Open
Cached
·
just now
20
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Basic
default-src; script-src; worker-src; +13 more
default-src 'self' atlassian-companion:; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.recaptcha.net tracking.risk.lexisnexis.com code.jquery.com www.gstatic.com player.vimeo.com cdn.cookielaw.org *.clickagy.com *.adsrvr.org www.buzzsprout.com blob: *.visualwebsiteoptimizer.com cdnjs.cloudflare.com platform.twitter.com connect.facebook.net img.en25.com assets.adobedtm.com js.zi-scripts.com *.zoominfo.com www.googletagmanager.com *.google-analytics.com www.youtube.com www.youtube-nocookie.com s.ytimg.com *.lexisnexis.com *.lexisnexis.co.uk *.lexisnexis.es *.lexisnexis.com.br *.lexisnexis.co.jp *.liadm.com *.qualified.com *.doubleclick.net bat.bing.com *.licdn.com *.linkedin.com *.microad.jp *.baidu.com pagead2.googlesyndication.com; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' fonts.googleapis.com fast.fonts.net cdnjs.cloudflare.com; img-src 'self' data: blob: img.en25.com bat.bing.com *.ytimg.com pbs.twimg.com *.lexisnexis.com *.lexisnexis.co.uk pixel.wp.com *.lexisnexis.es *.lexisnexis.com.br *.lexisnexis.co.jp analytics.lexisnexisrisk.com *.google-analytics.com *.doubleclick.net *.everesttech.net *.demdex.net cdn.cookielaw.org tracking.risk.lexisnexis.com *.pagead2.googlesyndication.com *.clickagy.com *.openx.net *.liadm.com idsync.rlcdn.com *.agkn.com *.visualwebsiteoptimizer.com *.microad.jp pixel-sync.sitescout.com *.linkedin.com *.google.com www.google.co.in *.facebook.com *.adsrvr.org pixel.rubiconproject.com; font-src 'self' fonts.gstatic.com *.agkn.com wordpress.com *.tmxcyber.com *.adnxs.com; connect-src 'self' *.microad.jp www.google.co.in *.googleadservices.com browser-intake-datadoghq.com *.visualwebsiteoptimizer.com *.zoominfo.com *.google-analytics.com *.algolia.net *.algolianet.com analytics.lexisnexisrisk.com js.zi-scripts.com *.demdex.net *.everesttech.net www.recaptcha.net cdn.cookielaw.org geolocation.onetrust.com *.lexisnexis.com *.lexisnexis.co.uk *.lexisnexis.es *.lexisnexis.com.br *.lexisnexis.co.jp *.clickagy.com *.adsrvr.org *.liadm.com *.qualified.com wss://*.qualified.com *.google.com bat.bing.com px.ads.linkedin.com *.facebook.com privacyportal.onetrust.com cdnjs.cloudflare.com pagead2.googlesyndication.com *.baidu.com; frame-src 'self' atlassian-companion: *.visualwebsiteoptimizer.com www.youtube.com www.comparably.com *.blueflamingo.solutions *.tmxcyber.com app.teamwalnut.com *.doubleclick.net www.buzzsprout.com *.turtl.co www.youtube-nocookie.com platform.twitter.com player.vimeo.com *.demdex.net gateway.on24.com www.recaptcha.net *.adsrvr.org *.liadm.com www.googletagmanager.com *.qualified.com *.microad.jp cdn.cookielaw.org dpm.demdex.net *.linkedin.com www.kitchco.com nam11.safelinks.protection.outlook.com; media-src 'self' *.cloudfront.net *.qualified.com; manifest-src 'self'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests; report-uri /cdn-cgi/script_monitor/report
X-Frame-Options
Good
sameorigin
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Present
camera=(self), microphone=(self)
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
Performance Headers
2 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Caching Headers
3 headers
Cache-Control
Caching
no-cache, no-store
Expires
Caching
-1
Pragma
Caching
no-cache
Content Headers
1 headers
Content-Type
Content
text/html; charset=utf-8
Server Headers
1 headers
Server
Server
cloudflare
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=TfiN5ZnHZ5zR.wjU_mqiglAwg_gI70ds6lXm3J6m71w-1769136780-1.0.1.1-d2YTzGtI70Dul.zGAqdBeXi9J8CygIWvEsxy78LdczRm.RpDt0lWYHez1ih0AE6J_mjOZQ5ihdC4XD0bnFF78nv9asCxk0PgXhypR4C45vg; path=/; expires=Fri, 23-Jan-26 03:23:00 GMT; domain=.risk.lexisnexis.com; HttpOnly; Secure; SameSite=None
Other Headers
5 headers
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9c23ff84dbfcd46e-IAD
Date
Other
Fri, 23 Jan 2026 02:53:00 GMT
X-Bot-Score
Other
7
Xhost
Other
SC102CD2
Recommendations
Enable compression (gzip/brotli) to improve performance