Open
Cached
·
just now
29
directives
Content-Security-Policy
Content-Security-Policy: base-uri 'none'; child-src 'self'; connect-src https://c.increment.com https://c.stripe.dev https://c.stripe.global https://c.stripe.partners https://edge-api.stripe.com wss://stripe-cli-ws-nw.stripe.com/subscribe/ wss://stripe-cli.stripe.com/subscribe/ wss://stripecli-ws-nw.stripe.com/subscribe/ wss://stripecli.stripe.com/subscribe/ https://api.stripe.com https://ai.stripe.com https://developer-ai.corp.stripe.com https://b.stripecdn.com https://errors.stripe.com https://insights.algolia.io https://js.stripe.com https://link.co/cookie-settings/ https://link.com/cookie-settings/ https://r.stripe.com https://raw.githubusercontent.com/stripe/stripe-go/master/VERSION https://raw.githubusercontent.com/stripe/stripe-java/master/VERSION https://stripe.com https://stripecli-ws-nw.stripe.com/subscribe/ https://y4pfttj91h-1.algolianet.com https://y4pfttj91h-2.algolianet.com https://y4pfttj91h-3.algolianet.com https://y4pfttj91h-dsn.algolia.net https://dashboard.stripe.com/ajax/anonymous_sandbox_assignment_handoff 'self'; default-src 'none'; font-src data: https://b.stripecdn.com https://b.stripecdn.com/docs-statics-srv/assets/ 'self'; form-action 'none'; frame-ancestors https://docs-edit.corp.stripe.com https://markdraft.corp.stripe.com 'self'; frame-src https://edge-checkout.stripe.com https://b.stripecdn.com https://checkout.stripe.com https://connect-js.stripe.com https://stripe-data-exports.s3.amazonaws.com https://js.stripe.com 'self'; img-src https://docs.stripecdn.com https://cdn.stripeextensions.com/com.example.docs-stripe-apps-examples/ https://cdn.stripeextensions.com/com.stripe.stripe-apps-examples/ blob: data: https://b.stripecdn.com https://d37ugbyn3rpeym.cloudfront.net https://dashboard.stripe.com https://files.stripe.com https://i.ytimg.com/vi/ https://i.ytimg.com/vi_webp/ https://js.stripe.com https://q.stripe.com https://s3.amazonaws.com/stripe-uploads/ https://stripe-images.s3.amazonaws.com/docs/ 'self'; media-src https://docs.stripecdn.com blob: https://b.stripecdn.com https://d37ugbyn3rpeym.cloudfront.net 'self'; script-src https://cdn.stripeextensions.com/com.example.docs-stripe-apps-examples/ https://cdn.stripeextensions.com/com.stripe.stripe-apps-examples/ https://b.stripecdn.com https://connect-js.stripe.com https://js.stripe.com 'nonce-tDG8LJxf6djqw3dYJ5HuHw==' 'self' 'sha256-SGInGn8KvQpcjiIcYyTFbUNfqdqBIxQ8WJd9xgQQrsI=' 'sha256-yXxHrLNbJc+6m1MH8jUxHmvOsUducN4u40nNchqiv9Q=' 'sha256-u66Rr9rFgMi2ZdDqGzZ3gml5O9dXP6CGDbfPcaQajKI=' 'report-sample'; style-src https://b.stripecdn.com 'report-sample' 'self' 'unsafe-inline'; worker-src 'self'; upgrade-insecure-requests; report-uri https://q.stripe.com/csp-violation?q=MTtNcUFef0BgmE7INHED1SG8yr-sWcTali1PP0u9wU_4atvGoBWgwf0YlqzZhu2L0d_h6F2Q Content-Security-Policy-Report-Only: base-uri 'none'; child-src 'self'; connect-src https://c.increment.com https://c.stripe.dev https://c.stripe.global https://c.stripe.partners https://edge-api.stripe.com wss://stripe-cli-ws-nw.stripe.com/subscribe/ wss://stripe-cli.stripe.com/subscribe/ wss://stripecli-ws-nw.stripe.com/subscribe/ wss://stripecli.stripe.com/subscribe/ https://api.stripe.com https://ai.stripe.com https://developer-ai.corp.stripe.com https://b.stripecdn.com https://errors.stripe.com https://insights.algolia.io https://js.stripe.com https://link.co/cookie-settings/ https://link.com/cookie-settings/ https://r.stripe.com https://raw.githubusercontent.com/stripe/stripe-go/master/VERSION https://raw.githubusercontent.com/stripe/stripe-java/master/VERSION https://stripe.com https://stripecli-ws-nw.stripe.com/subscribe/ https://y4pfttj91h-1.algolianet.com https://y4pfttj91h-2.algolianet.com https://y4pfttj91h-3.algolianet.com https://y4pfttj91h-dsn.algolia.net https://dashboard.stripe.com/ajax/anonymous_sandbox_assignment_handoff 'self'; default-src 'none'; font-src data: https://b.stripecdn.com https://b.stripecdn.com/docs-statics-srv/assets/ 'self'; form-action 'none'; frame-ancestors https://docs-edit.corp.stripe.com https://markdraft.corp.stripe.com 'self'; frame-src https://edge-checkout.stripe.com https://b.stripecdn.com https://checkout.stripe.com https://connect-js.stripe.com https://stripe-data-exports.s3.amazonaws.com https://js.stripe.com 'self'; img-src https://docs.stripecdn.com https://cdn.stripeextensions.com/com.example.docs-stripe-apps-examples/ https://cdn.stripeextensions.com/com.stripe.stripe-apps-examples/ blob: data: https://b.stripecdn.com https://d37ugbyn3rpeym.cloudfront.net https://dashboard.stripe.com https://files.stripe.com https://i.ytimg.com/vi/ https://i.ytimg.com/vi_webp/ https://js.stripe.com https://q.stripe.com https://s3.amazonaws.com/stripe-uploads/ https://stripe-images.s3.amazonaws.com/docs/ 'self'; media-src https://docs.stripecdn.com blob: https://b.stripecdn.com https://d37ugbyn3rpeym.cloudfront.net 'self'; script-src https://cdn.stripeextensions.com/com.example.docs-stripe-apps-examples/ https://cdn.stripeextensions.com/com.stripe.stripe-apps-examples/ https://b.stripecdn.com https://connect-js.stripe.com https://js.stripe.com 'nonce-tDG8LJxf6djqw3dYJ5HuHw==' 'self' 'sha256-SGInGn8KvQpcjiIcYyTFbUNfqdqBIxQ8WJd9xgQQrsI=' 'sha256-yXxHrLNbJc+6m1MH8jUxHmvOsUducN4u40nNchqiv9Q=' 'sha256-u66Rr9rFgMi2ZdDqGzZ3gml5O9dXP6CGDbfPcaQajKI=' 'report-sample'; style-src https://b.stripecdn.com 'report-sample' 'self' 'nonce-tDG8LJxf6djqw3dYJ5HuHw==' 'unsafe-hashes' 'sha256-NJH8hYZIeTx31th404J3fVwWvWaQo7beRAtJPe8DFzU=' 'sha256-t9PfmYlrli/SKfkOu1F3ru9qqFWjdE+tphvqhn5jlzA=' 'sha256-MtxTLcyxVEJFNLEIqbVTaqR4WWr0+lYSZ78AzGmNsuA=' 'sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4=' 'sha256-cXvVZOWrN9TDXv7R/dtCO6LdUavSrfsGBWTELGF2rgU=' 'sha256-p+jqvcoDFck2fLI5IGQFZCBLba8R7EGM34IhwqtKGwk=' 'sha256-1loH7bEUMovDekeuu7ZSI1ArVQdHA8eYrBlfpYm2/W0=' 'sha256-m0FjobEXOs23AaDaISFNF5h11EJKKqE/N9X1q5tWsfQ=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='; worker-src 'self'; report-uri https://q.stripe.com/csp-violation?q=MTtNcUFef0BgmE7INHED1SG8yr-sWcTali1PP0u9wU_4atvGoBWgwf0YlqzZhu2L0d_h6F2Q
base-uri
Keyword
—
'none'
child-src
Keyword
—
'self'
connect-src
Keyword
—
'self'
default-src
Keyword
—
'none'
font-src
Scheme
—
data:
font-src
Keyword
—
'self'
form-action
Keyword
—
'none'
frame-ancestors
Keyword
—
'self'
frame-src
Keyword
—
'self'
img-src
Scheme
—
blob:
img-src
Scheme
—
data:
img-src
Keyword
—
'self'
media-src
Scheme
—
blob:
media-src
Keyword
—
'self'
script-src
Nonce
—
'nonce-tDG8LJxf6djqw3dYJ5HuHw=='
script-src
Keyword
—
'self'
script-src
Hash
—
'sha256-SGInGn8KvQpcjiIcYyTFbUNfqdqBIxQ8WJd9xgQQrsI='
script-src
Hash
—
'sha256-yXxHrLNbJc+6m1MH8jUxHmvOsUducN4u40nNchqiv9Q='
script-src
Hash
—
'sha256-u66Rr9rFgMi2ZdDqGzZ3gml5O9dXP6CGDbfPcaQajKI='
script-src
Keyword
—
'report-sample'
style-src
Keyword
—
'report-sample'
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
worker-src
Keyword
—
'self'
upgrade-insecure-requests
Source
—
(no sources)
Content-Security-Policy-Report-Only
base-uri
Keyword
—
'none'
child-src
Keyword
—
'self'
connect-src
Keyword
—
'self'
default-src
Keyword
—
'none'
font-src
Scheme
—
data:
font-src
Keyword
—
'self'
form-action
Keyword
—
'none'
frame-ancestors
Keyword
—
'self'
frame-src
Keyword
—
'self'
img-src
Scheme
—
blob:
img-src
Scheme
—
data:
img-src
Keyword
—
'self'
media-src
Scheme
—
blob:
media-src
Keyword
—
'self'
script-src
Nonce
—
'nonce-tDG8LJxf6djqw3dYJ5HuHw=='
script-src
Keyword
—
'self'
script-src
Hash
—
'sha256-SGInGn8KvQpcjiIcYyTFbUNfqdqBIxQ8WJd9xgQQrsI='
script-src
Hash
—
'sha256-yXxHrLNbJc+6m1MH8jUxHmvOsUducN4u40nNchqiv9Q='
script-src
Hash
—
'sha256-u66Rr9rFgMi2ZdDqGzZ3gml5O9dXP6CGDbfPcaQajKI='
script-src
Keyword
—
'report-sample'
style-src
Keyword
—
'report-sample'
style-src
Keyword
—
'self'
style-src
Nonce
—
'nonce-tDG8LJxf6djqw3dYJ5HuHw=='
style-src
Keyword
—
'unsafe-hashes'
style-src
Hash
—
'sha256-NJH8hYZIeTx31th404J3fVwWvWaQo7beRAtJPe8DFzU='
style-src
Hash
—
'sha256-t9PfmYlrli/SKfkOu1F3ru9qqFWjdE+tphvqhn5jlzA='
style-src
Hash
—
'sha256-MtxTLcyxVEJFNLEIqbVTaqR4WWr0+lYSZ78AzGmNsuA='
style-src
Hash
—
'sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='
style-src
Hash
—
'sha256-cXvVZOWrN9TDXv7R/dtCO6LdUavSrfsGBWTELGF2rgU='
style-src
Hash
—
'sha256-p+jqvcoDFck2fLI5IGQFZCBLba8R7EGM34IhwqtKGwk='
style-src
Hash
—
'sha256-1loH7bEUMovDekeuu7ZSI1ArVQdHA8eYrBlfpYm2/W0='
style-src
Hash
—
'sha256-m0FjobEXOs23AaDaISFNF5h11EJKKqE/N9X1q5tWsfQ='
style-src
Hash
—
'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='
worker-src
Keyword
—
'self'