Open
Cached
·
just now
19
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
default-src; style-src; img-src; +5 more
default-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com/ajax/libs/font-awesome/ tagmanager.google.com/debug/css.css; img-src 'self' blob: data: res.cloudinary.com images.anytask.com www.google-analytics.com *.doubleclick.net www.facebook.com/tr/ *.linkedin.com www.google.com www.google.co.uk *.gstatic.com bat.bing.com t.co/i/adsct s3.amazonaws.com nextroll.com d.adroll.com s.adroll.com v2assets.zopim.io static.zdassets.com api.anytask.com api.qrserver.com i.ytimg.com/vi_webp/w8mMQwEEuog/ c5.adalyser.com tags.w55c.net anytask-prod-us-east-1-anytask-tasks.s3.amazonaws.com *.clarity.ms *.bing.com ct.pinterest.com; media-src res.cloudinary.com images.anytask.com static.zdassets.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' api.anytask.com connect.facebook.net www.google-analytics.com static.zdassets.com js.stripe.com bat.bing.com static.ads-twitter.com/uwt.js analytics.twitter.com tagmanager.google.com/debug tagmanager.google.com/debug/debuguiApp-bundle.js www.googletagmanager.com snap.licdn.com *.adroll.com d.adroll.mgr.consensu.org static.zdassets.com ekr.zdassets.com anytask.zendesk.com wss://anytask.zendesk.com wss://*.zopim.com www.googleadservices.com c5.adalyser.com googleads.g.doubleclick.net client.rum.us-east-1.amazonaws.com googleads.g.doubleclick.net *.clarity.ms s.pinimg.com cdn.jsdelivr.net/npm/[email protected]/dist/search-insights.min.js www.google.com/recaptcha/api.js www.gstatic.com maps.googleapis.com; connect-src 'self' api.anytask.com poll.electroneum.com wss://socket.anytask.com *.google-analytics.com *.doubleclick.net www.snap.licdn.com bat.bing.com s3.amazonaws.com d.adroll.mgr.consensu.org d.adroll.com static.zdassets.com ekr.zdassets.com anytask.zendesk.com wss://anytask.zendesk.com wss://*.zopim.com cognito-identity.us-east-1.amazonaws.com sts.us-east-1.amazonaws.com dataplane.rum.us-east-1.amazonaws.com *.clarity.ms ct.pinterest.com cdn.linkedin.oribi.io *.algolia.net *.algolianet.com *.algolia.io pagead2.googlesyndication.com region1.analytics.google.com px.ads.linkedin.com maps.googleapis.com places.googleapis.com; font-src fonts.gstatic.com cdnjs.cloudflare.com/ajax/libs/font-awesome/; frame-src js.stripe.com www.youtube.com/embed/CnSFnfQJrhM www.youtube.com/embed/vmpNiY2tsi0 www.youtube.com/embed/ZDNqJQb7rkQ td.doubleclick.net ct.pinterest.com www.google.com;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
3 headers
Accept-Ranges
bytes
Connection
close
Vary
Accept-Encoding
Caching Headers
5 headers
Age
15
Cache-Control
public, max-age=30
Etag
"78c9ff2e60a57bfa0e2d690317c5aedc"
Expires
Sat Feb 14 2026 16:34:51 GMT+0000 (Coordinated Universal Time)
Last-Modified
Wed, 29 Oct 2025 10:46:27 GMT
Content Headers
2 headers
Content-Length
21985
Content-Type
text/html
Server Headers
1 headers
Server
AmazonS3
CORS Headers
0 headers
No CORS headers found
Cookies Headers
0 headers
No cookies headers found
Other Headers
6 headers
Date
Sat, 14 Feb 2026 16:34:36 GMT
Via
1.1 1a12f863197f986ec10d35ed76e104f0.cloudfront.net (CloudFront)
X-Amz-Cf-Id
W6CdC4WptXzc9TNWsPvAychSh3SxOHnC9L5Avn06iFFcy099_uUv6g==
X-Amz-Cf-Pop
IAD61-P10
X-Amz-Server-Side-Encryption
AES256
X-Cache
Error from cloudfront
Recommendations
Enable compression (gzip/brotli) to improve performance