Content-Security-Policy Analysis for https://help.midyork.org

Open Cached · just now

4 directives

Content-Security-Policy

Content-Security-Policy: script-src 'self' 'strict-dynamic' static.zohocdn.com salesiq.zoho.com dtzpfzv31buvf.cloudfront.net cdn.pagesense.io js.zohocdn.com widgets.zohosalesiq.com zohotagmanager.cdn.pagesense.io 'nonce-33353b38e916c8ead2a5825c0cb60890';object-src 'none';base-uri 'self' static.zohocdn.com;report-uri https://logsapi.zoho.com/csplog?service=support;

script-src Keyword —

'self'

script-src Keyword —

'strict-dynamic'

script-src Host

Zoho Mail

static.zohocdn.com

script-src Host

Zoho Mail

salesiq.zoho.com

script-src Host

AWS CloudFront

dtzpfzv31buvf.cloudfront.net

script-src Host —

cdn.pagesense.io

script-src Host

Zoho Mail

js.zohocdn.com

script-src Host —

widgets.zohosalesiq.com

script-src Host —

zohotagmanager.cdn.pagesense.io

script-src Nonce —

'nonce-33353b38e916c8ead2a5825c0cb60890'

object-src Keyword —

'none'

base-uri Keyword —

'self'

base-uri Host

Zoho Mail

static.zohocdn.com

report-uri Host

Zoho Mail

https://logsapi.zoho.com/csplog?service=support

Content-Security-Policy-Report-Only

No report-only CSP headers found.