Content-Security-Policy Analysis for https://preprod.isomitigation.com

Open Cached · just now

16 directives

Content-Security-Policy

Content-Security-Policy: default-src 'none'; child-src 'self' *.kaltura.com *.surveygizmo.com cdn.calconic.com insuranceservicesofficeinc.demdex.net; connect-src 'self' data: *.albacross.com *.brightcove.com *.commoninja.com *.crazyegg.com *.facebook.com *.g.doubleclick.net *.google-analytics.com *.google.com *.googleapis.com *.googlesyndication.com *.kaltura.com *.kampyle.com *.linkedin.com *.maplecroft.com *.optimizely.com *.srv.stackadapt.com *.xactware.com app.calconic.com bcbolt446c5271-a.akamaihd.net cdn-app.continual.ly cdn.calconic.com cdn.cookielaw.org dc.services.visualstudio.com dl.episerver.net dpm.demdex.net geolocation.onetrust.com google.co.in http://ad.doubleclick.net https://*.6sc.co https://*.6sense.com https://*.influ2.com https://1752680588.rsc.cdn77.org https://adservice.google.com https://analytics-fe.digital-cloud-us-main.medallia.com https://analytics.google.com https://api.adblockertool.com https://api.adblocking247.com https://api.aituria.com https://api.awesomeblocker.com https://api.killadsapi.com https://api.video-adblock.com https://app.continual.ly/ https://cdn.jsdelivr.net https://cdn.linkedin.oribi.io/partner/1669474/domain/verisk.com/token https://cdn.linkedin.oribi.io/partner/384036/domain/maplecroft.com/token https://connect.facebook.net https://content.hotjar.io https://epsilon.6sense.com https://fonts.gstatic.com https://ipv6.6sc.co https://js.monitor.azure.com https://metrics.hotjar.io https://s.yimg.com https://statistics-dot-calconic-app.appspot.com/api/stats/push https://unpkg.com https://verisk.my.salesforce-scrt.com https://wss-pr.continual.ly:6001 https://www.google.com.et https://www.google.com.pr https://www.google.com.tr hubspot-forms-static-embed.s3.amazonaws.com manifest.prod.boltdns.net opreq.observepoint.com privacyportal.onetrust.com public.flourish.studio secure.adnxs.com vc.hotjar.io verisk.d1.sc.omtrdc.net veriskisonetprod.112.2o7.net ws.hotjar.com wss://ws.hotjar.com; font-src 'self' data: *.cloudfront.net *.googleapis.com *.gstatic.com *.kaltura.com cdnjs.cloudflare.com dl.episerver.net vjs.zencdn.net; frame-src 'self' *.acast.com *.brightcove.net *.commoninja.com *.eloqua.com *.facebook.com *.g.doubleclick.net *.google.com *.gstatic.com *.kaltura.com *.kampyle.com *.maplecroft.com *.optimizely.com *.pardot.com *.readymag.com *.surveygizmo.com *.twitter.com *.youtube.com activitymap.adobe.com app.powerbi.com bloomberg.com capture.navattic.com cdn-app.continual.ly cdn.calconic.com datawrapper.dwcdn.net dl.episerver.net flo.uri.sh https://app.continual.ly/ https://open.spotify.com https://verisk.my.site.com https://view.ceros.com https://www.brighttalk.com https://www.googletagmanager.com insuranceservicesofficeinc.demdex.net lifedemo.shinyapps.io optimize.google.com player.vimeo.com public.tableau.com survey.alchemer.com td.doubleclick.net verisk.postclickmarketing.com www.buzzsprout.com www.google.com www.insurancejournal.tv www.youtube-nocookie.com; img-src 'self' data: *.air-worldwide.com *.albacross.com *.brightcove.com *.commoninja.com *.eloqua.com *.facebook.com *.g.doubleclick.net *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.kaltura.com *.kampyle.com *.linkedin.com *.maplecroft.com *.optimizely.com *.srv.stackadapt.com *.trendemon.com *.twimg.com *.twitter.com *.verisk.com *.youtube.com 6016449.global.siteimproveanalytics.io a.usea01.idio.episerver.net api.mapbox.com assets.adobedtm.com c.bing.com cdn.cookielaw.org cf-images.us-east-1.prod.boltdns.net cm.everesttech.net dl.episerver.net dpm.demdex.net https://*.6sc.co https://ib.adnxs.com https://sp.analytics.yahoo.com i.ytimg.com jumbe.zaius.com maps.gstatic.com optimize.google.com p.adsymptotic.com public.tableau.com t.influ2.com verisk.d1.sc.omtrdc.net veriskisonetprod.112.2o7.net w3.poweradvocate.com www.google.co.uk www.google.com www.greatplacetowork.com www.gstatic.com; media-src 'self' blob: *.air-worldwide.com *.gstatic.com *.kaltura.com *.srv.stackadapt.com bcbolt446c5271-a.akamaihd.net dl.episerver.net manifest.prod.boltdns.net; script-src-elem 'self' 'unsafe-inline' *.albacross.com *.cave9tape.com *.cloudfront.net *.cookielaw.org *.facebook.com *.facebook.net *.g.doubleclick.net *.google-analytics.com *.google.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.kaltura.com *.kampyle.com *.licdn.com *.maplecroft.com *.oktopost.com *.pardot.com *.salesforceliveagent.com *.srv.stackadapt.com *.trendemon.com *.twitter.com *.xactware.com alert.risksolutions.verisk.com assets.adobedtm.com cdn-app.continual.ly cdn.calconic.com cdn.datatables.net cdnjs.cloudflare.com code.jquery.com dl.episerver.net https://*.influ2.com https://app.optimizely.com https://cdn-assets-prod.s3.amazonaws.com https://cdn.optimizely.com https://cdnapisec.kaltura.com https://j.6sc.co https://okt.to https://s.yimg.com https://script.hotjar.com https://static.hotjar.com https://unpkg.com https://verisk.my.site.com https://view.ceros.com https://www.brighttalk.com img.en25.com js.monitor.azure.com maxcdn.bootstrapcdn.com public.flourish.studio risksolutions.verisk.com s.usea01.idio.episerver.net siteimproveanalytics.com static.oktopost.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ads-twitter.com *.albacross.com *.cave9tape.com *.cloudflare.com *.cloudfront.net *.commoninja.com *.cookielaw.org *.facebook.net *.fraudblocker.com *.g.doubleclick.net *.google-analytics.com *.google.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.herbgreencolumn.com *.hsforms.com *.kaltura.com *.licdn.com *.linkedin.com *.maplecroft.com *.oktopost.com *.optimizely.com *.pardot.com *.readymag.com *.salesforceliveagent.com *.trendemon.com *.twimg.com *.twitter.com *.xactware.com *.youtube.com activitymap.adobe.com api-ssl.bitly.com az416426.vo.msecnd.net cdn-app.continual.ly cdn-assets-prod.s3.amazonaws.com cdn.calconic.com cdn.mouseflow.com cdnjs.cloudflare.com code.jquery.com dl.episerver.net geolocation.onetrust.com https://js.monitor.azure.com https://verisk.my.site.com img.en25.com ionfiles.scribblecdn.ne js.hsforms.net js.monitor.azure.com maxcdn.bootstrapcdn.com optimize.google.com player.vimeo.com players.brightcove.net public.flourish.studio public.tableau.com s1065293013.t.eloqua.com script.crazyegg.com secure.leadforensics.com siteimproveanalytics.com unpkg.com vjs.zencdn.net www.buzzsprout.com www.googleadservices.com www.googleanalytics.com www.googleoptimize.com www.gstatic.com; style-src-elem 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com *.srv.stackadapt.com *.verisk.com alert.risksolutions.verisk.com cdn-app.continual.ly cdn.jsdelivr.net dl.episerver.net https://app.continual.ly/css/gekr8k83y6vw/custom.css https://cdnjs.cloudflare.com https://unpkg.com https://verisk.my.site.com risksolutions.verisk.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com *.srv.stackadapt.com *.twimg.com *.twitter.com *.verisk.com cdn-app.continual.ly cdn.jsdelivr.net cdnjs.cloudflare.com dl.episerver.net optimize.google.com unpkg.com; worker-src 'self' blob:; script-src-attr 'unsafe-inline' *.srv.stackadapt.com *.xactware.com; frame-ancestors *.cargonet.com *.isomitigation.com *.maplecroft.com *.verisk.com https://verisk.my.salesforce-scrt.com https://verisk.my.site.com https://verisk.my.site.com/; report-to stott-security-endpoint;report-uri https://preprod.verisk.com/stott.security.optimizely/api/cspreporting/reporturiviolation/;

default-src Keyword —

'none'

child-src Keyword —

'self'

child-src Host

Kaltura

*.kaltura.com

ASN | Amazon

child-src Host

Alchemer

*.surveygizmo.com

ASN | Amazon

child-src Host —

cdn.calconic.com

ASN | CDN77

child-src Host —

insuranceservicesofficeinc.demdex.net

ASN | Amazon

connect-src Keyword —

'self'

connect-src Scheme —

data:

connect-src Host Albacross

*.albacross.com

ASN | Cloudflare

connect-src Host

Brightcove

*.brightcove.com

ASN | Amazon

connect-src Host —

*.commoninja.com

ASN | Cloudflare

connect-src Host

Crazy Egg

*.crazyegg.com

ASN | Amazon

connect-src Host

Facebook

*.facebook.com

ASN | Facebook

connect-src Host

Google DoubleClick

*.g.doubleclick.net

connect-src Host

Google Analytics

*.google-analytics.com

ASN | Google

connect-src Host

Google Search

*.google.com

ASN | Google

connect-src Host

Google API JS Client

*.googleapis.com

ASN | Google

connect-src Host

Google AdSense

*.googlesyndication.com

ASN | Google

connect-src Host

Kaltura

*.kaltura.com

ASN | Amazon

connect-src Host —

*.kampyle.com

ASN | Cloudflare

connect-src Host

*.linkedin.com

ASN | Microsoft

connect-src Host —

*.maplecroft.com

ASN | Incapsula

connect-src Host

Optimizely

*.optimizely.com

ASN | EPISERVER_AS - Optimizely AB

connect-src Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

connect-src Host —

*.xactware.com

ASN | Incapsula

connect-src Host —

app.calconic.com

ASN | Google

connect-src Host

Akamai

bcbolt446c5271-a.akamaihd.net

ASN | Akamai

connect-src Host —

cdn-app.continual.ly

connect-src Host —

cdn.calconic.com

ASN | CDN77

connect-src Host

OneTrust

cdn.cookielaw.org

ASN | Cloudflare

connect-src Host —

dc.services.visualstudio.com

ASN | Microsoft

connect-src Host —

dl.episerver.net

ASN | Cloudflare

connect-src Host

Adobe Audience Manager

dpm.demdex.net

ASN | Amazon

connect-src Host

OneTrust

geolocation.onetrust.com

ASN | Cloudflare

connect-src Host —

google.co.in

ASN | Google

connect-src Host

Google DoubleClick

http://ad.doubleclick.net

ASN | Google

connect-src Host

6sense

https://*.6sc.co

connect-src Host

6sense

https://*.6sense.com

ASN | Cloudflare

connect-src Host

Influ2

https://*.influ2.com

ASN | Google Cloud

connect-src Host

CDN77

https://1752680588.rsc.cdn77.org

ASN | CDN77

connect-src Host

Google Conversion Tracking

https://adservice.google.com

ASN | Google

connect-src Host —

https://analytics-fe.digital-cloud-us-main.medallia.com

ASN | Medallia

connect-src Host

Google Analytics

https://analytics.google.com

ASN | Google

connect-src Host —

https://api.adblockertool.com

ASN | Cloudflare

connect-src Host —

https://api.adblocking247.com

ASN | Cloudflare

connect-src Host —

https://api.aituria.com

ASN | Cloudflare

connect-src Host —

https://api.awesomeblocker.com

ASN | Cloudflare

connect-src Host —

https://api.killadsapi.com

ASN | Cloudflare

connect-src Host —

https://api.video-adblock.com

ASN | Cloudflare

connect-src Host —

https://app.continual.ly/

ASN | Amazon

connect-src Host

jsDelivr

https://cdn.jsdelivr.net

ASN | Cloudflare

connect-src Host —

https://cdn.linkedin.oribi.io/partner/1669474/domain/verisk.com/token

connect-src Host —

https://cdn.linkedin.oribi.io/partner/384036/domain/maplecroft.com/token

connect-src Host

Facebook

https://connect.facebook.net

ASN | Facebook

connect-src Host

Hotjar

https://content.hotjar.io

ASN | Amazon

connect-src Host

6sense

https://epsilon.6sense.com

ASN | Amazon

connect-src Host

Google Fonts

https://fonts.gstatic.com

ASN | Google

connect-src Host

6sense

https://ipv6.6sc.co

ASN | Akamai

connect-src Host

Azure Monitor

https://js.monitor.azure.com

ASN | Microsoft

connect-src Host

Hotjar

https://metrics.hotjar.io

ASN | Amazon

connect-src Host —

https://s.yimg.com

ASN | YAHOO - Yahoo Holdings Inc.

connect-src Host —

https://statistics-dot-calconic-app.appspot.com/api/stats/push

ASN | Google

connect-src Host

unpkg

https://unpkg.com

ASN | Cloudflare

connect-src Host

Salesforce Cloud

https://verisk.my.salesforce-scrt.com

ASN | Amazon

connect-src Host —

https://wss-pr.continual.ly:6001

ASN | Amazon

connect-src Host —

https://www.google.com.et

ASN | Google

connect-src Host —

https://www.google.com.pr

ASN | Google

connect-src Host —

https://www.google.com.tr

ASN | Google

connect-src Host

Amazon S3

hubspot-forms-static-embed.s3.amazonaws.com

ASN | Amazon

connect-src Host —

manifest.prod.boltdns.net

ASN | Fastly

connect-src Host —

opreq.observepoint.com

connect-src Host

OneTrust

privacyportal.onetrust.com

ASN | Cloudflare

connect-src Host

Flourish

public.flourish.studio

ASN | Cloudflare

connect-src Host

AppNexus (Xandr)

secure.adnxs.com

ASN | ASN-APPNEXUS - Xandr Inc.

connect-src Host

Hotjar

vc.hotjar.io

ASN | Amazon

connect-src Host

Adobe Target

verisk.d1.sc.omtrdc.net

ASN | Amazon

connect-src Host —

veriskisonetprod.112.2o7.net

ASN | Amazon

connect-src Host

Hotjar

ws.hotjar.com

ASN | Amazon

connect-src Host

Hotjar

wss://ws.hotjar.com

ASN | Amazon

font-src Keyword —

'self'

font-src Scheme —

data:

font-src Host

AWS CloudFront

*.cloudfront.net

font-src Host

Google API JS Client

*.googleapis.com

ASN | Google

font-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

font-src Host

Kaltura

*.kaltura.com

ASN | Amazon

font-src Host

Cloudflare CDNJS

cdnjs.cloudflare.com

ASN | Cloudflare

font-src Host —

dl.episerver.net

ASN | Cloudflare

font-src Host —

vjs.zencdn.net

ASN | Fastly

frame-src Keyword —

'self'

frame-src Host —

*.acast.com

ASN | Amazon

frame-src Host

Brightcove

*.brightcove.net

frame-src Host —

*.commoninja.com

ASN | Cloudflare

frame-src Host

Oracle Eloqua

*.eloqua.com

ASN | NCUBE-OREGON-AS - Oracle Corporation

frame-src Host

Facebook

*.facebook.com

ASN | Facebook

frame-src Host

Google DoubleClick

*.g.doubleclick.net

frame-src Host

Google Search

*.google.com

ASN | Google

frame-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

frame-src Host

Kaltura

*.kaltura.com

ASN | Amazon

frame-src Host —

*.kampyle.com

ASN | Cloudflare

frame-src Host —

*.maplecroft.com

ASN | Incapsula

frame-src Host

Optimizely

*.optimizely.com

ASN | EPISERVER_AS - Optimizely AB

frame-src Host

Salesforce Pardot

*.pardot.com

ASN | Amazon

frame-src Host —

*.readymag.com

ASN | Cloudflare

frame-src Host

Alchemer

*.surveygizmo.com

ASN | Amazon

frame-src Host

Twitter

*.twitter.com

ASN | Fastly

frame-src Host

YouTube

*.youtube.com

ASN | Google

frame-src Host —

activitymap.adobe.com

ASN | Microsoft

frame-src Host

Microsoft Power BI

app.powerbi.com

ASN | Microsoft

frame-src Host —

bloomberg.com

ASN | Amazon

frame-src Host

Navattic

capture.navattic.com

ASN | Amazon

frame-src Host —

cdn-app.continual.ly

frame-src Host —

cdn.calconic.com

ASN | CDN77

frame-src Host

Datawrapper

datawrapper.dwcdn.net

ASN | Cloudflare

frame-src Host —

dl.episerver.net

ASN | Cloudflare

frame-src Host

Flourish

flo.uri.sh

ASN | Cloudflare

frame-src Host —

https://app.continual.ly/

ASN | Amazon

frame-src Host

Spotify

https://open.spotify.com

ASN | Fastly

frame-src Host

Salesforce Sites

https://verisk.my.site.com

ASN | Akamai

frame-src Host

Ceros

https://view.ceros.com

ASN | Cloudflare

frame-src Host

BrightTALK

https://www.brighttalk.com

ASN | Akamai

frame-src Host

Google Tag Manager

https://www.googletagmanager.com

ASN | Google

frame-src Host —

insuranceservicesofficeinc.demdex.net

ASN | Amazon

frame-src Host —

lifedemo.shinyapps.io

ASN | Amazon

frame-src Host

Google Optimize

optimize.google.com

ASN | Google

frame-src Host

Vimeo

player.vimeo.com

ASN | Cloudflare

frame-src Host

Tableau

public.tableau.com

ASN | Amazon

frame-src Host

Alchemer

survey.alchemer.com

ASN | Amazon

frame-src Host

Google DoubleClick

td.doubleclick.net

ASN | Google

frame-src Host —

verisk.postclickmarketing.com

frame-src Host

Buzzsprout

www.buzzsprout.com

ASN | Cloudflare

frame-src Host

Google Search

www.google.com

ASN | Google

frame-src Host —

www.insurancejournal.tv

ASN | Softlayer

frame-src Host

YouTube

www.youtube-nocookie.com

ASN | Google

img-src Keyword —

'self'

img-src Scheme —

data:

img-src Host —

*.air-worldwide.com

img-src Host Albacross

*.albacross.com

ASN | Cloudflare

img-src Host

Brightcove

*.brightcove.com

ASN | Amazon

img-src Host —

*.commoninja.com

ASN | Cloudflare

img-src Host

Oracle Eloqua

*.eloqua.com

ASN | NCUBE-OREGON-AS - Oracle Corporation

img-src Host

Facebook

*.facebook.com

ASN | Facebook

img-src Host

Google DoubleClick

*.g.doubleclick.net

img-src Host

Google Analytics

*.google-analytics.com

ASN | Google

img-src Host

Google API JS Client

*.googleapis.com

ASN | Google

img-src Host

Google Tag Manager

*.googletagmanager.com

ASN | Google

img-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

img-src Host

Kaltura

*.kaltura.com

ASN | Amazon

img-src Host —

*.kampyle.com

ASN | Cloudflare

img-src Host

*.linkedin.com

ASN | Microsoft

img-src Host —

*.maplecroft.com

ASN | Incapsula

img-src Host

Optimizely

*.optimizely.com

ASN | EPISERVER_AS - Optimizely AB

img-src Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

img-src Host

Trendemon

*.trendemon.com

ASN | Google Cloud

img-src Host

Twitter

*.twimg.com

img-src Host

Twitter

*.twitter.com

ASN | Fastly

img-src Host —

*.verisk.com

ASN | Incapsula

img-src Host

YouTube

*.youtube.com

ASN | Google

img-src Host —

6016449.global.siteimproveanalytics.io

ASN | Amazon

img-src Host —

a.usea01.idio.episerver.net

ASN | Cloudflare

img-src Host

Mapbox

api.mapbox.com

ASN | Amazon

img-src Host

Adobe Dynamic Tag Management

assets.adobedtm.com

ASN | Akamai

img-src Host

Bing

c.bing.com

ASN | Microsoft

img-src Host

OneTrust

cdn.cookielaw.org

ASN | Cloudflare

img-src Host —

cf-images.us-east-1.prod.boltdns.net

ASN | Amazon

img-src Host

Adobe Experience Cloud

cm.everesttech.net

ASN | Amazon

img-src Host —

dl.episerver.net

ASN | Cloudflare

img-src Host

Adobe Audience Manager

dpm.demdex.net

ASN | Amazon

img-src Host

6sense

https://*.6sc.co

img-src Host

AppNexus (Xandr)

https://ib.adnxs.com

ASN | ASN-APPNEXUS - Xandr Inc.

img-src Host

Yahoo

https://sp.analytics.yahoo.com

ASN | Amazon

img-src Host

YouTube

i.ytimg.com

ASN | Google

img-src Host —

jumbe.zaius.com

ASN | Amazon

img-src Host

Google Maps

maps.gstatic.com

ASN | Google

img-src Host

Google Optimize

optimize.google.com

ASN | Google

img-src Host —

p.adsymptotic.com

img-src Host

Tableau

public.tableau.com

ASN | Amazon

img-src Host

Influ2

t.influ2.com

ASN | Google Cloud

img-src Host

Adobe Target

verisk.d1.sc.omtrdc.net

ASN | Amazon

img-src Host —

veriskisonetprod.112.2o7.net

ASN | Amazon

img-src Host —

w3.poweradvocate.com

ASN | Incapsula

img-src Host —

www.google.co.uk

ASN | Google

img-src Host

Google Search

www.google.com

ASN | Google

img-src Host —

www.greatplacetowork.com

ASN | Amazon

img-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

media-src Keyword —

'self'

media-src Scheme —

blob:

media-src Host —

*.air-worldwide.com

media-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

media-src Host

Kaltura

*.kaltura.com

ASN | Amazon

media-src Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

media-src Host

Akamai

bcbolt446c5271-a.akamaihd.net

ASN | Akamai

media-src Host —

dl.episerver.net

ASN | Cloudflare

media-src Host —

manifest.prod.boltdns.net

ASN | Fastly

script-src-elem Keyword —

'self'

script-src-elem Keyword —

'unsafe-inline'

script-src-elem Host Albacross

*.albacross.com

ASN | Cloudflare

script-src-elem Host —

*.cave9tape.com

script-src-elem Host

AWS CloudFront

*.cloudfront.net

script-src-elem Host

OneTrust

*.cookielaw.org

ASN | Cloudflare

script-src-elem Host

Facebook

*.facebook.com

ASN | Facebook

script-src-elem Host

Facebook

*.facebook.net

script-src-elem Host

Google DoubleClick

*.g.doubleclick.net

script-src-elem Host

Google Analytics

*.google-analytics.com

ASN | Google

script-src-elem Host

Google Search

*.google.com

ASN | Google

script-src-elem Host

Google API JS Client

*.googleapis.com

ASN | Google

script-src-elem Host

Google Tag Manager

*.googletagmanager.com

ASN | Google

script-src-elem Host

Google Static File Front End

*.gstatic.com

ASN | Google

script-src-elem Host

Kaltura

*.kaltura.com

ASN | Amazon

script-src-elem Host —

*.kampyle.com

ASN | Cloudflare

script-src-elem Host

*.licdn.com

script-src-elem Host —

*.maplecroft.com

ASN | Incapsula

script-src-elem Host

Oktopost

*.oktopost.com

ASN | Cloudflare

script-src-elem Host

Salesforce Pardot

*.pardot.com

ASN | Amazon

script-src-elem Host

Salesforce Cloud

*.salesforceliveagent.com

ASN | Amazon

script-src-elem Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

script-src-elem Host

Trendemon

*.trendemon.com

ASN | Google Cloud

script-src-elem Host

Twitter

*.twitter.com

ASN | Fastly

script-src-elem Host —

*.xactware.com

ASN | Incapsula

script-src-elem Host —

alert.risksolutions.verisk.com

ASN | Incapsula

script-src-elem Host

Adobe Dynamic Tag Management

assets.adobedtm.com

ASN | Akamai

script-src-elem Host —

cdn-app.continual.ly

script-src-elem Host —

cdn.calconic.com

ASN | CDN77

script-src-elem Host

DataTables

cdn.datatables.net

ASN | Cloudflare

script-src-elem Host

Cloudflare CDNJS

cdnjs.cloudflare.com

ASN | Cloudflare

script-src-elem Host

jQuery

code.jquery.com

ASN | Fastly

script-src-elem Host —

dl.episerver.net

ASN | Cloudflare

script-src-elem Host

Influ2

https://*.influ2.com

ASN | Google Cloud

script-src-elem Host

Optimizely

https://app.optimizely.com

ASN | Cloudflare

script-src-elem Host

Amazon S3

https://cdn-assets-prod.s3.amazonaws.com

ASN | Amazon

script-src-elem Host

Optimizely

https://cdn.optimizely.com

ASN | Cloudflare

script-src-elem Host

Kaltura

https://cdnapisec.kaltura.com

ASN | Akamai

script-src-elem Host

6sense

https://j.6sc.co

ASN | Akamai

script-src-elem Host

Oktopost

https://okt.to

ASN | Amazon

script-src-elem Host —

https://s.yimg.com

ASN | YAHOO - Yahoo Holdings Inc.

script-src-elem Host

Hotjar

https://script.hotjar.com

ASN | Amazon

script-src-elem Host

Hotjar

https://static.hotjar.com

ASN | Amazon

script-src-elem Host

unpkg

https://unpkg.com

ASN | Cloudflare

script-src-elem Host

Salesforce Sites

https://verisk.my.site.com

ASN | Akamai

script-src-elem Host

Ceros

https://view.ceros.com

ASN | Cloudflare

script-src-elem Host

BrightTALK

https://www.brighttalk.com

ASN | Akamai

script-src-elem Host

Oracle Eloqua

img.en25.com

ASN | Akamai

script-src-elem Host

Azure Monitor

js.monitor.azure.com

ASN | Microsoft

script-src-elem Host

BootstrapCDN

maxcdn.bootstrapcdn.com

ASN | Cloudflare

script-src-elem Host

Flourish

public.flourish.studio

ASN | Cloudflare

script-src-elem Host —

risksolutions.verisk.com

ASN | Incapsula

script-src-elem Host —

s.usea01.idio.episerver.net

ASN | Cloudflare

script-src-elem Host

Siteimprove

siteimproveanalytics.com

ASN | Cloudflare

script-src-elem Host

Oktopost

static.oktopost.com

ASN | Amazon

script-src Keyword —

'self'

script-src Keyword —

'unsafe-eval'

script-src Keyword —

'unsafe-inline'

script-src Host

Twitter

*.ads-twitter.com

script-src Host Albacross

*.albacross.com

ASN | Cloudflare

script-src Host —

*.cave9tape.com

script-src Host

Cloudflare CDN

*.cloudflare.com

ASN | Cloudflare

script-src Host

AWS CloudFront

*.cloudfront.net

script-src Host —

*.commoninja.com

ASN | Cloudflare

script-src Host

OneTrust

*.cookielaw.org

ASN | Cloudflare

script-src Host

Facebook

*.facebook.net

script-src Host —

*.fraudblocker.com

ASN | Cloudflare

script-src Host

Google DoubleClick

*.g.doubleclick.net

script-src Host

Google Analytics

*.google-analytics.com

ASN | Google

script-src Host

Google Search

*.google.com

ASN | Google

script-src Host

Google API JS Client

*.googleapis.com

ASN | Google

script-src Host

Google Tag Manager

*.googletagmanager.com

ASN | Google

script-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

script-src Host —

*.herbgreencolumn.com

script-src Host

HubSpot Forms

*.hsforms.com

script-src Host

Kaltura

*.kaltura.com

ASN | Amazon

script-src Host

*.licdn.com

script-src Host

*.linkedin.com

ASN | Microsoft

script-src Host —

*.maplecroft.com

ASN | Incapsula

script-src Host

Oktopost

*.oktopost.com

ASN | Cloudflare

script-src Host

Optimizely

*.optimizely.com

ASN | EPISERVER_AS - Optimizely AB

script-src Host

Salesforce Pardot

*.pardot.com

ASN | Amazon

script-src Host —

*.readymag.com

ASN | Cloudflare

script-src Host

Salesforce Cloud

*.salesforceliveagent.com

ASN | Amazon

script-src Host

Trendemon

*.trendemon.com

ASN | Google Cloud

script-src Host

Twitter

*.twimg.com

script-src Host

Twitter

*.twitter.com

ASN | Fastly

script-src Host —

*.xactware.com

ASN | Incapsula

script-src Host

YouTube

*.youtube.com

ASN | Google

script-src Host —

activitymap.adobe.com

ASN | Microsoft

script-src Host —

api-ssl.bitly.com

ASN | Google Cloud

script-src Host

Microsoft Azure

az416426.vo.msecnd.net

ASN | Microsoft

script-src Host —

cdn-app.continual.ly

script-src Host

Amazon S3

cdn-assets-prod.s3.amazonaws.com

ASN | Amazon

script-src Host —

cdn.calconic.com

ASN | CDN77

script-src Host

Mouseflow

cdn.mouseflow.com

ASN | Cloudflare

script-src Host

Cloudflare CDNJS

cdnjs.cloudflare.com

ASN | Cloudflare

script-src Host

jQuery

code.jquery.com

ASN | Fastly

script-src Host —

dl.episerver.net

ASN | Cloudflare

script-src Host

OneTrust

geolocation.onetrust.com

ASN | Cloudflare

script-src Host

Azure Monitor

https://js.monitor.azure.com

ASN | Microsoft

script-src Host

Salesforce Sites

https://verisk.my.site.com

ASN | Akamai

script-src Host

Oracle Eloqua

img.en25.com

ASN | Akamai

script-src Host —

ionfiles.scribblecdn.ne

script-src Host

HubSpot Forms

js.hsforms.net

ASN | Cloudflare

script-src Host

Azure Monitor

js.monitor.azure.com

ASN | Microsoft

script-src Host

BootstrapCDN

maxcdn.bootstrapcdn.com

ASN | Cloudflare

script-src Host

Google Optimize

optimize.google.com

ASN | Google

script-src Host

Vimeo

player.vimeo.com

ASN | Cloudflare

script-src Host

Brightcove

players.brightcove.net

ASN | Fastly

script-src Host

Flourish

public.flourish.studio

ASN | Cloudflare

script-src Host

Tableau

public.tableau.com

ASN | Amazon

script-src Host

Oracle Eloqua

s1065293013.t.eloqua.com

script-src Host

Crazy Egg

script.crazyegg.com

ASN | Cloudflare

script-src Host

Lead Forensics

secure.leadforensics.com

ASN | Microsoft

script-src Host

Siteimprove

siteimproveanalytics.com

ASN | Cloudflare

script-src Host

unpkg

unpkg.com

ASN | Cloudflare

script-src Host —

vjs.zencdn.net

ASN | Fastly

script-src Host

Buzzsprout

www.buzzsprout.com

ASN | Cloudflare

script-src Host

Google Conversion Tracking

www.googleadservices.com

ASN | Google

script-src Host

Google Analytics

www.googleanalytics.com

ASN | Google

script-src Host

Google Optimize

www.googleoptimize.com

ASN | Google

script-src Host

Google Static File Front End

www.gstatic.com

ASN | Google

style-src-elem Keyword —

'self'

style-src-elem Keyword —

'unsafe-inline'

style-src-elem Host

Google API JS Client

*.googleapis.com

ASN | Google

style-src-elem Host

Google Static File Front End

*.gstatic.com

ASN | Google

style-src-elem Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

style-src-elem Host —

*.verisk.com

ASN | Incapsula

style-src-elem Host —

alert.risksolutions.verisk.com

ASN | Incapsula

style-src-elem Host —

cdn-app.continual.ly

style-src-elem Host

jsDelivr

cdn.jsdelivr.net

ASN | Cloudflare

style-src-elem Host —

dl.episerver.net

ASN | Cloudflare

style-src-elem Host —

https://app.continual.ly/css/gekr8k83y6vw/custom.css

ASN | Amazon

style-src-elem Host

Cloudflare CDNJS

https://cdnjs.cloudflare.com

ASN | Cloudflare

style-src-elem Host

unpkg

https://unpkg.com

ASN | Cloudflare

style-src-elem Host

Salesforce Sites

https://verisk.my.site.com

ASN | Akamai

style-src-elem Host —

risksolutions.verisk.com

ASN | Incapsula

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

Google API JS Client

*.googleapis.com

ASN | Google

style-src Host

Google Static File Front End

*.gstatic.com

ASN | Google

style-src Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

style-src Host

Twitter

*.twimg.com

style-src Host

Twitter

*.twitter.com

ASN | Fastly

style-src Host —

*.verisk.com

ASN | Incapsula

style-src Host —

cdn-app.continual.ly

style-src Host

jsDelivr

cdn.jsdelivr.net

ASN | Cloudflare

style-src Host

Cloudflare CDNJS

cdnjs.cloudflare.com

ASN | Cloudflare

style-src Host —

dl.episerver.net

ASN | Cloudflare

style-src Host

Google Optimize

optimize.google.com

ASN | Google

style-src Host

unpkg

unpkg.com

ASN | Cloudflare

worker-src Keyword —

'self'

worker-src Scheme —

blob:

script-src-attr Keyword —

'unsafe-inline'

script-src-attr Host

StackAdapt

*.srv.stackadapt.com

ASN | Amazon

script-src-attr Host —

*.xactware.com

ASN | Incapsula

frame-ancestors Host —

*.cargonet.com

ASN | Incapsula

frame-ancestors Host —

*.isomitigation.com

ASN | Incapsula

frame-ancestors Host —

*.maplecroft.com

ASN | Incapsula

frame-ancestors Host —

*.verisk.com

ASN | Incapsula

frame-ancestors Host

Salesforce Cloud

https://verisk.my.salesforce-scrt.com

ASN | Amazon

frame-ancestors Host

Salesforce Sites

https://verisk.my.site.com

ASN | Akamai

frame-ancestors Host

Salesforce Sites

https://verisk.my.site.com/

ASN | Akamai

report-to Host —

stott-security-endpoint

report-uri Host —

https://preprod.verisk.com/stott.security.optimizely/api/cspreporting/reporturiviolation/

ASN | Incapsula

Content-Security-Policy-Report-Only

No report-only CSP headers found.