Open
Cached
·
just now
11
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' https://www.jaris.com https://www.jaris.io https://jaris.com https://jaris.io; connect-src 'self' https://forms.hscollectedforms.net https://www.google.com https://www.google-analytics.com http://*.linkedin.com http://*.linkedin.com https://*.hsforms.com https://*.hubspot.com https://hubspot-forms-static-embed.s3.amazonaws.com; font-src 'self' https://fonts.gstatic.com; frame-src 'self' https://*.googletagmanager.com https://*.doubleclick.net https://*.hsforms.com; frame-ancestors 'self' https://app.storyblok.com; img-src 'self' https://www.googletagmanager.com https://www.google.com https://www.google-analytics.com https://a.storyblok.com http://*.linkedin.com https://*.hsforms.com https://*.hubspot.com data:; manifest-src 'self'; media-src data:; object-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://js.hscollectedforms.net/collectedforms.js https://js.hs-banner.com/v2/46050077/banner.js https://js.hs-analytics.net https://js.hs-scripts.com/46050077.js https://*.doubleclick.net https://*.googletagmanager.com https://snap.licdn.com/li.lms-analytics/insight.min.js https://www.google-analytics.com/analytics.js https://js.hsforms.net/forms/embed/v2.js https://app.storyblok.com/f/storyblok-v2-latest.js data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/
default-src
Keyword
—
'self'
connect-src
Keyword
—
'self'
font-src
Keyword
—
'self'
frame-src
Keyword
—
'self'
frame-ancestors
Keyword
—
'self'
img-src
Keyword
—
'self'
img-src
Scheme
—
data:
manifest-src
Keyword
—
'self'
media-src
Scheme
—
data:
object-src
Keyword
—
'none'
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-eval'
script-src
Keyword
—
'unsafe-inline'
script-src
Scheme
—
data:
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
Content-Security-Policy-Report-Only
No report-only CSP headers found.