HTTP Headers Analysis for https://frontdeskhq.com

Open Cached · just now

29 Headers

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Weak

upgrade-insecure-requests

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

Transfer-Encoding

Performance

chunked

Caching Headers

2 headers

Cache-Control

Caching

s-maxage=36000, max-age=5

Last-Modified

Caching

Sat, 31 Jan 2026 03:08:20 GMT

Content Headers

1 headers

Content-Type

Content

text/html; charset=UTF-8

Server Headers

1 headers

Server

cloudflare

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

_cfuvid=XKe.PrA3CFqTAhvwNSlsYMVk5sE0pb1D6.fVdoe7JXQ-1770150424690-0.0.1.1-604800000; path=/; domain=.www.pike13.com; HttpOnly; Secure; SameSite=None

Other Headers

16 headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Ray

Other

9c84aab9df15e63f-IAD

Content-Security-Policy-Report-Only

Other

default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.pike13.com https://cdnjs.cloudflare.com https://connect.facebook.net https://platform.linkedin.com https://platform.twitter.com https://snap.licdn.com https://tracking.g2crowd.com https://*.google.com https://*.gstatic.com https://www.google-analytics.com https://www.googletagmanager.com https://*.doubleclick.net https://*.hotjar.com https://*.hs-analytics.net https://*.hs-banner.com https://*.hs-scripts.com https://*.hsadspixel.net https://*.hscollectedforms.net https://*.hsforms.net https://*.hubspot.com https://*.hubspotusercontent-na1.net https://*.hsappstatic.net https://*.hubapi.com https://*.wufoo.com; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' https://*.pike13.com https://fonts.googleapis.com https://*.hsappstatic.net https://*.hsforms.net https://*.hubspotusercontent-na1.net; font-src 'self' https://*.pike13.com https://fonts.gstatic.com https://*.hubspotusercontent-na1.net https://www.google.com; img-src 'self' https://*.pike13.com https://*.hubspot.com https://*.hubspot.net https://*.hsforms.com https://*.hubspotusercontent-na1.net https://*.hsforms.com https://*.linkedin.com https://*.hsappstatic.net https://*.facebook.com https://*.facebook.net https://*.google.com https://*.googletagmanager.com https://*.twitter.com; connect-src 'self' https://*.pike13.com https://analytics.google.com https://hubspot-forms-static-embed.s3.amazonaws.com https://px.ads.linkedin.com https://www.google-analytics.com https://www.google.com https://*.hs-banner.com https://*.hscollectedforms.net https://*.hs-collectedforms.net https://*.hsforms.net https://*.hsforms.com https://*.hubapi.com https://*.hubspot.com https://*.doubleclick.net; frame-src 'self' https://*.pike13.com https://*.hs-sites.com https://*.googletagmanager.com https://*.google.com https://*.facebook.com https://*.twitter.com; object-src 'none'; worker-src 'none'; base-uri 'self'; manifest-src 'self'; media-src 'self'; report-uri https://pike13.report-uri.com/r/d/csp/wizard;

Date

Other

Tue, 03 Feb 2026 20:27:04 GMT

Edge-Cache-Tag

Other

CT-181182624076,CG-1821116,P-1821116,CW-170796837258,CW-170796837272,CW-170796837273,CW-170803607617,CW-170803607619,CW-170803607623,CW-170803607624,CW-35243167848,E-170796837013,E-170796837018,E-170796837030,E-170796837049,E-170796837122,E-170803600963,E-170803600966,E-170803600970,E-170803600971,E-170803600993,E-170803601039,E-170803601064,E-170803607371,E-170803607397,E-170803607419,E-170803607421,E-35243540659,E-35243610330,E-35243819062,MENU-195805422261,PGS-ALL,SW-1,B-183240828710,GC-170796602437,GC-180536597386,TS-35243523572

Link

Other

<https://www.pike13.com/hubfs/hub_generated/template_assets/1/170803600971/1769805918653/template_main-head.min.css>; rel=preload; as=style,<https://www.pike13.com/hubfs/hub_generated/template_assets/1/170803600966/1769805936198/template_main-foot.min.css>; rel=preload; as=style,<https://www.pike13.com/hubfs/hub_generated/template_assets/1/170803600963/1769805929279/template_global-footer.min.css>; rel=preload; as=style,<https://www.pike13.com/hubfs/hub_generated/template_assets/1/170803600993/1769805926597/template_clean-foundation.min.css>; rel=preload; as=style,<https://www.pike13.com/hubfs/hub_generated/module_assets/1/170803607624/1769805913653/module_CLEAN_Pro_-_Magic_Module.min.css>; rel=preload; as=style,<https://www.pike13.com/hubfs/hub_generated/template_assets/1/170803600970/1769805919951/template_slick-slider.min.css>; rel=preload; as=style

Nel

Other

{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}

Report-To

Other

{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7yxBc4fvTrZScD1xNexjrTk8vdvu15RLHuawg%2FR0gCEXDcNBmAEjT8JVmez%2FC09R%2FsRJcS5bqGX0LfHYMq6%2F0YxCYyVSzgr1%2FcEYw%2B4yEqZyjReazMfaTRRBLxIIDiDM"}],"group":"cf-nel","max_age":604800}

X-Hs-Cache-Config

Other

BrowserCache-5s-EdgeCache-180s

X-Hs-Cache-Control

Other

s-maxage=36000, max-age=0

X-Hs-Cf-Cache-Status

Other

HIT

X-Hs-Cfworker-Meta

Other

{"contentType":"SITE_PAGE","resolver":"PreRenderedContentResolver"}

X-Hs-Content-Id

Other

181182624076

X-Hs-Hub-Id

Other

1821116

X-Hs-Portal-Id

Other

1821116

X-Hs-Prerendered

Other

Sat, 31 Jan 2026 03:08:20 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance