Open
Cached
·
just now
1
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://*.apple.com http://*.apple.com https://*.mzstatic.com https://*.apple-mapkit.com https://p-events-delivery.akamaized.net http://p-events-delivery.akamaized.net https://apple-events.akamaized.net https://mediaservices.cdn-apple.com http://mediaservices.cdn-apple.com https://wwdr-aws-dev.apple.com https://bricks.cdn-apple.com https://sfss.cdn-apple.com https://sf-saas.cdn-apple.com https://df-webapp-blue-ausw2.apple.com https://df-webapp-green-ausw2.apple.com https://devintserv.us-west-1a.app.apple.com https://devintserv.us-west-1a.app.apple.com/v1/query https://cdn.captionhub.com https://cdnjs.cloudflare.com
default-src
Keyword
—
'self'
default-src
Scheme
—
data:
default-src
Scheme
—
blob:
default-src
Keyword
—
'unsafe-inline'
default-src
Keyword
—
'unsafe-eval'
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
default-src
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.