Content-Security-Policy Analysis for https://titanteo.com

Open Cached · just now

13 directives

Content-Security-Policy

Content-Security-Policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'none'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: blob: https:; connect-src 'self' https://*.supabase.co wss://*.supabase.co https://api.allorigins.win https://corsproxy.io https://api.codetabs.com; frame-src 'self'; form-action 'self' https://*.pagopar.com https://pagopar.com; manifest-src 'self'; upgrade-insecure-requests

default-src Keyword —

'self'

base-uri Keyword —

'self'

object-src Keyword —

'none'

frame-ancestors Keyword —

'none'

script-src Keyword —

'self'

style-src Keyword —

'self'