Open
Cached
·
just now
29
Headers
Detected Technologies from Headers
PayPal
Gravatar
AWS CloudFront
Google AdSense
Google Maps
Chameleon
Canny
Workato
Miro
Google Tag Manager
Box
Tailwind CSS
G2
Google Sign-In
Google reCAPTCHA
Braintree
Amazon Advertising
Reddit
Capterra
Pendo
Zapier
Google DoubleClick
Google Analytics
Microsoft Advertising
Google Conversion Tracking
ClearBit
Dropbox
Segment
Datadog
Imgix
Google Cloud Storage
GIPHY
Google Static File Front End
Calendly
Google API JS Client
Google Fonts
Wistia
Twitter
LinkedIn
Zendesk
Singular
unpkg
Google Search
Adobe Marketo
Google Cloud Functions
Facebook
Amazon S3
GitHub
Active incidents
Pinterest
TikTok
Taboola
Split.io
Active incidents
BuySellAds
Vimeo
Akamai
FirstPromoter
Highcharts
Quora
YouTube
The Trade Desk
Microsoft Clarity
Sentry
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Origin
accept-ranges: bytes connection: close vary: Origin
Caching Headers
Age
414263
Cache-Control
public, must-revalidate, proxy-revalidate, max-age=0, s-maxage=1209600
Etag
"1d70bd220653218d740eb1d79892599a"
Last-Modified
Fri, 01 May 2026 13:59:17 GMT
age: 414263 cache-control: public, must-revalidate, proxy-revalidate, max-age=0, s-maxage=1209600 etag: "1d70bd220653218d740eb1d79892599a" last-modified: Fri, 01 May 2026 13:59:17 GMT
Content Headers
Content-Language
en-US
Content-Length
87317
Content-Type
text/html; charset=utf-8
content-language: en-US content-length: 87317 content-type: text/html; charset=utf-8
Server Headers
Server
AmazonS3
server: AmazonS3
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Alt-Svc
h3=":443"; ma=86400
Date
Fri, 01 May 2026 13:59:21 GMT
Document-Policy
include-js-call-stacks-in-crash-reports
Reporting-Endpoints
default="https://id.app.clickup.com/data/v3/utils/frontend_observability/browser_reporting"
Server-Timing
cdn-cache-hit,cdn-pop;desc="IAD55-P1",cdn-rid;desc="c8k_ISpNGR8-Gi-PfHxqAzxCbehYk3uVgzFWgJGEjE5h8jQkedYt4Q==",cdn-hit-layer;desc="EDGE",cdn-downstream-fbl;dur=2
Via
1.1 69baaa5439c683e230d9fcac1c2ffce0.cloudfront.net (CloudFront)
X-Amz-Cf-Id
c8k_ISpNGR8-Gi-PfHxqAzxCbehYk3uVgzFWgJGEjE5h8jQkedYt4Q==
X-Amz-Cf-Pop
IAD55-P1
X-Amz-Server-Side-Encryption
AES256
X-Amz-Version-Id
null
X-Cache
Hit from cloudfront
X-Dns-Prefetch-Control
off
X-Download-Options
noopen
X-Permitted-Cross-Domain-Policies
none
alt-svc: h3=":443"; ma=86400 date: Fri, 01 May 2026 13:59:21 GMT document-policy: include-js-call-stacks-in-crash-reports reporting-endpoints: default="https://id.app.clickup.com/data/v3/utils/frontend_observability/browser_reporting" server-timing: cdn-cache-hit,cdn-pop;desc="IAD55-P1",cdn-rid;desc="c8k_ISpNGR8-Gi-PfHxqAzxCbehYk3uVgzFWgJGEjE5h8jQkedYt4Q==",cdn-hit-layer;desc="EDGE",cdn-downstream-fbl;dur=2 via: 1.1 69baaa5439c683e230d9fcac1c2ffce0.cloudfront.net (CloudFront) x-amz-cf-id: c8k_ISpNGR8-Gi-PfHxqAzxCbehYk3uVgzFWgJGEjE5h8jQkedYt4Q== x-amz-cf-pop: IAD55-P1 x-amz-server-side-encryption: AES256 x-amz-version-id: null x-cache: Hit from cloudfront x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none
Recommendations
Enable compression (gzip/brotli) to improve performance