Open
Cached
·
just now
2
directives
Content-Security-Policy
Content-Security-Policy: style-src * 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval' https://stats.g.doubleclick.net https://*.userreport.com https://*.calendly.com https://play.google.com https://*.intercom.io/ https://*.partnerstack.com https://fonts.gstatic.com https://fonts.googleapis.com https://*.trustpilot.com https://*.jsdelivr.net https://*.impactradius-event.com https://*.mxpnl.com https://*.livechatinc.com https://*.hs-analytics.net https://*.hsleadflows.net https://*.google-analytics.com https://*.googletagmanager.com https://*.mightycall.com https://*.youtube.com https://vimeo.com https://*.vimeo.com https://www.google.com/recaptcha https://connect.facebook.net, frame-ancestors www.calendly.com, frame-ancestors feedback.usereport.com
style-src
Host
—
*
style-src
Keyword
—
'unsafe-inline'
script-src
Host
—
*
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Host
—
script-src
Host
—
script-src
Host
—
script-src
Host
—
script-src
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.