Open
Cached
·
just now
4
directives
Content-Security-Policy
Content-Security-Policy: frame-ancestors 'self' https://serviceplatform.seismic.com/; default-src * data: 'unsafe-eval' 'unsafe-inline' blob:; style-src 'self' go.zetaglobal.com https://code.jquery.com https://www.googletagmanager.com https://www.lightboxcdn.com https://ams.wpml.org https://netdna.bootstrapcdn.com https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net/ 'unsafe-inline'; script-src 'self' blob: *.netmng.com https://d34r8q7sht0t9k.cloudfront.net/tag.js *.liadm.com https://view.ceros.com/scroll-proxy.min.js https://ams.wpml.org https://app.spara.co/ https://browser.sentry-cdn.com/9.6.1/bundle.min.js https://code.jquery.com https://cdn.cookielaw.org https://disqus.com https://j.6sc.co https://boards.greenhouse.io https://p.adsymptotic.com https://www.googleadservices.com https://px4.ads.linkedin.com https://c1.rfihub.net https://connect.facebook.net https://lightboxapi.azurewebsites.net https://d.adroll.com https://px.ads.linkedin.com https://googleads.g.doubleclick.net https://snap.licdn.com https://com-zglobal.netmng.com https://munchkin.marketo.net https://s.adroll.com 'unsafe-inline' 'unsafe-eval' googletagmanager.com *.googletagmanager.com bootstrapcdn.com *.bootstrapcdn.com googleapis.com *.googleapis.com cloudflare.com *.cloudflare.com rezync.com *.rezync.com hsforms.net *.hsforms.net lightboxcdn.com *.lightboxcdn.com gstatic.com *.gstatic.com vimeo.com *.vimeo.com wistia.com *.wistia.com hs-scripts.com *.hs-scripts.com google.com *.google.com capterra.com *.capterra.com hscollectedforms.net *.hscollectedforms.net hsadspixel.net *.hsadspixel.net hubspot.com *.hubspot.com hsforms.com *.hsforms.com hs-analytics.net *.hs-analytics.net usemessages.com *.usemessages.com hs-banner.com *.hs-banner.com licdn.com *.licdn.com google-analytics.com *.google-analytics.com boomtrain.com *.boomtrain.com https://www.youtube.com https://www.googleoptimize.com https://s7.addthis.com/ https://unpkg.com/ https://cdn.jsdelivr.net https://dev.visualwebsiteoptimizer.com https://app.vwo.com https://js.driftt.com https://cdn.calibermind.com/ go.zetaglobal.com
frame-ancestors
Keyword
—
'self'
default-src
Host
—
*
default-src
Scheme
—
data:
default-src
Keyword
—
'unsafe-eval'
default-src
Keyword
—
'unsafe-inline'
default-src
Scheme
—
blob:
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'self'
script-src
Scheme
—
blob:
script-src
Host
—
script-src
Host
—
script-src
Host
—
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'unsafe-eval'
script-src
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.