DNS Gurus
Cached · just now
21 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Host
core.spreedly.com
ASN | Fastly
script-src Host Localize.js logo Localize.js
global.localizecdn.com
ASN | Cloudflare
script-src Host Stripe logo Stripe
js.stripe.com
ASN | Fastly
script-src Host Apple Pay logo Apple Pay
applepay.cdn-apple.com
ASN | Apple
script-src Keyword
'report-sha256'
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
fonts.googleapis.com
ASN | Google
img-src Host
*
img-src Scheme
data:
font-src Scheme
data:
font-src Host Google Fonts logo Google Fonts
fonts.gstatic.com
ASN | Google
connect-src Keyword
'self'
connect-src Host Google Search logo Google Search
google.com
ASN | Google
connect-src Host Google Pay logo Google Pay
pay.google.com
ASN | Google
connect-src Host
tez.google.com
ASN | Google
connect-src Host Google Search logo Google Search
www.google.com
ASN | Google
connect-src Host Paddle logo Paddle
checkout-service.paddle.com
ASN | Cloudflare
connect-src Host Paddle logo Paddle
checkout-analytics.paddle.com
ASN | Cloudflare
connect-src Host Paddle logo Paddle
create-checkout.paddle.com
ASN | Cloudflare
connect-src Host
core.spreedly.com
ASN | Fastly
connect-src Host Paddle logo Paddle
ld.paddle.com
ASN | Cloudflare
connect-src Host Localize.js logo Localize.js
global.localizecdn.com
ASN | Cloudflare
connect-src Host Sentry logo Sentry
o522631.ingest.sentry.io
ASN | Google Cloud
frame-src Host
*
manifest-src Keyword
'self'
upgrade-insecure-requests Source
(no sources)
report-uri Host Report URI logo Report URI
https://paddlecfe.report-uri.com/r/t/csp/enforce
ASN | Cloudflare
report-to Host
default,
report-to Host
default-src
report-to Keyword
'self'
script-src Keyword
'self'
script-src Host
core.spreedly.com
ASN | Fastly
script-src Host Localize.js logo Localize.js
global.localizecdn.com
ASN | Cloudflare
script-src Host Stripe logo Stripe
js.stripe.com
ASN | Fastly
script-src Host Apple Pay logo Apple Pay
applepay.cdn-apple.com
ASN | Apple
script-src Keyword
'report-sha256'
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
fonts.googleapis.com
ASN | Google
img-src Host
*
img-src Scheme
data:
font-src Scheme
data:
font-src Host Google Fonts logo Google Fonts
fonts.gstatic.com
ASN | Google
connect-src Keyword
'self'
connect-src Host Google Search logo Google Search
google.com
ASN | Google
connect-src Host Google Pay logo Google Pay
pay.google.com
ASN | Google
connect-src Host
tez.google.com
ASN | Google
connect-src Host Google Search logo Google Search
www.google.com
ASN | Google
connect-src Host Paddle logo Paddle
checkout-service.paddle.com
ASN | Cloudflare
connect-src Host Paddle logo Paddle
checkout-analytics.paddle.com
ASN | Cloudflare
connect-src Host Paddle logo Paddle
create-checkout.paddle.com
ASN | Cloudflare
connect-src Host
core.spreedly.com
ASN | Fastly
connect-src Host Paddle logo Paddle
ld.paddle.com
ASN | Cloudflare
connect-src Host Localize.js logo Localize.js
global.localizecdn.com
ASN | Cloudflare
connect-src Host Sentry logo Sentry
o522631.ingest.sentry.io
ASN | Google Cloud
frame-src Host
*
manifest-src Keyword
'self'
upgrade-insecure-requests Source
(no sources)
report-uri Host Report URI logo Report URI
https://paddlecfe.report-uri.com/r/t/csp/enforce
ASN | Cloudflare
report-to Host
default

Content-Security-Policy-Report-Only

No report-only CSP headers found.