Open
Cached
·
just now
9
directives
Content-Security-Policy
Content-Security-Policy: default-src 'none'; img-src 'self'; script-src 'self' 'unsafe-eval' https://www.googletagmanager.com 'sha256-eHZedl6OZlso1Jp9WGYaapgn2ZwTI2Ld8/JhkZ1YBLY=' 'sha256-s+ygyHapSkg6ZuWgho2KDSC0W3EH+D3qAGf2/1ycppo='; style-src 'self' 'unsafe-inline'; object-src 'none'; connect-src https://*.dintero.com https://api.bring.com; manifest-src 'self'; font-src 'self'; report-uri https://o301187.ingest.sentry.io/api/4506653703864320/security/?sentry_key=65af3aece4609b8bec89bd39f488b682
default-src
Keyword
—
'none'
img-src
Keyword
—
'self'
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-eval'
script-src
Hash
—
'sha256-eHZedl6OZlso1Jp9WGYaapgn2ZwTI2Ld8/JhkZ1YBLY='
script-src
Hash
—
'sha256-s+ygyHapSkg6ZuWgho2KDSC0W3EH+D3qAGf2/1ycppo='
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
object-src
Keyword
—
'none'
manifest-src
Keyword
—
'self'
font-src
Keyword
—
'self'
Content-Security-Policy-Report-Only
No report-only CSP headers found.