DNS Gurus
Cached · 1h ago
9 directives

Content-Security-Policy

default-src Keyword
'self'
object-src Keyword
'none'
frame-ancestors Keyword
'self'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Host Fullstory logo Fullstory
https://*.fullstory.com
ASN | Amazon
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
https://fonts.googleapis.com
ASN | Google
font-src Keyword
'self'
font-src Host Google Fonts logo Google Fonts
https://fonts.gstatic.com
ASN | Google
connect-src Keyword
'self'
connect-src Host
https://api.qlikdataengineering.com
ASN | Amazon
connect-src Host AWS logo AWS
https://*.amazonaws.com
ASN | Amazon
connect-src Host LaunchDarkly logo LaunchDarkly
https://*.launchdarkly.com
ASN | Amazon
connect-src Host Rollbar logo Rollbar
https://api.rollbar.com
ASN | Google Cloud
connect-src Host Zuora logo Zuora
https://*.zuora.com
ASN | Amazon
connect-src Host Fullstory logo Fullstory
https://*.fullstory.com
ASN | Amazon
connect-src Scheme
blob:
connect-src Host
https://login.qlik.com
ASN | Cloudflare
frame-src Keyword
'self'
frame-src Host Zuora logo Zuora
https://*.zuora.com
ASN | Amazon
frame-src Host
https://login.qlik.com
ASN | Cloudflare
img-src Keyword
'self'
img-src Host Gravatar logo Gravatar
https://*.gravatar.com
ASN | Automattic
img-src Host WordPress logo WordPress
https://*.wp.com
ASN | Automattic
img-src Host Zuora logo Zuora
https://*.zuora.com
ASN | Amazon

Content-Security-Policy-Report-Only

No report-only CSP headers found.