Open
Cached
·
just now
11
directives
Content-Security-Policy
Content-Security-Policy: frame-src 'self' data: csxd.forte.net csxd.csgi.com *.ceros.com https://view.ceros.com player.vimeo.com *.vimeo.com *.googlesyndication.com *.google.com *.doubleclick.net *.freshchat.com platform.twitter.com https://www.googletagmanager.com www.youtube.com *.company-target.com https://go.forte.net demo.csgi.com https://e.issuu.com; frame-ancestors 'self' pi.pardot.com t.co twitter.com *.mkt.dynamics.com *.azureedge.net; block-all-mixed-content; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://assets1-usa.mkt.dynamics.com https://public-usa.mkt.dynamics.com https://cxppusa1formui01cdnsa01-endpoint.azureedge.net https://*.ep-mimecast.ads-twitter.com https://*.doubleclick.net https://*.google.com https://*.googleadservices.com https://*.googlesyndication.com https://*.googletagservices.com https://*.js.ubembed.com https://t.marketingcloudfx.com https://agent.marketingcloudfx.com https://analytics.twitter.com https://assets.ubembed.com https://cdnjs.cloudflare.com https://cdn.freshbots.ai https://cdn.jsdelivr.net https://cdn.leadmanagerfx.com https://content.linkedin.com https://cdn-prod.securiti.ai https://cdn.syndication.twimg.com https://dsp-creative.demandbase.com https://en.twitter.com https://f.vimeocdn.com https://go.forte.net https://google-analytics.com https://googletagmanager.com https://maxcdn.bootstrapcdn.com https://m.youtube.com https://netdna.bootstrapcdn.com https://platform.linkedin.com https://demo.csgi.com https://pi.pardot.com https://platform.twitter.com https://player.vimeo.com https://static.ads-twitter.com https://stackpath.bootstrapcdn.com https://ssl.google-analytics.com https://snap.licdn.com https://static-exp1.licdn.com https://scout-cdn.salesloft.com https://s.swiftypecdn.com https://tag.demandbase.com https://tagmanager.google.com https://t.co https://www.google-analytics.com https://www.googletagmanager.com https://www.vimeo.com https://www.youtube.com https://*.gstatic.com https://forte-payments.freshchat.com https://*.issuu.com https://*.crazyegg.com; style-src 'self' 'unsafe-inline' https://cdn.userway.org *.licdn.com *.google.com *.bootstrapcdn.com cdnjs.cloudflare.com cdn.freshbots.ai cdn.jsdelivr.net cdn-prod.securiti.ai fonts.googleapis.com hello.myfonts.net platform.twitter.com s.swiftypecdn.com ton.twimg.com www.googletagmanager.com https://player.vimeo.com static.elfsight.com https://cdn-ilefnnf.nitrocdn.com e.issuu.com https://forte-payments.freshchat.com https://script.crazyegg.com/; script-src-elem * 'unsafe-inline' blob: https://www.forte.net https://cdn-ilefnnf.nitrocdn.com ; object-src *.googlesyndication.com; child-src 'self' blob: https://player.vimeo.com *.vimeo.com *.googlesyndication.com *.google.com *.doubleclick.net *.freshchat.com platform.twitter.com www.googletagmanager.com www.youtube.com s.company-target.com https://go.forte.net view.ceros.com demo.csgi.com https://e.issuu.com; base-uri 'self'; form-action 'self' *.twitter.com *.google.com; worker-src 'self' blob: www.google.com;
frame-src
Keyword
—
'self'
frame-src
Scheme
—
data:
frame-src
Host
—
frame-src
Host
—
frame-ancestors
Keyword
—
'self'
frame-ancestors
Host
—
block-all-mixed-content
Source
—
(no sources)
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Host
—
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
script-src-elem
Host
—
*
script-src-elem
Keyword
—
'unsafe-inline'
script-src-elem
Scheme
—
blob:
child-src
Keyword
—
'self'
child-src
Scheme
—
blob:
base-uri
Keyword
—
'self'
form-action
Keyword
—
'self'
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
Content-Security-Policy-Report-Only
No report-only CSP headers found.