Content-Security-Policy Analysis for https://staging.benchprep.com

Open Cached · just now

3 directives

Content-Security-Policy

Content-Security-Policy: object-src 'self' *.s3.amazonaws.com; frame-ancestors 'self' *.s3.amazonaws.com; font-src 'self' rustici-cdn.benchprep.com data: *.benchprep.com *.cloudfront.com *;

object-src Keyword —

'self'

object-src Host

Amazon S3

*.s3.amazonaws.com

ASN | Amazon

frame-ancestors Keyword —

'self'

frame-ancestors Host

Amazon S3

*.s3.amazonaws.com

ASN | Amazon

font-src Keyword —

'self'

font-src Host —

rustici-cdn.benchprep.com

ASN | Amazon

font-src Scheme —

data:

font-src Host —

*.benchprep.com

ASN | Softlayer

font-src Host —

*.cloudfront.com

ASN | Amazon

font-src Host —

Content-Security-Policy-Report-Only

No report-only CSP headers found.