Content-Security-Policy Analysis for https://tpr.apollo.dev

Open Cached · 5h ago

7 directives

Content-Security-Policy

Content-Security-Policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'report-sample' 'nonce-WmJ35KeejZC9-khm-Qx_Hg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval'

require-trusted-types-for Keyword —

'script'

report-uri Host —

https://csp.withgoogle.com/csp/docs-tt,

ASN | Google

report-uri Host —

base-uri

report-uri Keyword —

'self'

object-src Keyword —

'none'

report-uri Host —

https://csp.withgoogle.com/csp/forms/prod

ASN | Google

script-src Keyword —

'report-sample'

script-src Nonce —

'nonce-WmJ35KeejZC9-khm-Qx_Hg'

script-src Keyword —

'unsafe-inline'

script-src Keyword —

'strict-dynamic'

script-src Scheme —

https:

script-src Scheme —

http:

script-src Keyword —

'unsafe-eval'

Content-Security-Policy-Report-Only

Content-Security-Policy-Report-Only: report-uri https://csp.withgoogle.com/csp/forms/prod;frame-ancestors 'none'

report-uri Host —

https://csp.withgoogle.com/csp/forms/prod

ASN | Google

frame-ancestors Keyword —

'none'