Open
Cached
·
just now
11
directives
Content-Security-Policy
Content-Security-Policy: base-uri 'self'; default-src 'self' www.google.com www.googletagmanager.com nordlayer.com *.nordlayer.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googleadservices.com www.google.com www.gstatic.com *.google-analytics.com www.googletagmanager.com https://www.googleanalytics.com https://pagead2.googlesyndication.com googleads.g.doubleclick.net nordlayer.com *.nordlayer.com http://*.hotjar.com https://*.hotjar.com http://*.hotjar.io https://*.hotjar.io *.typeform.com *.hsadspixel.net *.hs-analytics.net js.hscta.net *.hubspot.com static.hsappstatic.net *.usemessages.com *.hs-banner.com *.hubspotusercontent00.net *.hubspotusercontent10.net *.hubspotusercontent20.net *.hubspotusercontent30.net *.hubspotusercontent40.net *.hubspot.net *.hscollectedforms.net *.hsleadflows.net *.hsforms.net *.hsforms.com *.hs-scripts.com *.hubspotfeedback.com feedback.hubapi.com https://a.quora.com/qevents.js *.redditstatic.com *.alb.reddit.com px.ads.linkedin.com *.oribi.io snap.licdn.com analytics.twitter.com static.ads-twitter.com connect.facebook.net bat.bing.com p.adsymptotic.com sentry.netaltr.com cdn.wisepops.com app.getwisp.co wisepops.net cdn.wisepops.net loader.wisepops.com *.salesloft.com https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://cdn.veritonic.com https://s1.nordcdn.com https://*.clarity.ms https://c.bing.com https://cdn.dreamdata.cloud https://cdn.drda.io; connect-src 'self' www.google.com *.google-analytics.com stats.g.doubleclick.net www.googletagmanager.com https://pagead2.googlesyndication.com www.googleadservices.com googleads.g.doubleclick.net cdn.growthbook.io nordlayer.com *.nordlayer.com http://*.hotjar.com:* https://*.hotjar.com:* http://*.hotjar.io https://*.hotjar.io wss://*.hotjar.com *.typeform.com *.hubapi.com js.hscta.net *.hubspot.com *.hs-banner.com *.hscollectedforms.net *.hsforms.com static.hsappstatic.net *.redditstatic.com *.alb.reddit.com pixel-config.reddit.com conversions-config.reddit.com www.linkedin.com px.ads.linkedin.com snap.licdn.com connect.facebook.net www.facebook.com p.adsymptotic.com sentry.netaltr.com activity.wisepops.com tracking.wisepops.com app.getwisp.co wisepops.net loader.wisepops.com bat.bing.com *.salesloft.com https://via.intercom.io https://api.intercom.io https://api.au.intercom.io https://api.eu.intercom.io https://api-iam.intercom.io https://api-iam.eu.intercom.io https://api-iam.au.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io wss://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io wss://nexus-websocket-b.intercom.io https://nexus-europe-websocket.intercom.io wss://nexus-europe-websocket.intercom.io https://nexus-australia-websocket.intercom.io wss://nexus-australia-websocket.intercom.io https://uploads.intercomcdn.com https://uploads.intercomcdn.eu https://uploads.au.intercomcdn.com https://uploads.eu.intercomcdn.com https://uploads.intercomusercontent.com https://*.intercom-messenger.com wss://*.intercom-messenger.com https://*.veritonicmetrics.com https://sb.nordcdn.com https://*.clarity.ms https://c.bing.com https://cdn.dreamdata.cloud; form-action 'self' webto.salesforce.com https://www.facebook.com/tr *.hsforms.com https://intercom.help https://api-iam.intercom.io https://api-iam.eu.intercom.io https://api-iam.au.intercom.io; frame-src 'self' www.google.com www.googletagmanager.com http://*.hotjar.com https://*.hotjar.com http://*.hotjar.io https://*.hotjar.io www.youtube.com https://www.youtube.com/ www.youtube-nocookie.com https://www.youtube-nocookie.com/ *.hubspot.com *.hs-sites.com *.hubspot.net play.hubspotvideo.com *.hsforms.net *.hsforms.com *.typeform.com notifications.wisepops.com wisepops.net loader.wisepops.com https://*.clarity.ms https://c.bing.com; img-src * data: http://*.hotjar.com https://*.hotjar.com http://*.hotjar.io https://*.hotjar.io https://ct.capterra.com js.hscta.net no-cache.hubspot.com *.hubspot.com *.hubspotusercontent00.net *.hubspotusercontent10.net *.hubspotusercontent20.net *.hubspotusercontent30.net *.hubspotusercontent40.net *.hubspot.net cdn2.hubspot.net *.hsforms.net *.hsforms.com https://q.quora.com *.alb.reddit.com px.ads.linkedin.com t.co analytics.twitter.com static.ads-twitter.com *.google-analytics.com stats.g.doubleclick.net www.gstatic.com https://www.googletagmanager.com https://pagead2.googlesyndication.com googleads.g.doubleclick.net cdn.wisepops.com tracking.wisepops.com dx4nr741tfc02.cloudfront.net wisp-production-storage.s3.amazonaws.com cdn.wisepops.net assets.wisepops.net loader.wisepops.com www.facebook.com blob: data: https://js.intercomcdn.com https://static.intercomassets.com https://downloads.intercomcdn.com https://downloads.intercomcdn.eu https://downloads.au.intercomcdn.com https://uploads.intercomusercontent.com https://gifs.intercomcdn.com https://video-messages.intercomcdn.com https://messenger-apps.intercom.io https://messenger-apps.eu.intercom.io https://messenger-apps.au.intercom.io https://*.intercom-attachments-1.com https://*.intercom-attachments.eu https://*.au.intercom-attachments.com https://*.intercom-attachments-2.com https://*.intercom-attachments-3.com https://*.intercom-attachments-4.com https://*.intercom-attachments-5.com https://*.intercom-attachments-6.com https://*.intercom-attachments-7.com https://*.intercom-attachments-8.com https://*.intercom-attachments-9.com https://static.intercomassets.eu https://static.au.intercomassets.com https://*.veritonicmetrics.com https://*.clarity.ms https://c.bing.com; style-src 'self' 'unsafe-inline' *.hubspotusercontent00.net *.hubspotusercontent10.net *.hubspotusercontent20.net *.hubspotusercontent30.net *.hubspotusercontent40.net cdn2.hubspot.net *.typeform.com https://fonts.googleapis.com https://s1.nordcdn.com https://sb.nordcdn.com https://*.clarity.ms https://c.bing.com; media-src 'self' 'unsafe-inline' nordlayer.com *.nordlayer.com false https://js.intercomcdn.com https://downloads.intercomcdn.com https://downloads.intercomcdn.eu https://downloads.au.intercomcdn.com; font-src 'self' data: www.google.com fonts.gstatic.com http://*.hotjar.com https://*.hotjar.com http://*.hotjar.io https://*.hotjar.io https://js.intercomcdn.com https://fonts.intercomcdn.com https://*.clarity.ms https://c.bing.com; child-src 'self' *.hsforms.com https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://fast.wistia.net https://*.clarity.ms https://c.bing.com;
base-uri
Keyword
—
'self'
default-src
Keyword
—
'self'
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Host
—
script-src
Host
—
connect-src
Keyword
—
'self'
connect-src
Host
—
connect-src
Host
—
form-action
Keyword
—
'self'
frame-src
Keyword
—
'self'
img-src
Host
—
*
img-src
Scheme
—
data:
img-src
Scheme
—
blob:
img-src
Scheme
—
data:
img-src
Host
—
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
media-src
Keyword
—
'self'
media-src
Keyword
—
'unsafe-inline'
media-src
Host
—
font-src
Keyword
—
'self'
font-src
Scheme
—
data:
child-src
Keyword
—
'self'
Content-Security-Policy-Report-Only
No report-only CSP headers found.