HTTP Headers Analysis for https://assets.developers.agendrix.com

Detected Technologies from Headers

See all in URL Inspect 12

Cloudflare CSP Monitoring

Amazon S3

Cloudflare CDN

Cloudflare Web Analytics

Google Analytics

Google DoubleClick

Google Fonts

Google Search

Google Static File Front End

Google Tag Manager

Sentry

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=7776000; includeSubDomains; preload

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Basic

connect-src; default-src; font-src; +10 more Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

No caching headers found

Content Headers

Content-Type

Content

application/xml

content-type: application/xml

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: _cfuvid=M10hwGK.kzqJCaaDQhqUCBhga7T5zYVI0nJ.dsZz6Zg-1777599753.4318886-1.0.1.1-qjuVgq3kUFLUBbLMG5pYFLRfv5CYh21xEkoAuvlDu0s; HttpOnly; SameSite=None; Secure; Path=/; Domain=agendrix.com

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Apo-Via

Other

origin,host

Cf-Cache-Status

Other

MISS

Cf-Ray

Other

9f4b171afbadc983-IAD

Date

Other

Fri, 01 May 2026 01:42:33 GMT

Report-To

Other

Group cf-xznhleixxcoorimy max-age: 1d

Endpoint 1 https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=aeoFiQnggbOwCwfLuW0uK7zyNXN3c3R7t1bdcS6ctyg-1777599753.4318886-1.0.1.1-FTLLFoYCzqzEp8t2a5Gh8fnRtcbY968SMsBlI4w2wJvhPD1.fptWACLhAVSAudAzIJSGYcSmlgHnnWouTdzv4fvKS7gt1.Kd2XwFeGKWa6dQ5FRCs.9_SbpsK5HR78JC6sFkbauX.0JbD2CISn43X.ZbFgcjv9.sYhbAllgP_mUR0XMrUDoZ8xmOgkh0Dsa2w6VYCCvufNCn6iRvPI5tJA

X-Amz-Bucket-Region

Other

ca-central-1

X-Amz-Id-2

Other

TdtdCovibmkFLpoXAGHRRPiuIuoWtzYoDqGlcr5jAyfbk2OqGcrkuctLfq0V4wlbu9igGU+dVolGxC9g3nauz01t6vQ0+eZi

X-Amz-Request-Id

Other

STRT1EC22HB18M0W

alt-svc: h3=":443"; ma=86400
cf-apo-via: origin,host
cf-cache-status: MISS
cf-ray: 9f4b171afbadc983-IAD
date: Fri, 01 May 2026 01:42:33 GMT
report-to: {"group":"cf-xznhleixxcoorimy","max_age":86400,"endpoints":[{"url":"https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=aeoFiQnggbOwCwfLuW0uK7zyNXN3c3R7t1bdcS6ctyg-1777599753.4318886-1.0.1.1-FTLLFoYCzqzEp8t2a5Gh8fnRtcbY968SMsBlI4w2wJvhPD1.fptWACLhAVSAudAzIJSGYcSmlgHnnWouTdzv4fvKS7gt1.Kd2XwFeGKWa6dQ5FRCs.9_SbpsK5HR78JC6sFkbauX.0JbD2CISn43X.ZbFgcjv9.sYhbAllgP_mUR0XMrUDoZ8xmOgkh0Dsa2w6VYCCvufNCn6iRvPI5tJA"}]}
x-amz-bucket-region: ca-central-1
x-amz-id-2: TdtdCovibmkFLpoXAGHRRPiuIuoWtzYoDqGlcr5jAyfbk2OqGcrkuctLfq0V4wlbu9igGU+dVolGxC9g3nauz01t6vQ0+eZi
x-amz-request-id: STRT1EC22HB18M0W

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching