Open
Cached
·
just now
22
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Basic
child-src; connect-src; default-src; +13 more
child-src 'self'; connect-src 'self' https://www.google.com https://pagesense-collect.zoho.com https://salesiq.zohopublic.com wss://vts.zohopublic.com https://maps.googleapis.com;; default-src 'self'; font-src 'self' data: https://cdnjs.cloudflare.com https://css.zohocdn.com https://fonts.gstatic.com https://css.zohocdn.com;; frame-src 'self' https://*.vimeo.com https://www.googletagmanager.com/ https://hwauson.outgrow.us https://td.doubleclick.net https://www.google.com https://platform.twitter.com;; img-src 'self' https://secure.gravatar.com https://www.google.com data:;; manifest-src 'self'; media-src 'self'; object-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://dyv6f9ner1ir9.cloudfront.net https://static.zohocdn.com https://cdn.pagesense.io https://salesiq.zoho.com https://www.googletagmanager.com https://platform.twitter.com https://maps.googleapis.com https://googleads.g.doubleclick.net https://js.zohocdn.com; style-src 'self' 'unsafe-inline' https://static.zohocdn.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://css.zohostatic.com https://css.zohocdn.com; worker-src blob:;; form-action 'self'; frame-ancestors 'self'; block-all-mixed-content; upgrade-insecure-requests;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding,Cookie
Caching Headers
1 headers
Cache-Control
Caching
max-age=600, must-revalidate
Content Headers
1 headers
Content-Type
Content
text/html; charset=UTF-8
Server Headers
1 headers
Server
Server
cloudflare
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=WU2M7fJo8SuxJ0pZbvHjt4Xhb9g1TbDhpVbyA8ED4r4-1769713281-1.0.1.1-5AdLHB1OeDbj8nVjwltn37h2v8eFkP8UyJraTya5xHKUBehZgjMLmZZXvTy_Xyt9tRcMaZPf0gTb2Z36FQLiy7nVf1oE5fNbLqYIv_pWeH0; path=/; expires=Thu, 29-Jan-26 19:31:21 GMT; domain=.convergence-ce.com; HttpOnly; Secure; SameSite=None
Other Headers
9 headers
Alt-Svc
Other
h3=":443"; ma=86400
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9c5afa4a19426e25-IAD
Date
Other
Thu, 29 Jan 2026 19:01:21 GMT
Feature-Policy
Other
autoplay 'self'; camera 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; vr 'self';
Link
Other
<https://convergence-ce.com/>; rel=shortlink
X-Cache
Other
HIT: 1
X-Cache-Group
Other
normal
X-Cacheable
Other
SHORT
Recommendations
Enable compression (gzip/brotli) to improve performance