HTTP Headers Analysis for https://docs.sentry.io

Detected Technologies from Headers

See all in URL Inspect 17

Algolia

Arcade

GitHub

Google Cloud Run

Google Cloud Storage

Google Fonts

Google reCAPTCHA

Google Search

Google Static File Front End

Google Tag Manager

Kapa AI

Next.js

Plausible Analytics

Sentry

Vercel

Vimeo

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=63072000

Content-Security-Policy

Basic

upgrade-insecure-requests; default-src; script-src; +8 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

sameorigin

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Vary

Performance

rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch

accept-ranges: bytes
connection: close
vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch

Caching Headers

Age

Caching

11482

Cache-Control

Caching

public, max-age=0, must-revalidate

Etag

Caching

"440bfe0dfd50d7f00c0f9a16298f48ec"

age: 11482
cache-control: public, max-age=0, must-revalidate
etag: "440bfe0dfd50d7f00c0f9a16298f48ec"

Content Headers

Content-Disposition

Content

inline

Content-Length

Content

255024

Content-Type

Content

text/html; charset=utf-8

content-disposition: inline
content-length: 255024
content-type: text/html; charset=utf-8

Server Headers

Server

Vercel

server: Vercel

CORS Headers

Access-Control-Allow-Origin

Cors

*

access-control-allow-origin: *

Cookies Headers

No cookies headers found

Other Headers

Date

Other

Wed, 08 Apr 2026 15:43:15 GMT

Nel

Other

Report-To Group nel max-age: 1h

success: 1.0% failure: 100.0%

Report-To

Other

Group nel max-age: 1h

Endpoint 1 https://o1.ingest.sentry.io/api/4507503193292800/nel/?sentry_key=ade2f3d18e4f49c513b0a8644927d27b

Group csp max-age: 1h

Endpoint 1 https://o1.ingest.sentry.io/api/1297620/security/?sentry_key=b3cfba5788cb4c138f855c8120f70eab

X-Matched-Path

Other

/

X-Nextjs-Prerender

Other

1

X-Nextjs-Stale-Time

Other

300

X-Vercel-Cache

Other

HIT

X-Vercel-Id

Other

iad1::gw92c-1775662995468-8e2df53ddc65

date: Wed, 08 Apr 2026 15:43:15 GMT
nel: {"report_to":"nel","max_age":3600,"success_fraction":0.01,"failure_fraction":1.0}
report-to: {"group":"nel","max_age":3600,"endpoints":[{"url":"https://o1.ingest.sentry.io/api/4507503193292800/nel/?sentry_key=ade2f3d18e4f49c513b0a8644927d27b"}]},{"group":"csp","max_age":3600,"endpoints":[{"url":"https://o1.ingest.sentry.io/api/1297620/security/?sentry_key=b3cfba5788cb4c138f855c8120f70eab"}]}
x-matched-path: /
x-nextjs-prerender: 1
x-nextjs-stale-time: 300
x-vercel-cache: HIT
x-vercel-id: iad1::gw92c-1775662995468-8e2df53ddc65

Recommendations

Enable compression (gzip/brotli) to improve performance