Open
Cached
·
just now
13
directives
Content-Security-Policy
Content-Security-Policy: img-src 'self' data: https://rp.liadm.com https://res.cloudinary.com https://imgsct.cookiebot.com https://www.google.com https://www.google.co.uk https://www.googletagmanager.com https://google-analytics.com https://cookiebot.com https://www.google.de https://secure.gravatar.com https://ts.w.org https://s.w.org https://ps.w.org; default-src 'self'; script-src 'self' 'unsafe-inline' https://api.immagnify.com https://d-code.liadm.com https://a.usbrowserspeed.com https://upload-widget.cloudinary.com https://consentcdn.cookiebot.com https://go.workspot.com https://widget.cloudinary.com https://pi.pardot.com https://opps-widget.getwarmly.com https://consent.cookiebot.com https://gstatic.com https://gstatic.cn https://www.googleapis.com https://googletagmanager.com https://googleapis.com https://googleadservices.com https://google.com https://www.workspot.com https://www.googletagmanager.com https://www.google-analytics.com https://workspot.com https://cookiebot.com https://cloudflare.com https://google.co.uk 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://api.immagnify.com https://d-code.liadm.com https://a.usbrowserspeed.com https://upload-widget.cloudinary.com https://consentcdn.cookiebot.com https://go.workspot.com https://widget.cloudinary.com https://pi.pardot.com https://opps-widget.getwarmly.com https://www.googletagmanager.com https://consent.cookiebot.com ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://pi.pardot.com https://googleapis.com ; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com ; font-src 'self' https://fonts.gstatic.com https://s0.wp.com https://gstatic.com data:; frame-src 'self' https://i.liadm.com https://consentcdn.cookiebot.com https://player.vimeo.com https://workspot.com blob:; connect-src 'self' https://analytics.google.com wss://opps-api.getwarmly.com https://rp4.liadm.com https://rp.liadm.com https://idx.liadm.com https://opps-api.getwarmly.com https://region1.analytics.google.com https://consentcdn.cookiebot.com https://trust.bitsighttech.com https://yoast.com https://stats.g.doubleclick.net https://www.google-analytics.com https://google.com https://cookiebot.com https://consent.cookiebot.com; worker-src 'self' blob: https://workspot.fuelstaging.com https://workspot.com; media-src 'self' data:; frame-ancestors 'self' ; upgrade-insecure-requests;
img-src
Keyword
—
'self'
img-src
Scheme
—
data:
default-src
Keyword
—
'self'
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src-elem
Keyword
—
'self'
script-src-elem
Keyword
—
'unsafe-inline'
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
style-src-elem
Keyword
—
'self'
style-src-elem
Keyword
—
'unsafe-inline'
font-src
Keyword
—
'self'
font-src
Scheme
—
data:
frame-src
Keyword
—
'self'
frame-src
Scheme
—
blob:
connect-src
Keyword
—
'self'
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
media-src
Keyword
—
'self'
media-src
Scheme
—
data:
frame-ancestors
Keyword
—
'self'
upgrade-insecure-requests
Source
—
(no sources)
Content-Security-Policy-Report-Only
No report-only CSP headers found.