Open
Cached
·
just now
3
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' 'unsafe-inline' data: getbuilt.com *.getbuilt.com pendo.io ws://localhost:* http://localhost:* https://www.google-analytics.com https://cognito-idp.us-east-1.amazonaws.com https://cognito-idp.us-east-2.amazonaws.com https://rum.browser-intake-datadoghq.com https://*.storage.googleapis.com https://service.force.com https://api.feedback.us.pendo.io https://*.s3.amazonaws.com https://s3.amazonaws.com https://*.amazoncognito.com https://*.userpilot.io wss://*.userpilot.io https://statuspage.incident.io https://getbuilt.my.site.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' getbuilt.com *.getbuilt.com http://localhost:* https://service.force.com https://*.salesforceliveagent.com https://*.storage.googleapis.com https://cdn.pendo.io https://data.pendo.io https://pendo.io www.googletagmanager.com status.getbuilt.com https://*.userpilot.io https://getbuilt.my.site.com https://*.mightybot.ai https://appsforoffice.microsoft.com; frame-src *.statuspage.io;
default-src
Keyword
—
'self'
default-src
Keyword
—
'unsafe-inline'
default-src
Scheme
—
data:
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Host
—
script-src
Host
—
script-src
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.