DNS Gurus
Cached · just now
8 directives

Content-Security-Policy

No enforced CSP headers found.

Content-Security-Policy-Report-Only

default-src Scheme
https:
default-src Keyword
'unsafe-eval'
default-src Keyword
'unsafe-inline'
script-src Keyword
'unsafe-eval'
script-src Keyword
'unsafe-inline'
script-src Keyword
'self'
script-src Host
*.grouponcdn.com
ASN | Cloudflare
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
script-src Host
mpsnare.iesnare.com
ASN | Amazon
script-src Host
*.boldchat.com
script-src Host Google Conversion Tracking logo Google Conversion Tracking
www.googleadservices.com
ASN | Google
script-src Host Criteo logo Criteo
static.criteo.net
ASN | AS-CRITEO - Criteo Corp.
script-src Host Facebook logo Facebook
connect.facebook.net
ASN | Facebook
script-src Host
b-code.liadm.com
ASN | Amazon
script-src Host Google Tag Manager logo Google Tag Manager
www.googletagmanager.com
ASN | Google
script-src Host Criteo logo Criteo
sslwidget.criteo.com
ASN | AS-CRITEO - Criteo Corp.
script-src Host
*.groupon.com
ASN | Cloudflare
script-src Host Google API JS Client logo Google API JS Client
*.googleapis.com
ASN | Google
script-src Host
*.groupondev.com
ASN | Cloudflare
script-src Host
sc-static.net
ASN | Amazon
connect-src Keyword
'unsafe-eval'
connect-src Keyword
'unsafe-inline'
connect-src Keyword
'self'
connect-src Host
*.grouponcdn.com
ASN | Cloudflare
connect-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
connect-src Host
mpsnare.iesnare.com
ASN | Amazon
connect-src Host
*.boldchat.com
connect-src Host Google Conversion Tracking logo Google Conversion Tracking
www.googleadservices.com
ASN | Google
connect-src Host Criteo logo Criteo
static.criteo.net
ASN | AS-CRITEO - Criteo Corp.
connect-src Host Facebook logo Facebook
connect.facebook.net
ASN | Facebook
connect-src Host
b-code.liadm.com
ASN | Amazon
connect-src Host Google Tag Manager logo Google Tag Manager
www.googletagmanager.com
ASN | Google
connect-src Host
*.groupondata.com
ASN | Cloudflare
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Host
*.grouponcdn.com
ASN | Cloudflare
style-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
style-src Host Google Fonts logo Google Fonts
fonts.googleapis.com
ASN | Google
style-src Host
*.groupondev.com
ASN | Cloudflare
img-src Keyword
'self'
img-src Scheme
data:
img-src Host
*.grouponcdn.com
ASN | Cloudflare
img-src Host
*.groupon.com
ASN | Cloudflare
img-src Host Google Search logo Google Search
www.google.com
ASN | Google
img-src Host Google DoubleClick logo Google DoubleClick
*.doubleclick.net
ASN | Google
img-src Host
rp.liadm.com
ASN | Amazon
img-src Host Facebook logo Facebook
www.facebook.com
ASN | Facebook
img-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
img-src Host Google Maps logo Google Maps
maps.googleapis.com
ASN | Google
img-src Host
*.groupondev.com
ASN | Cloudflare
img-src Host Google Maps logo Google Maps
maps.gstatic.com
ASN | Google
img-src Host Criteo logo Criteo
*.criteo.net
font-src Keyword
'self'
font-src Host
*.grouponcdn.com
ASN | Cloudflare
font-src Host Google Fonts logo Google Fonts
fonts.gstatic.com
ASN | Google
font-src Host
*.groupondev.com
ASN | Cloudflare
object-src Scheme
data:
object-src Keyword
'unsafe-eval'
report-uri Host
/csp-report