Content-Security-Policy Analysis for https://knak.com

Open Cached · 5h ago

9 directives

Content-Security-Policy

Content-Security-Policy: base-uri *; font-src * data:; form-action *; frame-ancestors *; img-src * data: blob:; object-src *; script-src-attr 'none'; style-src * https: 'unsafe-inline'; upgrade-insecure-requests;

base-uri Host —

font-src Host —

font-src Scheme —

data:

form-action Host —

frame-ancestors Host —

img-src Host —

img-src Scheme —

data:

img-src Scheme —

blob:

object-src Host —

script-src-attr Keyword —

'none'

style-src Host —

style-src Scheme —

https:

style-src Keyword —

'unsafe-inline'

upgrade-insecure-requests Source —

(no sources)

Content-Security-Policy-Report-Only

No report-only CSP headers found.