HTTP Headers Analysis for https://developers.mapped.com

Detected Technologies from Headers

See all in URL Inspect 2

Cloudflare CDN

Envoy

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31536000; includeSubDomains; preload

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Content-Security-Policy header to prevent XSS attacks
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

private, no-cache, no-store, max-age=0, must-revalidate

cache-control: private, no-cache, no-store, max-age=0, must-revalidate

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: __cf_bm=bbJCFk1zqKLmizknEg1FuHJmWSlj2GtKMLgIwd1oPbg-1778222639-1.0.1.1-PK3Vw5iZxkrodcSECGi6eov9aZzAhU27Uu.SglC289rzZSgMkvuQtwiFGo4TnIEOg_5BJL.4D5qkdLJwWvOImJMv4yBiTuOYrtORl9beD8g; path=/; expires=Fri, 08-May-26 07:13:59 GMT; domain=.mapped.com; HttpOnly; Secure; SameSite=None

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cdn-Loop

Other

cloudflare; loops=1

Cf-Cache-Status

Other

DYNAMIC

Cf-Connecting-Ip

Other

152.236.8.117

Cf-Ipcountry

Other

US

Cf-Ray

Other

9f867e43eaa38432-IAD

Cf-Visitor

Other

{"scheme":"https"}

Cf-Warp-Tag-Id

Other

65b04d5b-7dd7-4579-8a1c-005a876097a8

Date

Other

Fri, 08 May 2026 06:43:59 GMT

Host

Other

docs.mapped.com

Traceparent

Other

00-69fd862e0000000002ec44de8e937061-5904157610eb8f76-00

Tracestate

Other

dd=s:0;p:5904157610eb8f76

Upgrade-Insecure-Requests

Other

1

User-Agent

Other

mint/1.7.1

X-Datadog-Parent-Id

Other

6414275366116626294

X-Datadog-Sampling-Priority

Other

0

X-Datadog-Tags

Other

_dd.p.tid=69fd862e00000000

X-Datadog-Trace-Id

Other

210619005245026401

X-Envoy-Attempt-Count

Other

1

X-Envoy-Upstream-Service-Time

Other

465

X-Forwarded-For

Other

152.236.8.117

X-Forwarded-Host

Other

docs.mapped.com

X-Forwarded-Port

Other

3006

X-Forwarded-Proto

Other

https

X-Request-Id

Other

0e2311fa-c58f-93e4-b370-4bb6e432b88a

alt-svc: h3=":443"; ma=86400
cdn-loop: cloudflare; loops=1
cf-cache-status: DYNAMIC
cf-connecting-ip: 152.236.8.117
cf-ipcountry: US
cf-ray: 9f867e43eaa38432-IAD
cf-visitor: {"scheme":"https"}
cf-warp-tag-id: 65b04d5b-7dd7-4579-8a1c-005a876097a8
date: Fri, 08 May 2026 06:43:59 GMT
host: docs.mapped.com
traceparent: 00-69fd862e0000000002ec44de8e937061-5904157610eb8f76-00
tracestate: dd=s:0;p:5904157610eb8f76
upgrade-insecure-requests: 1
user-agent: mint/1.7.1
x-datadog-parent-id: 6414275366116626294
x-datadog-sampling-priority: 0
x-datadog-tags: _dd.p.tid=69fd862e00000000
x-datadog-trace-id: 210619005245026401
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 465
x-forwarded-for: 152.236.8.117
x-forwarded-host: docs.mapped.com
x-forwarded-port: 3006
x-forwarded-proto: https
x-request-id: 0e2311fa-c58f-93e4-b370-4bb6e432b88a

Recommendations

Enable compression (gzip/brotli) to improve performance