Content-Security-Policy Analysis for https://support.ondilo.com

Open Cached · just now

4 directives

Content-Security-Policy

Content-Security-Policy: script-src 'self' 'strict-dynamic' static.zohocdn.com salesiq.zoho.eu dtzpfzv31buvf.cloudfront.net cdn.pagesense.io js.zohocdn.com widgets.zohosalesiq.com zohotagmanager.cdn.pagesense.io 'nonce-2167304dae96b7936da58e1a14879579';object-src 'none';base-uri 'self' static.zohocdn.com;report-uri https://logsapi.zoho.eu/csplog?service=support;

script-src Keyword —

'self'

script-src Keyword —

'strict-dynamic'

script-src Host

Zoho Mail

static.zohocdn.com

script-src Host —

salesiq.zoho.eu

script-src Host

AWS CloudFront

dtzpfzv31buvf.cloudfront.net

script-src Host —

cdn.pagesense.io

script-src Host

Zoho Mail

js.zohocdn.com

script-src Host —

widgets.zohosalesiq.com

script-src Host —

zohotagmanager.cdn.pagesense.io

script-src Nonce —

'nonce-2167304dae96b7936da58e1a14879579'

object-src Keyword —

'none'

base-uri Keyword —

'self'

base-uri Host

Zoho Mail

static.zohocdn.com

report-uri Host —

https://logsapi.zoho.eu/csplog?service=support

Content-Security-Policy-Report-Only

No report-only CSP headers found.