DNS Gurus
Cached · just now
10 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Host Google Static File Front End logo Google Static File Front End
https://www.gstatic.com
ASN | Google
script-src Host Google Tag Manager logo Google Tag Manager
https://www.googletagmanager.com
ASN | Google
script-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
font-src Keyword
'self'
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
blob:
img-src Scheme
https:
connect-src Keyword
'self'
connect-src Host Google API JS Client logo Google API JS Client
https://*.googleapis.com
ASN | Google
connect-src Host Firebase logo Firebase
https://*.firebaseio.com
connect-src Host Google Cloud Functions logo Google Cloud Functions
https://*.cloudfunctions.net
connect-src Host Firebase logo Firebase
https://*.firebaseapp.com
ASN | Fastly
connect-src Host Google API JS Client logo Google API JS Client
https://firebasestorage.googleapis.com
ASN | Google
connect-src Host Google Analytics logo Google Analytics
https://www.google-analytics.com
ASN | Google
connect-src Host Google Analytics logo Google Analytics
https://region1.google-analytics.com
ASN | Google
frame-src Host YouTube logo YouTube
https://www.youtube.com
ASN | Google
frame-src Host YouTube logo YouTube
https://www.youtube-nocookie.com
ASN | Google
frame-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
media-src Keyword
'self'
media-src Host YouTube logo YouTube
https://www.youtube.com
ASN | Google
media-src Host YouTube logo YouTube
https://www.youtube-nocookie.com
ASN | Google
object-src Keyword
'none'
base-uri Keyword
'self'

Content-Security-Policy-Report-Only

No report-only CSP headers found.