HTTP Headers Analysis for https://guide.gatherup.com

Detected Technologies from Headers

See all in URL Inspect 6

Cloudflare CDN

DocuSign

Google Fonts

Mixpanel

Salesforce Cloud

Salesforce Sites

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Weak

frame-ancestors; report-uri Analyze

Content-Security-Policy-Report-Only

Weak

font-src; report-to; report-uri Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

accelerometer=(), ambient-light-sensor=(), autoplay=(); +24 more

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Significantly strengthen CSP directives

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding, Origin

connection: close
transfer-encoding: chunked
vary: Accept-Encoding, Origin

Caching Headers

Cache-Control

Caching

no-cache,must-revalidate,max-age=0,no-store,private

Expires

Caching

Fri, 09 May 2025 23:20:32 GMT

Last-Modified

Caching

Fri, 09 May 2025 23:20:32 GMT

cache-control: no-cache,must-revalidate,max-age=0,no-store,private
expires: Fri, 09 May 2025 23:20:32 GMT
last-modified: Fri, 09 May 2025 23:20:32 GMT

Content Headers

Content-Type

Content

text/html;charset=UTF-8

content-type: text/html;charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: CookieConsentPolicy=0:1; path=/; expires=Sun, 09-May-2027 23:20:32 GMT; Max-Age=31536000; secure
LSKey-c$CookieConsentPolicy=0:1; path=/; expires=Sun, 09-May-2027 23:20:32 GMT; Max-Age=31536000; secure
renderCtx=%7B%22pageId%22%3A%2216b18e87-6860-44cd-ada0-f825ce429ab5%22%2C%22schema%22%3A%22Published%22%2C%22viewType%22%3A%22Published%22%2C%22brandingSetId%22%3A%227ad20e53-237f-4929-bb84-9da6bba3e350%22%2C%22audienceIds%22%3A%22%22%7D; path=/s; secure

Other Headers

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f946f704f1f06e1-IAD

Date

Other

Sat, 09 May 2026 23:20:32 GMT

Link

Other

URL /s/sfsites/auraFW/javascript/ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA/aura_prod.js

rel=preload as=script nopush

URL /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDA1MzNlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=17780359420002123420344&rv=1777691748000

rel=preload as=script nopush

URL /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.-2147483648.13107200-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=

rel=preload as=script nopush

Report-To

Other

Group sfdc-csp-ep max-age: 52w

Endpoint 1 https://traject.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D6g0000054HyC&networkId=0DM4V000000TXRt&type=communities

Reporting-Endpoints

Other

sfdc-csp-ep="https://traject.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D6g0000054HyC&networkId=0DM4V000000TXRt&type=communities"

Server-Timing

Other

Headers;dur=143, cfCacheStatus;desc="DYNAMIC", cfEdge;dur=25,cfOrigin;dur=244

Timing-Allow-Origin

Other

*

cf-cache-status: DYNAMIC
cf-ray: 9f946f704f1f06e1-IAD
date: Sat, 09 May 2026 23:20:32 GMT
link: </s/sfsites/auraFW/javascript/ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA/aura_prod.js>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDA1MzNlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=17780359420002123420344&rv=1777691748000>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.-2147483648.13107200-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=>;rel=preload;as=script;nopush
report-to: {"endpoints":[{"url":"https://traject.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D6g0000054HyC&networkId=0DM4V000000TXRt&type=communities"}],"max_age":31536000,"group":"sfdc-csp-ep"}
reporting-endpoints: sfdc-csp-ep="https://traject.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D6g0000054HyC&networkId=0DM4V000000TXRt&type=communities"
server-timing: Headers;dur=143, cfCacheStatus;desc="DYNAMIC", cfEdge;dur=25,cfOrigin;dur=244
timing-allow-origin: *

Recommendations

Enable compression (gzip/brotli) to improve performance