Content-Security-Policy Analysis for https://n-tidal.com

Open Cached · just now

8 directives

Content-Security-Policy

Content-Security-Policy: frame-ancestors 'none'; report-uri https://o511836.ingest.sentry.io/api/4505324401590272/security/?sentry_key=0ddb0da7c5884faeb2c96fb7490a66f6; script-src 'self' https://*.workable.com/ https://dcvxs6ggqztsa.cloudfront.net/ 'unsafe-eval'

frame-ancestors Keyword —

'none'

report-uri Host

Sentry

https://o511836.ingest.sentry.io/api/4505324401590272/security/?sentry_key=0ddb0da7c5884faeb2c96fb7490a66f6

ASN | Google Cloud

script-src Keyword —

'self'

script-src Host —

https://*.workable.com/

ASN | Cloudflare

script-src Host

AWS CloudFront

https://dcvxs6ggqztsa.cloudfront.net/

ASN | Amazon

script-src Keyword —

'unsafe-eval'

Content-Security-Policy-Report-Only

Content-Security-Policy-Report-Only: default-src 'self'; style-src 'unsafe-inline'; connect-src https://apply.workable.com/ https://tidalsense.com/api/event https://tidalsense.com/api/contact-us; report-uri https://o511836.ingest.sentry.io/api/4505324401590272/security/?sentry_key=0ddb0da7c5884faeb2c96fb7490a66f6; script-src 'self' https://*.workable.com/ https://dcvxs6ggqztsa.cloudfront.net/ 'unsafe-eval'

default-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

connect-src Host —

https://apply.workable.com/

ASN | Cloudflare

connect-src Host —

https://tidalsense.com/api/event

ASN | Fastly

connect-src Host —

https://tidalsense.com/api/contact-us