DNS Gurus
Cached · just now
12 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Host Piwik PRO logo Piwik PRO
https://medstrim.piwik.pro
ASN | ELASTX ELASTX AB
script-src Host Vimeo logo Vimeo
https://player.vimeo.com
ASN | Cloudflare
script-src Host Vimeo logo Vimeo
https://cdn.vimeo.com
script-src Host Vimeo logo Vimeo
https://*.vimeocdn.com
ASN | Fastly
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
https://fonts.googleapis.com
ASN | Google
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
blob:
img-src Scheme
https:
font-src Keyword
'self'
font-src Scheme
data:
font-src Host Google Fonts logo Google Fonts
https://fonts.gstatic.com
ASN | Google
connect-src Keyword
'self'
connect-src Host Supabase logo Supabase
https://*.supabase.co
ASN | Amazon
connect-src Host Google Cloud Run logo Google Cloud Run
https://*.run.app
ASN | Google
connect-src Host Piwik PRO logo Piwik PRO
https://medstrim.piwik.pro
ASN | ELASTX ELASTX AB
connect-src Host Vimeo logo Vimeo
https://vimeo.com
ASN | Cloudflare
connect-src Host Vimeo logo Vimeo
https://*.vimeo.com
ASN | Cloudflare
connect-src Host Sentry logo Sentry
https://*.sentry.io
ASN | Google Cloud
frame-src Host Vimeo logo Vimeo
https://player.vimeo.com
ASN | Cloudflare
media-src Keyword
'self'
media-src Scheme
blob:
worker-src Keyword
'self'
worker-src Scheme
blob:
object-src Keyword
'none'
base-uri Keyword
'self'
form-action Keyword
'self'

Content-Security-Policy-Report-Only

No report-only CSP headers found.