Content-Security-Policy Analysis for https://www.zuora.com

Open Cached · just now

3 directives

Content-Security-Policy: block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'self' bugcrowd.com;

block-all-mixed-content Source —

(no sources)

upgrade-insecure-requests Source —

(no sources)

frame-ancestors Keyword —

'self'

frame-ancestors Host

Bugcrowd

bugcrowd.com

No report-only CSP headers found.