Open
Cached
·
4h ago
3
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' ws: blob: data: orbitvu.co *.orbitvu.co static.orbitvu.co cdn.orbitvu.co o4506274814754816.ingest.sentry.io fonts.googleapis.com static.orbitvu.io www.google-analytics.com fonts.gstatic.com platform.linkedin.com ajax.googleapis.com *.orbitvu.io orbitvu.io www.googletagmanager.com googletagmanager.com connect.facebook.net js.espago.com www.google.com www.gstatic.com js-agent.newrelic.com www.youtube.com youtube.com espago.com sandbox.espago.com secure.espago.com ; img-src * blob: data:; connect-src * blob: data:
default-src
Keyword
—
'self'
default-src
Keyword
—
'unsafe-inline'
default-src
Keyword
—
'unsafe-eval'
default-src
Scheme
—
ws:
default-src
Scheme
—
blob:
default-src
Scheme
—
data:
img-src
Host
—
*
img-src
Scheme
—
blob:
img-src
Scheme
—
data:
connect-src
Host
—
*
connect-src
Scheme
—
blob:
connect-src
Scheme
—
data:
Content-Security-Policy-Report-Only
No report-only CSP headers found.