Content-Security-Policy Analysis for https://experience.adobe.com

Open Cached · just now

12 directives

Content-Security-Policy

Content-Security-Policy: frame-src 'self' https://*.adobe.com https://*.adobe.net https://*.adobe.io https://*.demdex.net https://*.omniture.com https://*.adobeaemcloud.com https://*.magentosite.cloud https://*.marketo.com https://*.adobeio-static.net https://litmus.com blob: data: api.demdex.com *.zscloud.net *.zscalertwo.net *.zscaler.net *.zscalerthree.net *.menlosecurity.com main--helix-organizer--adobe.hlx.live *.adobe-campaign.com https://t.maze.co;frame-ancestors 'self';base-uri 'self';connect-src 'self' https://cdn.experience.adobe.net https://cdn.experience-stage.adobe.net https://exc-unifiedcontent.experience.adobe.net https://exc-unifiedcontent.experience-qa.adobe.net https://exc-unifiedcontent.experience-stage.adobe.net https://experience-qa.adobe.com https://experience-stage.adobe.com https://experience.adobe.com https://experience-qa.adobe.net https://experience-stage.adobe.net https://experience.adobe.net https://halo.experience-stage.adobe.com https://ripple.experience-stage.adobe.com https://halo.experience.adobe.com https://ripple.experience.adobe.com https://*.adobe.io https://*.services.adobe.com https://*.adobelogin.com https://edge.adobedc.net https://p.typekit.net https://use.typekit.net https://*.aptrinsic.com *;default-src 'self';font-src 'self' https://cdn.experience.adobe.net https://cdn.experience-stage.adobe.net https://exc-unifiedcontent.experience.adobe.net https://exc-unifiedcontent.experience-qa.adobe.net https://exc-unifiedcontent.experience-stage.adobe.net https://experience-qa.adobe.com https://experience-stage.adobe.com https://experience.adobe.com https://experience-qa.adobe.net https://experience-stage.adobe.net https://experience.adobe.net https://halo.experience-stage.adobe.com https://ripple.experience-stage.adobe.com https://halo.experience.adobe.com https://ripple.experience.adobe.com https://use.typekit.net https://fonts.gstatic.com https://snippet.maze.co data:;img-src 'self' https://cdn.experience.adobe.net https://cdn.experience-stage.adobe.net https://exc-unifiedcontent.experience.adobe.net https://exc-unifiedcontent.experience-qa.adobe.net https://exc-unifiedcontent.experience-stage.adobe.net https://experience-qa.adobe.com https://experience-stage.adobe.com https://experience.adobe.com https://experience-qa.adobe.net https://experience-stage.adobe.net https://experience.adobe.net https://halo.experience-stage.adobe.com https://ripple.experience-stage.adobe.com https://halo.experience.adobe.com https://ripple.experience.adobe.com https://assets.adobedtm.com https://amcglobal.sc.omtrdc.net https://edge.adobedc.net https://p.typekit.net https://cm.everesttech.net data: https://*.adobe.com https://ab.adobe-identity.com https://a5.behance.net https://pps.services.adobe.com https://dpm.demdex.net https://storage.googleapis.com https://web-sdk.aptrinsic.com https://snippet.maze.co blob:;media-src 'self' images-tv.adobe.com;object-src 'none';script-src 'self' https://cdn.experience.adobe.net https://cdn.experience-stage.adobe.net https://exc-unifiedcontent.experience.adobe.net https://exc-unifiedcontent.experience-qa.adobe.net https://exc-unifiedcontent.experience-stage.adobe.net https://experience-qa.adobe.com https://experience-stage.adobe.com https://experience.adobe.com https://experience-qa.adobe.net https://experience-stage.adobe.net https://experience.adobe.net https://halo.experience-stage.adobe.com https://ripple.experience-stage.adobe.com https://halo.experience.adobe.com https://ripple.experience.adobe.com https://assets.adobedtm.com https://web-sdk.aptrinsic.com https://use.typekit.net https://js-agent.newrelic.com https://snippet.maze.co 'unsafe-eval' 'strict-dynamic' 'nonce-5Z2hu/tDa9I0AhyjrAM+ig==' 'nonce-uYD7okpz2pzLQzlvolNQRg==';style-src 'self' https://cdn.experience.adobe.net https://cdn.experience-stage.adobe.net https://exc-unifiedcontent.experience.adobe.net https://exc-unifiedcontent.experience-qa.adobe.net https://exc-unifiedcontent.experience-stage.adobe.net https://experience-qa.adobe.com https://experience-stage.adobe.com https://experience.adobe.com https://experience-qa.adobe.net https://experience-stage.adobe.net https://experience.adobe.net https://halo.experience-stage.adobe.com https://ripple.experience-stage.adobe.com https://halo.experience.adobe.com https://ripple.experience.adobe.com https://web-sdk.aptrinsic.com https://p.typekit.net https://use.typekit.net https://snippet.maze.co blob: 'unsafe-inline';upgrade-insecure-requests

frame-src Keyword —

'self'

frame-src Host —

https://*.adobe.com

ASN | Akamai

frame-src Host —

https://*.adobe.net

ASN | OMNITURE - Adobe Inc.

frame-src Host —

https://*.adobe.io

ASN | Amazon

frame-src Host —

https://*.demdex.net

frame-src Host —

https://*.omniture.com

frame-src Host —

https://*.adobeaemcloud.com

ASN | Fastly

frame-src Host —

https://*.magentosite.cloud

ASN | Amazon

frame-src Host

Adobe Marketo

https://*.marketo.com

ASN | Cloudflare

frame-src Host —

https://*.adobeio-static.net

frame-src Host —

https://litmus.com

ASN | Fastly

frame-src Scheme —

blob:

frame-src Scheme —

data:

frame-src Host —

api.demdex.com

ASN | Amazon

frame-src Host

Zscaler

*.zscloud.net

frame-src Host

Zscaler

*.zscalertwo.net

frame-src Host

Zscaler

*.zscaler.net

frame-src Host

Zscaler

*.zscalerthree.net

frame-src Host —

*.menlosecurity.com

ASN | Amazon

frame-src Host —

main--helix-organizer--adobe.hlx.live

ASN | Fastly

frame-src Host —

*.adobe-campaign.com

ASN | OMNITURE - Adobe Inc.

frame-src Host

Maze

https://t.maze.co

ASN | Amazon

frame-ancestors Keyword —

'self'

base-uri Keyword —

'self'

connect-src Keyword —

'self'

connect-src Host —

https://cdn.experience.adobe.net

ASN | Amazon

connect-src Host —

https://cdn.experience-stage.adobe.net

ASN | Amazon

connect-src Host —

https://exc-unifiedcontent.experience.adobe.net

ASN | Microsoft

connect-src Host —

https://exc-unifiedcontent.experience-qa.adobe.net

ASN | Microsoft

connect-src Host —

https://exc-unifiedcontent.experience-stage.adobe.net

ASN | Microsoft

connect-src Host —

https://experience-qa.adobe.com

ASN | Microsoft

connect-src Host —

https://experience-stage.adobe.com

ASN | Microsoft

connect-src Host —

https://experience.adobe.com

ASN | Microsoft

connect-src Host —

https://experience-qa.adobe.net

ASN | Microsoft

connect-src Host —

https://experience-stage.adobe.net

ASN | Microsoft

connect-src Host —

https://experience.adobe.net

ASN | Microsoft

connect-src Host —

https://halo.experience-stage.adobe.com

ASN | Microsoft

connect-src Host —

https://ripple.experience-stage.adobe.com

ASN | Microsoft

connect-src Host —

https://halo.experience.adobe.com

ASN | Microsoft

connect-src Host —

https://ripple.experience.adobe.com

ASN | Microsoft

connect-src Host —

https://*.adobe.io

ASN | Amazon

connect-src Host —

https://*.services.adobe.com

connect-src Host —

https://*.adobelogin.com

ASN | OMNITURE - Adobe Inc.

connect-src Host

Adobe Experience Manager

https://edge.adobedc.net

ASN | Amazon

connect-src Host

Adobe Fonts (Typekit)

https://p.typekit.net

ASN | Akamai

connect-src Host

Adobe Fonts (Typekit)

https://use.typekit.net

ASN | Akamai

connect-src Host —

https://*.aptrinsic.com

ASN | Amazon

connect-src Host —

default-src Keyword —

'self'

font-src Keyword —

'self'

font-src Host —

https://cdn.experience.adobe.net

ASN | Amazon

font-src Host —

https://cdn.experience-stage.adobe.net

ASN | Amazon

font-src Host —

https://exc-unifiedcontent.experience.adobe.net

ASN | Microsoft

font-src Host —

https://exc-unifiedcontent.experience-qa.adobe.net

ASN | Microsoft

font-src Host —

https://exc-unifiedcontent.experience-stage.adobe.net

ASN | Microsoft

font-src Host —

https://experience-qa.adobe.com

ASN | Microsoft

font-src Host —

https://experience-stage.adobe.com

ASN | Microsoft

font-src Host —

https://experience.adobe.com

ASN | Microsoft

font-src Host —

https://experience-qa.adobe.net

ASN | Microsoft

font-src Host —

https://experience-stage.adobe.net

ASN | Microsoft

font-src Host —

https://experience.adobe.net

ASN | Microsoft

font-src Host —

https://halo.experience-stage.adobe.com

ASN | Microsoft

font-src Host —

https://ripple.experience-stage.adobe.com

ASN | Microsoft

font-src Host —

https://halo.experience.adobe.com

ASN | Microsoft

font-src Host —

https://ripple.experience.adobe.com

ASN | Microsoft

font-src Host

Adobe Fonts (Typekit)

https://use.typekit.net

ASN | Akamai

font-src Host

Google Fonts

https://fonts.gstatic.com

ASN | Google

font-src Host

Maze

https://snippet.maze.co

ASN | Amazon

font-src Scheme —

data:

img-src Keyword —

'self'

img-src Host —

https://cdn.experience.adobe.net

ASN | Amazon

img-src Host —

https://cdn.experience-stage.adobe.net

ASN | Amazon

img-src Host —

https://exc-unifiedcontent.experience.adobe.net

ASN | Microsoft

img-src Host —

https://exc-unifiedcontent.experience-qa.adobe.net

ASN | Microsoft

img-src Host —

https://exc-unifiedcontent.experience-stage.adobe.net

ASN | Microsoft

img-src Host —

https://experience-qa.adobe.com

ASN | Microsoft

img-src Host —

https://experience-stage.adobe.com

ASN | Microsoft

img-src Host —

https://experience.adobe.com

ASN | Microsoft

img-src Host —

https://experience-qa.adobe.net

ASN | Microsoft

img-src Host —

https://experience-stage.adobe.net

ASN | Microsoft

img-src Host —

https://experience.adobe.net

ASN | Microsoft

img-src Host —

https://halo.experience-stage.adobe.com

ASN | Microsoft

img-src Host —

https://ripple.experience-stage.adobe.com

ASN | Microsoft

img-src Host —

https://halo.experience.adobe.com

ASN | Microsoft

img-src Host —

https://ripple.experience.adobe.com

ASN | Microsoft

img-src Host

Adobe Dynamic Tag Management

https://assets.adobedtm.com

ASN | Akamai

img-src Host

Adobe Target

https://amcglobal.sc.omtrdc.net

ASN | Amazon

img-src Host

Adobe Experience Manager

https://edge.adobedc.net

ASN | Amazon

img-src Host

Adobe Fonts (Typekit)

https://p.typekit.net

ASN | Akamai

img-src Host

Adobe Experience Cloud

https://cm.everesttech.net

ASN | Amazon

img-src Scheme —

data:

img-src Host —

https://*.adobe.com

ASN | Akamai

img-src Host —

https://ab.adobe-identity.com

ASN | Amazon

img-src Host —

https://a5.behance.net

ASN | Amazon

img-src Host —

https://pps.services.adobe.com

ASN | Amazon

img-src Host

Adobe Audience Manager

https://dpm.demdex.net

ASN | Amazon

img-src Host

Google Cloud Storage

https://storage.googleapis.com

ASN | Google

img-src Host —

https://web-sdk.aptrinsic.com

ASN | Google Cloud

img-src Host

Maze

https://snippet.maze.co

ASN | Amazon

img-src Scheme —

blob:

media-src Keyword —

'self'

media-src Host —

images-tv.adobe.com

ASN | Akamai

object-src Keyword —

'none'

script-src Keyword —

'self'

script-src Host —

https://cdn.experience.adobe.net

ASN | Amazon

script-src Host —

https://cdn.experience-stage.adobe.net

ASN | Amazon

script-src Host —

https://exc-unifiedcontent.experience.adobe.net

ASN | Microsoft

script-src Host —

https://exc-unifiedcontent.experience-qa.adobe.net

ASN | Microsoft

script-src Host —

https://exc-unifiedcontent.experience-stage.adobe.net

ASN | Microsoft

script-src Host —

https://experience-qa.adobe.com

ASN | Microsoft

script-src Host —

https://experience-stage.adobe.com

ASN | Microsoft

script-src Host —

https://experience.adobe.com

ASN | Microsoft

script-src Host —

https://experience-qa.adobe.net

ASN | Microsoft

script-src Host —

https://experience-stage.adobe.net

ASN | Microsoft

script-src Host —

https://experience.adobe.net

ASN | Microsoft

script-src Host —

https://halo.experience-stage.adobe.com

ASN | Microsoft

script-src Host —

https://ripple.experience-stage.adobe.com

ASN | Microsoft

script-src Host —

https://halo.experience.adobe.com

ASN | Microsoft

script-src Host —

https://ripple.experience.adobe.com

ASN | Microsoft

script-src Host

Adobe Dynamic Tag Management

https://assets.adobedtm.com

ASN | Akamai

script-src Host —

https://web-sdk.aptrinsic.com

ASN | Google Cloud

script-src Host

Adobe Fonts (Typekit)

https://use.typekit.net

ASN | Akamai

script-src Host

New Relic

https://js-agent.newrelic.com

ASN | Fastly

script-src Host

Maze

https://snippet.maze.co

ASN | Amazon

script-src Keyword —

'unsafe-eval'

script-src Keyword —

'strict-dynamic'

script-src Nonce —

'nonce-5Z2hu/tDa9I0AhyjrAM+ig=='

script-src Nonce —

'nonce-uYD7okpz2pzLQzlvolNQRg=='

style-src Keyword —

'self'

style-src Host —

https://cdn.experience.adobe.net

ASN | Amazon

style-src Host —

https://cdn.experience-stage.adobe.net

ASN | Amazon

style-src Host —

https://exc-unifiedcontent.experience.adobe.net

ASN | Microsoft

style-src Host —

https://exc-unifiedcontent.experience-qa.adobe.net

ASN | Microsoft

style-src Host —

https://exc-unifiedcontent.experience-stage.adobe.net

ASN | Microsoft

style-src Host —

https://experience-qa.adobe.com

ASN | Microsoft

style-src Host —

https://experience-stage.adobe.com

ASN | Microsoft

style-src Host —

https://experience.adobe.com

ASN | Microsoft

style-src Host —

https://experience-qa.adobe.net

ASN | Microsoft

style-src Host —

https://experience-stage.adobe.net

ASN | Microsoft

style-src Host —

https://experience.adobe.net

ASN | Microsoft

style-src Host —

https://halo.experience-stage.adobe.com

ASN | Microsoft

style-src Host —

https://ripple.experience-stage.adobe.com

ASN | Microsoft

style-src Host —

https://halo.experience.adobe.com

ASN | Microsoft

style-src Host —

https://ripple.experience.adobe.com

ASN | Microsoft

style-src Host —

https://web-sdk.aptrinsic.com

ASN | Google Cloud

style-src Host

Adobe Fonts (Typekit)

https://p.typekit.net

ASN | Akamai

style-src Host

Adobe Fonts (Typekit)

https://use.typekit.net

ASN | Akamai

style-src Host

Maze

https://snippet.maze.co

ASN | Amazon

style-src Scheme —

blob:

style-src Keyword —

'unsafe-inline'

upgrade-insecure-requests Source —

(no sources)

Content-Security-Policy-Report-Only

No report-only CSP headers found.