Content-Security-Policy Analysis for https://developer.ringover.com

Open Cached · just now

17 directives

Content-Security-Policy

Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com fonts.gstatic.com; img-src 'self' webcdn.ringover.com cdn.ringover.com webcdn.ringover.com data:; connect-src 'self'; font-src 'self' 'unsafe-inline' fonts.googleapis.com fonts.gstatic.com; media-src 'none'; frame-src 'none'; child-src 'self' blob:; form-action 'self'; frame-ancestors 'none'; object-src 'none'; base-uri 'self'; worker-src 'self' blob:; manifest-src 'self'; navigate-to 'self'; upgrade-insecure-requests

default-src Keyword —

'self'

script-src Keyword —

'self'

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

Google Fonts

fonts.googleapis.com

style-src Host

Google Fonts

fonts.gstatic.com

img-src Keyword —

'self'

img-src Host —

webcdn.ringover.com

img-src Host —

cdn.ringover.com

ASN | BJTPARTNERS-AS BJT Partners SAS

img-src Host —

webcdn.ringover.com

img-src Scheme —

data:

connect-src Keyword —

'self'

font-src Keyword —

'self'

font-src Keyword —

'unsafe-inline'

font-src Host

Google Fonts

fonts.googleapis.com

font-src Host

Google Fonts

fonts.gstatic.com

media-src Keyword —

'none'

frame-src Keyword —

'none'

child-src Keyword —

'self'

child-src Scheme —

blob:

form-action Keyword —

'self'

frame-ancestors Keyword —

'none'

object-src Keyword —

'none'

base-uri Keyword —

'self'

worker-src Keyword —

'self'

worker-src Scheme —

blob:

manifest-src Keyword —

'self'

navigate-to Keyword —

'self'

upgrade-insecure-requests Source —

(no sources)

Content-Security-Policy-Report-Only

No report-only CSP headers found.