Content-Security-Policy Analysis for https://care.bt.com

Open Cached · just now

2 directives

Content-Security-Policy

Content-Security-Policy: frame-ancestors 'self' *.adobe.com; default-src blob: https: data: *.sprinklr.com wss://*.sprinklr.com *.liveperson.net wss://*.liveperson.net 'unsafe-inline' 'unsafe-eval';

frame-ancestors Keyword —

'self'

frame-ancestors Host —

*.adobe.com

ASN | Akamai

default-src Scheme —

blob:

default-src Scheme —

https:

default-src Scheme —

data:

default-src Host

Sprinklr

*.sprinklr.com

ASN | Amazon

default-src Host

Sprinklr

wss://*.sprinklr.com

ASN | Amazon

default-src Host —

*.liveperson.net

ASN | LIVEPERSON - LivePerson

default-src Host —

wss://*.liveperson.net

ASN | LIVEPERSON - LivePerson

default-src Keyword —

'unsafe-inline'

default-src Keyword —

'unsafe-eval'

Content-Security-Policy-Report-Only

No report-only CSP headers found.