Open
Cached
·
just now
8
directives
Content-Security-Policy
Content-Security-Policy: base-uri 'self'; script-src 'report-sample' 'strict-dynamic' 'nonce-bnMycjJ5eGpvdm8=' 'sha256-4NJ6LEi0QgnMYTx4h5WCLKNC3S8AVeF+DJc4Nc8pgUk='; worker-src 'self' blob:; object-src 'none'; frame-ancestors 'none'; form-action 'self' https://forms-na2.hsforms.com https://www.facebook.com; block-all-mixed-content; upgrade-insecure-requests;
base-uri
Keyword
—
'self'
script-src
Keyword
—
'report-sample'
script-src
Keyword
—
'strict-dynamic'
script-src
Nonce
—
'nonce-bnMycjJ5eGpvdm8='
script-src
Hash
—
'sha256-4NJ6LEi0QgnMYTx4h5WCLKNC3S8AVeF+DJc4Nc8pgUk='
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
object-src
Keyword
—
'none'
frame-ancestors
Keyword
—
'none'
form-action
Keyword
—
'self'
block-all-mixed-content
Source
—
(no sources)
upgrade-insecure-requests
Source
—
(no sources)
Content-Security-Policy-Report-Only
No report-only CSP headers found.