Open
Cached
·
just now
15
directives
Content-Security-Policy
No enforced CSP headers found.
Content-Security-Policy-Report-Only
Content-Security-Policy-Report-Only: base-uri 'self' jobscore.com *.jobscore.com; object-src 'none'; frame-ancestors 'self'; worker-src 'self' jobscore.com *.jobscore.com; manifest-src 'none'; upgrade-insecure-requests; report-uri https://report.jobscore.com/csp; default-src 'none'; form-action 'self' *.jobscore.com https:; img-src 'self' *.jobscore.com https: data:; style-src 'self' *.jobscore.com https://*.typekit.net 'unsafe-hashes' 'sha256-jeqF/KOZQUN09P6WureBhg6KaSU3byjxxUBt0mQk5DA=' 'sha256-9NQ4hwPp/2srz2L3FIvPm+Bdqc0fq499Rhz/uI/iwHk='; font-src 'self' https://*.typekit.net data:; connect-src 'self' *.jobscore.com https:; script-src 'self' 'strict-dynamic' https: 'nonce-NhNkMTxPTYj5rWLYnTgHg49H/GGSGki1'; frame-src 'self' *.jobscore.com https://www.recaptcha.net/ https://www.facebook.com https://www.googletagmanager.com/
base-uri
Keyword
—
'self'
object-src
Keyword
—
'none'
frame-ancestors
Keyword
—
'self'
worker-src
Keyword
—
'self'
manifest-src
Keyword
—
'none'
upgrade-insecure-requests
Source
—
(no sources)
default-src
Keyword
—
'none'
form-action
Keyword
—
'self'
form-action
Scheme
—
https:
img-src
Keyword
—
'self'
img-src
Scheme
—
https:
img-src
Scheme
—
data:
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-hashes'
style-src
Hash
—
'sha256-jeqF/KOZQUN09P6WureBhg6KaSU3byjxxUBt0mQk5DA='
style-src
Hash
—
'sha256-9NQ4hwPp/2srz2L3FIvPm+Bdqc0fq499Rhz/uI/iwHk='
font-src
Keyword
—
'self'
font-src
Scheme
—
data:
connect-src
Keyword
—
'self'
connect-src
Scheme
—
https:
script-src
Keyword
—
'self'
script-src
Keyword
—
'strict-dynamic'
script-src
Scheme
—
https:
script-src
Nonce
—
'nonce-NhNkMTxPTYj5rWLYnTgHg49H/GGSGki1'
frame-src
Keyword
—
'self'
