Open
Cached
·
4h ago
4
directives
Content-Security-Policy
Content-Security-Policy: script-src 'self' https://chart.googleapis.com http://cdn.sematext.com/ https://cdn.sematext.com/ content.pendo.xtm-intl.com data.pendo.xtm-intl.com app.pendo.io app.eu.pendo.io embed.tawk.to https://training-lms.xtm.cloud https://training-lms.stage.xtm.cloud https://api.qrserver.com https://xtm-assistant.xtrf.eu 'unsafe-inline' 'unsafe-eval'; report-uri https://xtm.prisma.com:443/project-manager-gui/cspReport.serv; img-src 'self' https://chart.googleapis.com http://cdn.sematext.com/ https://cdn.sematext.com/ content.pendo.xtm-intl.com data.pendo.xtm-intl.com app.pendo.io app.eu.pendo.io embed.tawk.to https://training-lms.xtm.cloud https://training-lms.stage.xtm.cloud https://api.qrserver.com https://xtm-assistant.xtrf.eu; style-src 'self' content.pendo.xtm-intl.com data.pendo.xtm-intl.com https://training-lms.xtm.cloud https://training-lms.stage.xtm.cloud https://xtm-assistant.xtrf.eu 'unsafe-inline'
script-src
Keyword
—
'self'
script-src
Host
—
script-src
Host
—
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
img-src
Keyword
—
'self'
img-src
Host
—
img-src
Host
—
style-src
Keyword
—
'self'
style-src
Host
—
style-src
Host
—
style-src
Keyword
—
'unsafe-inline'
Content-Security-Policy-Report-Only
No report-only CSP headers found.