Content-Security-Policy Analysis for https://journeyapps.com

Open Cached · just now

5 directives

Content-Security-Policy

Content-Security-Policy: default-src https: 'unsafe-inline'; object-src 'none'; media-src https: data: blob:; font-src https: data:; img-src https: data:;

default-src Scheme —

https:

default-src Keyword —

'unsafe-inline'

object-src Keyword —

'none'

media-src Scheme —

https:

media-src Scheme —

data:

media-src Scheme —

blob:

font-src Scheme —

https:

font-src Scheme —

data:

img-src Scheme —

https:

img-src Scheme —

data:

Content-Security-Policy-Report-Only

No report-only CSP headers found.