Open
Cached
·
just now
3
directives
Content-Security-Policy
Content-Security-Policy: upgrade-insecure-requests Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval' hubspot.mintlify.dev app.hubspot.com cdn-3.convertexperiments.com cdnjs.cloudflare.com connect.facebook.net cta-service-cms2.hubspot.com js.hsforms.net js.hs-analytics.net js.hs-banner.com js.hsleadflows.net js.hubspotfeedback.com js.usemessages.com platform.twitter.com play.vidyard.com run.pstmn.io script.crazyegg.com script.hotjar.com static.hotjar.com static.hsappstatic.net use.typekit.net www.googletagmanager.com www.google-analytics.com www.hubspot.com 'strict-dynamic' 'nonce-ViPB72mKp4ngFBeWavGB2A=='; report-uri https://send.hsbrowserreports.com/csp/report
upgrade-insecure-requests
Source
—
(no sources)
Content-Security-Policy-Report-Only
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Keyword
—
'strict-dynamic'
script-src
Nonce
—
'nonce-ViPB72mKp4ngFBeWavGB2A=='