DNS Gurus
Cached · just now
6 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
script-src Host unpkg logo unpkg
https://unpkg.com
ASN | Cloudflare
script-src Host Google Static File Front End logo Google Static File Front End
https://www.gstatic.com
ASN | Google
script-src Host Google API JS Client logo Google API JS Client
https://*.googleapis.com
ASN | Google
connect-src Keyword
'self'
connect-src Host Google API JS Client logo Google API JS Client
https://*.googleapis.com
ASN | Google
connect-src Host Firebase logo Firebase
https://*.firebaseio.com
connect-src Host Google API JS Client logo Google API JS Client
https://firestore.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://identitytoolkit.googleapis.com
ASN | Google
connect-src Host
https://api.weather.gov
ASN | Akamai
connect-src Host OpenStreetMap logo OpenStreetMap
https://nominatim.openstreetmap.org
ASN | Fastly
connect-src Host
https://router.project-osrm.org
ASN | NINE Nine Internet Solutions AG
connect-src Host Google Static File Front End logo Google Static File Front End
https://www.gstatic.com
ASN | Google
connect-src Host unpkg logo unpkg
https://unpkg.com
ASN | Cloudflare
img-src Host
*
img-src Scheme
data:
img-src Scheme
blob:
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Host unpkg logo unpkg
https://unpkg.com
ASN | Cloudflare
font-src Keyword
'self'
font-src Host unpkg logo unpkg
https://unpkg.com
ASN | Cloudflare
font-src Scheme
data:

Content-Security-Policy-Report-Only

No report-only CSP headers found.