Open
Cached
·
just now
21
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31556952; includeSubDomains
Content-Security-Policy
Basic
default-src; base-uri; connect-src; +9 more
X-Frame-Options
Good
sameorigin
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
1 headers
Connection
Performance
keep-alive
Caching Headers
2 headers
Cache-Control
Caching
no-store
Etag
Caching
W/"0682cafab58411661cebbd2d72b09b9b"
Content Headers
2 headers
Content-Length
Content
10093
Content-Type
Content
text/html; charset=utf-8
Server Headers
1 headers
X-Runtime
Server
0.017916
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
_clio-identity_session=lycFdI7puNCcN68lFsT6lCyatOYgxVGDmvgHRtUY8OFlXqtoupt3hxvdak7pwvHcf3afYAYWV4w7FqGiRLUgMXmC7F9NEyoKfJUJGN8CiS00LDlCTYrafRjbAXrX2AzzEbt0UYWQSDdfhL%2Ft68BPYbZifeuK7OEnZmbzCzfIH3oRqqVFQpX65xOUVoCvXExBJ3v2d65Tr4doFvJly%2FiYL5Nq7HHTxTA2ZNEJqLx7va8eKGFZ%2FXu3sxyg5OqRqj84f10berwe3fkh0zq4VM%2BLZTixFlmlYlIz8dbXqwNq--%2F7nt%2B%2BJmMR59spN4--wD2j1MuZz9kDWV5yASptBg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
Other Headers
8 headers
Date
Other
Fri, 14 Nov 2025 01:06:33 GMT
Link
Other
</assets/application-a6165221f0b1f145b9d159e4b42078df8fd94de09ca92d159d2d3df2f711e2be.css>; rel=preload; as=style; nopush
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Ratelimit-Limit
Other
750
X-Ratelimit-Remaining
Other
749
X-Ratelimit-Reset
Other
1763082600
X-Request-Id
Other
aa32f2b3-4f91-4e8d-a8e8-e6e47065c740
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 168ms