DNS Gurus
Open Cached · just now
22 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=63072000
Content-Security-Policy
Weak
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
interest-cohort=()
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Significantly strengthen CSP directives

Performance Headers

3 headers
Connection
Performance
keep-alive
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"1c5da9acbccee705311735d069768c65"

Content Headers

1 headers
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
nginx
X-Runtime
Server
0.072632

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_gitlab_session=05ad5b098ed25f3634dcd916dd8af2cb; path=/; expires=Thu, 13 Nov 2025 15:25:05 GMT; secure; HttpOnly; SameSite=None

Other Headers

6 headers
Date
Other
Thu, 13 Nov 2025 13:25:05 GMT
Link
Other
</assets/application_utilities-40332a5b8b231ef4aa3e61942c84552407facf300fe4081ae0d70a5517018bd4.css>; rel=preload; as=style; type=text/css,</assets/application-ba1723ee38768ca6dcce3e345b1f4cef7372520f2adbb0b5be32a0e6a2b6d5df.css>; rel=preload; as=style; type=text/css,</assets/highlight/themes/white-e4a0a599c798742d5817c43bbc1ddf7745ac1b7f9c4fadf6e24a6b9bc49ffec4.css>; rel=preload; as=style; type=text/css
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
01K9YP88QYHFEMBXAREVSXVHT4
X-Ua-Compatible
Other
IE=edge

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 230ms