DNS Gurus
Cached · just now
8 directives

Content-Security-Policy

default-src Keyword
'self'
default-src Scheme
https:
default-src Scheme
blob:
font-src Keyword
'self'
font-src Scheme
https:
font-src Host BootstrapCDN logo BootstrapCDN
maxcdn.bootstrapcdn.com
ASN | Cloudflare
img-src Keyword
'self'
img-src Scheme
https:
img-src Scheme
data:
img-src Scheme
blob:
img-src Host AWS logo AWS
*.s3.ca-central-1.amazonaws.com
ASN | Amazon
img-src Host Google Search logo Google Search
*.google.com
ASN | Google
img-src Host Google Analytics logo Google Analytics
*.google-analytics.com
ASN | Google
img-src Host Facebook logo Facebook
*.facebook.com
ASN | Facebook
img-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
object-src Keyword
'self'
object-src Scheme
blob:
script-src Keyword
'self'
script-src Scheme
https:
script-src Keyword
'unsafe-inline'
script-src Keyword
'unsafe-eval'
script-src Host BootstrapCDN logo BootstrapCDN
maxcdn.bootstrapcdn.com
ASN | Cloudflare
script-src Host Cloudflare CDN logo Cloudflare CDN
*.cloudflare.com
ASN | Cloudflare
script-src Host jsDelivr logo jsDelivr
cdn.jsdelivr.net
ASN | Cloudflare
script-src Host Google App Engine logo Google App Engine
*.appspot.com
ASN | Google
script-src Host
*.oss.maxcdn.com
ASN | Cloudflare
script-src Host
*.telerik.com
ASN | Cloudflare
script-src Host
html5shim.googlecode.com
ASN | Google
script-src Host
*.datatables.net
ASN | Cloudflare
script-src Host
*.zdassets.com
script-src Host Statuspage logo Statuspage
*.statuspage.io
ASN | Amazon
script-src Host
*.stonly.com
ASN | Amazon
script-src Host Google DoubleClick logo Google DoubleClick
*.doubleclick.net
ASN | Google
script-src Host Google Analytics logo Google Analytics
*.google-analytics.com
ASN | Google
script-src Host Google Tag Manager logo Google Tag Manager
*.googletagmanager.com
ASN | Google
script-src Host Google Conversion Tracking logo Google Conversion Tracking
*.googleadservices.com
ASN | Google
script-src Host Google Optimize logo Google Optimize
*.googleoptimize.com
ASN | Google
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
script-src Host Facebook logo Facebook
connect.facebook.net
ASN | Facebook
script-src Host Intercom logo Intercom
https://*.intercom-messenger.com
style-src Keyword
'self'
style-src Scheme
https:
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
fonts.googleapis.com
ASN | Google
connect-src Keyword
'self'
connect-src Scheme
https:
connect-src Host Google DoubleClick logo Google DoubleClick
*.doubleclick.net
ASN | Google
connect-src Host Google Analytics logo Google Analytics
*.google-analytics.com
ASN | Google
connect-src Host BootstrapCDN logo BootstrapCDN
maxcdn.bootstrapcdn.com
ASN | Cloudflare
connect-src Host Cloudflare CDN logo Cloudflare CDN
*.cloudflare.com
ASN | Cloudflare
connect-src Host
*.telerik.com
ASN | Cloudflare
connect-src Host
*.datatables.net
ASN | Cloudflare
connect-src Host
*.zdassets.com
connect-src Host
*.stonly.com
ASN | Amazon
connect-src Host
wss://*.zopim.com
ASN | Cloudflare
connect-src Host Intercom logo Intercom
wss://*.intercom.io
ASN | Amazon
connect-src Host Intercom logo Intercom
https://*.intercom-messenger.com
connect-src Host Intercom logo Intercom
wss://*.intercom-messenger.com
frame-ancestors Keyword
'self'

Content-Security-Policy-Report-Only

No report-only CSP headers found.