Content-Security-Policy Analysis for https://transparency-one.com

Open Cached · just now

3 directives

Content-Security-Policy

Content-Security-Policy: child-src 'self' *.lightning.force.com *.pendo.io *.greenhouse.io *.google.com *.vimeo.com *.isnetworld.com *.mypurecloud.com js.hs-scripts.com *.googletagmanager.com *.userway.org *.youtube.com 21911619.hs-sites.com; form-action 'self'; frame-ancestors 'self' *.lightning.force.com google.com *.vimeo.com

child-src Keyword —

'self'

child-src Host

Salesforce Sites

*.lightning.force.com

child-src Host

Pendo

*.pendo.io

ASN | Google Cloud

child-src Host

Greenhouse

*.greenhouse.io

child-src Host

Google Search

*.google.com

child-src Host

Vimeo

*.vimeo.com

ASN | Cloudflare

child-src Host —

*.isnetworld.com

ASN | Microsoft

child-src Host —

*.mypurecloud.com

child-src Host

HubSpot

js.hs-scripts.com

ASN | Cloudflare

child-src Host

Google Tag Manager

*.googletagmanager.com

child-src Host

UserWay

*.userway.org

child-src Host

YouTube

*.youtube.com

child-src Host

HubSpot CMS

21911619.hs-sites.com

ASN | Cloudflare

form-action Keyword —

'self'

frame-ancestors Keyword —

'self'

frame-ancestors Host

Salesforce Sites

*.lightning.force.com

frame-ancestors Host

Google Search

google.com

frame-ancestors Host

Vimeo

*.vimeo.com

ASN | Cloudflare

Content-Security-Policy-Report-Only

No report-only CSP headers found.