DNS Gurus
Cached · just now
16 directives

Content-Security-Policy

base-uri Keyword
'self'
base-uri Scheme
about:
base-uri Host
*
child-src Keyword
'none'
connect-src Keyword
'self'
connect-src Host
webpack://*
connect-src Host
*
default-src Keyword
'self'
font-src Keyword
'self'
font-src Scheme
data:
font-src Host Google Fonts logo Google Fonts
fonts.gstatic.com
ASN | Google
font-src Host
*
form-action Keyword
'self'
form-action Scheme
https:
form-action Host
*
frame-ancestors Keyword
'none'
frame-src Keyword
'self'
frame-src Scheme
data:
frame-src Scheme
https:
img-src Host
*
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
https:
manifest-src Keyword
'self'
media-src Keyword
'self'
media-src Scheme
https:
media-src Host
*
object-src Keyword
'none'
prefetch-src Keyword
'self'
prefetch-src Host
*
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Keyword
'unsafe-eval'
script-src Scheme
https:
script-src Host HubSpot logo HubSpot
*.hs-scripts.com
script-src Host HubSpot Forms logo HubSpot Forms
*.hsforms.net
script-src Host HubSpot Forms logo HubSpot Forms
*.hsforms.com
script-src Host ClearBit logo ClearBit
*.clearbit.com
ASN | Amazon
script-src Host Google Analytics logo Google Analytics
www.google-analytics.com
ASN | Google
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Scheme
https:
worker-src Keyword
'self'

Content-Security-Policy-Report-Only

No report-only CSP headers found.