Content-Security-Policy Analysis for https://support.hekmancontract.com

Open Cached · just now

4 directives

Content-Security-Policy

Content-Security-Policy: script-src 'self' 'strict-dynamic' static.zohocdn.com salesiq.zoho.com dtzpfzv31buvf.cloudfront.net cdn.pagesense.io js.zohocdn.com widgets.zohosalesiq.com zohotagmanager.cdn.pagesense.io 'nonce-34f2278e13d7fe527fd5d2f9efda45a4';object-src 'none';base-uri 'self' static.zohocdn.com;report-uri https://logsapi.zoho.com/csplog?service=support;

script-src Keyword —

'self'

script-src Keyword —

'strict-dynamic'

script-src Host

Zoho Mail

static.zohocdn.com

script-src Host

Zoho Mail

salesiq.zoho.com

script-src Host

AWS CloudFront

dtzpfzv31buvf.cloudfront.net

script-src Host —

cdn.pagesense.io

script-src Host

Zoho Mail

js.zohocdn.com

script-src Host —

widgets.zohosalesiq.com

script-src Host —

zohotagmanager.cdn.pagesense.io

script-src Nonce —

'nonce-34f2278e13d7fe527fd5d2f9efda45a4'

object-src Keyword —

'none'

base-uri Keyword —

'self'

base-uri Host

Zoho Mail

static.zohocdn.com

report-uri Host

Zoho Mail

https://logsapi.zoho.com/csplog?service=support

Content-Security-Policy-Report-Only

No report-only CSP headers found.