

ASN | Cloudflare

font-src Host

Google Fonts

fonts.gstatic.com

ASN | Google

connect-src Keyword —

'self'

connect-src Host —

paytrace.com

ASN | Amazon

connect-src Host —

*.paytrace.com

ASN | Amazon

connect-src Host

Google Analytics

ssl.google-analytics.com

ASN | Google

connect-src Host

Fingerprint

api.fpjs.io

ASN | Amazon

connect-src Host

Google Search

*.google.com

ASN | Google

connect-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

connect-src Host

Google Search

google.com

ASN | Google

connect-src Host

Font Awesome

*.fontawesome.com

ASN | Cloudflare

frame-src Keyword —

'self'

frame-src Host

Google Search

*.google.com

ASN | Google

frame-src Host —

worker-src Keyword —

'self'

worker-src Scheme —

blob:

frame-ancestors Host —

report-uri Host

Report URI

https://ptpayments.report-uri.com/r/t/csp/enforce

ASN | Cloudflare

Content-Security-Policy-Report-Only

Content-Security-Policy-Report-Only: default-src 'none'; form-action 'none'; frame-ancestors 'none'; report-uri https://paytrace.report-uri.com/r/t/csp/wizard

default-src Keyword —

'none'

form-action Keyword —

'none'

frame-ancestors Keyword —

'none'

report-uri Host

Report URI

https://paytrace.report-uri.com/r/t/csp/wizard

ASN | Cloudflare