29 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Weak
upgrade-insecure-requests Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Significantly strengthen CSP directives
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked

Caching Headers

Age
Caching
1381
Cache-Control
Caching
s-maxage=36000, max-age=5
Last-Modified
Caching
Wed, 25 Feb 2026 09:03:35 GMT

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Server
cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Cf-Ray
Other
9d36b765d8431b59-IAD
Date
Other
Wed, 25 Feb 2026 11:03:28 GMT
Edge-Cache-Tag
Other
CT-163653478014,CG-2215743,P-2215743,CW-161912703064,CW-161912703074,CW-161912705434,CW-161912705438,CW-161923556247,CW-161924239386,CW-161924239450,CW-161924241520,CW-161924377497,CW-164408014680,CW-185862407818,CW-193219568207,E-161912342848,E-161912342867,E-161912342873,E-161912705448,E-161912705452,E-161912766072,E-161912766075,E-161912766076,E-161912766077,E-161923556256,E-161923556262,E-161923847097,E-161923847176,E-161923847178,E-161923847183,E-161923847185,E-161924239416,E-161924239454,E-161924239539,E-161924241557,E-161924241573,E-161924241580,E-161924241586,E-161924241674,E-161924377602,E-161924377611,E-161924377624,E-161924377627,E-161924377634,E-161924377640,E-161924377641,E-161924377722,E-161924383759,E-161924383769,E-161924383778,E-161924383779,E-161924383791,E-161924640943,E-161924640948,E-161924641028,E-161924641035,E-161924641038,E-161924641058,E-164413503590,E-164572718675,RA-161912702979,RA-161912702981,RA-161923556137,RA-161924206257,RA-161924206258,RA-161924206259,RA-161924206265,RA-161924206337,RA-161924241446,RA-161924241448,PGS-ALL,SW-4,B-175167135549,B-67721989518,B-68174145825,B-68174467846,TS-161924641406
Link
Other
Nel
Other
Report-To Group cf-nel max-age: 1w
success: 1.0%
Via
Other
1.1 b9a9cc3569345411c251c3c7f27048e2.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
gdZ9O8SdI3YcvCl2wuNOmtP9TL3QML_A9UWtC-LuJRIpMhOE6fs3Iw==
X-Amz-Cf-Pop
Other
IAD61-P4
X-Cache
Other
Hit from cloudfront
X-Hs-Cache-Config
Other
BrowserCache-5s-EdgeCache-180s
X-Hs-Cache-Control
Other
s-maxage=36000, max-age=0
X-Hs-Cf-Cache-Status
Other
HIT
X-Hs-Cfworker-Meta
Other
{"contentType":"SITE_PAGE","resolver":"PreRenderedContentResolver"}
X-Hs-Content-Id
Other
163653478014
X-Hs-Hub-Id
Other
2215743
X-Hs-Portal-Id
Other
2215743
X-Hs-Prerendered
Other
Wed, 25 Feb 2026 09:03:35 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance