Content-Security-Policy Analysis for https://developer.clari.com

Open Cached · just now

7 directives

Content-Security-Policy

Content-Security-Policy: frame-ancestors *.salesforce.com *.lightning.force.com; font-src 'self' data: *.clari.com; default-src 'self' *.clari.com; style-src 'self' 'unsafe-inline' *.clari.com; worker-src 'none'; script-src 'self' 'unsafe-inline' *.clari.com cdn.mxpnl.com *.pendo.io cdn.pubnub.com cdn.ravenjs.com fullstory.com *.cloudflare.com; connect-src sentry.io *.clari.com *.pndsn.com *.mixpanel.com

frame-ancestors Host

Salesforce Cloud

*.salesforce.com

frame-ancestors Host

Salesforce Sites

*.lightning.force.com

font-src Keyword —

'self'

font-src Scheme —

data:

font-src Host —

*.clari.com

default-src Keyword —

'self'

default-src Host —

*.clari.com

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host —

*.clari.com

worker-src Keyword —

'none'

script-src Keyword —

'self'

script-src Keyword —

'unsafe-inline'

script-src Host —

*.clari.com

script-src Host

Mixpanel

cdn.mxpnl.com

ASN | Google Cloud

script-src Host

Pendo

*.pendo.io

ASN | Google Cloud

script-src Host

PubNub

cdn.pubnub.com

script-src Host

Sentry

cdn.ravenjs.com

script-src Host

Fullstory

fullstory.com

script-src Host

Cloudflare CDN

*.cloudflare.com

ASN | Cloudflare

connect-src Host

Sentry

sentry.io

ASN | Google Cloud

connect-src Host —

*.clari.com

connect-src Host —

*.pndsn.com

connect-src Host

Mixpanel

*.mixpanel.com

ASN | Google Cloud

Content-Security-Policy-Report-Only

No report-only CSP headers found.