HTTP Headers Analysis for https://goodthingstaketime.com

Detected Technologies from Headers

See all in URL Inspect 2

Cloudflare NEL Monitoring

Cloudflare CDN

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Weak

frame-ancestors Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

must-revalidate, private, max-age=0

cache-control: must-revalidate, private, max-age=0

Content Headers

Content-Language

Content

zh-TW

Content-Type

Content

text/html; charset=utf-8

content-language: zh-TW
content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

X-Runtime

Server

0.283518

server: cloudflare
x-runtime: 0.283518

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: language=zh-TW; path=/; secure; SameSite=None
_cyberbiz_session=QhYSLtjBmIX4bkZDTym%2Bc4h7z427Av9jCa5%2FXGVVaw9Xin3xLB1e4%2B3dJDXd9pJR1bDes5NN6TOLEZM2eMS4WYAa%2F3nshFZoi0LVmp1FDrN8Xaq%2FDiANXOiovXZ9MPqeF5FEUHnPTZebAOS%2BRd9nRWkIfcu%2FvrX47P0EPZoHrnJTwjdXPXiFQcj%2BV6fi0TAxSghi9GX2x7DNRpQlgyt9BjzAaIw9zIVTbwKAvmDz1BQG25FgHUNCZHqrgrVURhA1xqUoiVTsF3AUQQ32pnK8WqfmFewIZ7u5Wl%2BeNoBMoBdpvgBolG0kTGJzFYmU8qw9NLXwFWfP%2BxVWyX0zl%2BtYTtYAfukO%2BB99grQVJwPWOmYW--2RwsDmMW%2B0fZMnx0--uq%2FNHNZ19xKA2GhTgdCmHA%3D%3D; path=/; HttpOnly; secure; SameSite=None

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f35735bada33880-IAD

Date

Other

Tue, 28 Apr 2026 10:40:46 GMT

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 0.0%

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=W92CAookfourrCdZCP2Nw0sWJqIydhHc7WOXpnthWIJBhECuunycJsJbTC5uQstWhdvlYA%2FNwc0jYTYqQAi43gQXYDQdrnBa55x%2FEgfPETlhHW8elGsnmxit2vlJ0kZuKiCEw9NpwhpuFmgHZQ%3D%3D

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=24,cfOrigin;dur=1252

X-Cache-Info

Other

caching

X-Download-Options

Other

noopen

X-Permitted-Cross-Domain-Policies

Other

none

X-Process-Time

Other

0.305601

X-Queued-Time

Other

0.000388

X-Rack-Cache

Other

miss

X-Rack-Queue-Time

Other

0.01060795783996582

X-Rails-Next

Other

0

X-Request-Id

Other

F8063D12E4208A8F207396EDBFBEFCA2

alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 9f35735bada33880-IAD
date: Tue, 28 Apr 2026 10:40:46 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=W92CAookfourrCdZCP2Nw0sWJqIydhHc7WOXpnthWIJBhECuunycJsJbTC5uQstWhdvlYA%2FNwc0jYTYqQAi43gQXYDQdrnBa55x%2FEgfPETlhHW8elGsnmxit2vlJ0kZuKiCEw9NpwhpuFmgHZQ%3D%3D"}]}
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=24,cfOrigin;dur=1252
x-cache-info: caching
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-process-time: 0.305601
x-queued-time: 0.000388
x-rack-cache: miss
x-rack-queue-time: 0.01060795783996582
x-rails-next: 0
x-request-id: F8063D12E4208A8F207396EDBFBEFCA2

Recommendations

Enable compression (gzip/brotli) to improve performance