Content-Security-Policy Analysis for https://essentials.copado.com

Open Cached · just now

9 directives

Content-Security-Policy

Content-Security-Policy: default-src 'self'; img-src *; script-src-elem https: http: 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://www.google.com; style-src-elem 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com; font-src *; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com; connect-src *; frame-src *

default-src Keyword —

'self'

img-src Host —

script-src-elem Scheme —

https:

script-src-elem Scheme —

http:

script-src-elem Keyword —

'unsafe-inline'

script-src Keyword —

'self'

script-src Keyword —