DNS Gurus
Cached · just now
8 directives

Content-Security-Policy

default-src Keyword
'self'
script-src Keyword
'self'
script-src Keyword
'unsafe-eval'
script-src Keyword
'unsafe-inline'
script-src Host Google Tag Manager logo Google Tag Manager
https://www.googletagmanager.com
ASN | Google
script-src Host Google Analytics logo Google Analytics
https://www.google-analytics.com
ASN | Google
connect-src Keyword
'self'
connect-src Host Google API JS Client logo Google API JS Client
https://firebase.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://firebaseinstallations.googleapis.com
ASN | Google
connect-src Host Google API JS Client logo Google API JS Client
https://www.googleapis.com
ASN | Google
connect-src Host Firebase logo Firebase
https://*.firebaseio.com
connect-src Host Google API JS Client logo Google API JS Client
https://*.googleapis.com
ASN | Google
connect-src Host Google Analytics logo Google Analytics
https://*.google-analytics.com
ASN | Google
connect-src Host Formspree logo Formspree
https://formspree.io
ASN | Cloudflare
connect-src Host Formspree logo Formspree
https://*.formspree.io
ASN | Cloudflare
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
style-src Host Google Fonts logo Google Fonts
https://fonts.googleapis.com
ASN | Google
font-src Keyword
'self'
font-src Host Google Fonts logo Google Fonts
https://fonts.gstatic.com
ASN | Google
font-src Scheme
data:
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
https:
object-src Keyword
'none'
form-action Keyword
'self'
form-action Host Formspree logo Formspree
https://formspree.io
ASN | Cloudflare

Content-Security-Policy-Report-Only

No report-only CSP headers found.