HTTP Headers Analysis for https://ivalyu.live

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

none

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

ESF

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

3 headers

Date

Other

Fri, 14 Nov 2025 09:31:22 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20251110.02_p0&app=25&clss=1&context=eJwNz3lQlAUABfDP3e97GErcsqDCsihBKAKNgcDGsbAQlplmu2ETJK6KIBgg3gmDeGajlYWaogsEsq53SaNOpDiDOpZXGomigqDLsUAgoAa9P34z773_nm2JXelonWAeoxNmu-iEj8hxp07wpuESnfD6Hp0gGnWCC6lP6gRdk05YTBc7dMIt-sxdL2RR30S9IHrqhRWT9EIxpcXrhVxaSZspPOCuMEyYclfwpKjHvbIECirol4WRtbBfNkCrMwZkhXQ5clB2g86pB2V19NwwKBumym2DsmO04MqQbCllCSOyfBqcMCITJo7I-laNyF7RW3Pl8giKKpTLE2jOE7k8mVZZw8UCmtYfIYaSrCRStKVfj0SKv1NimFqcTXm6aHEd9STFiENU1Bkjbqd7a2PFZqoxxYq1pDbHivG0e7lG3E9p-Roxg2THNaItHT6pEU_QjF80YgxleceJ-TQQEC-OUNjSeDGaJn8RL06lja3x4lekn64VU-nyz1qxgb77OkEspyqqIWNGolhNzU7viu3UaJMkttDKuaXSBrphKpUe0d9nSqWHdOPfg1IDxY43Skmk_MAo-dHnjWVSOq23lknFdHZJuXSRqjPLpZN0pblcukmKExWSkmzWVkr2ZFdcKbmSu1eV5E1-n1RJQTTHUi0l0-FZJukEPVpokp7R-SqTdIlCA8xSFN2oNUsNlJN2VFpDlmVHpV7aa7ZIRqqvb5eukz6qQ0ql-Rc6pDT6S98p3Sf7fZ2SG8mfjMUYOm5vhxryrbFDIN2tex1NlB9ijy_p_VJ7zKPWCgd0kempI07REosjlpNNkBPsaZTKGa_RqVBnnKXoMGckUsh9F4RT2yZXWGmDcRw20xuN4zCNfkxzQznZZrrBiV5kMWe7YatSgV20eLoCzwwK9NBpswLnaPCyAsIVBdYdcsdGum10RyOt3OaBDfTC6gFZtwf2D3igglp2jkcH7Y6ZgL00P2kCUqnJ5In6fzxxjZ41eqKL_KyeCKJ5PZ5IpnPzvfDbIi_UkeW0F3pppo0Sc-lUqJJflWhPV6KrRonntLbMG0UUZ_XGe5Q5TYU8ejtBhQhyXaHCRHpZrIJ8kwoZB1XIpfPXVLhAY_9QwZEG6BVp_1RhJlWRmXYMq7CbjME-qKb_In0gqX1wPMoHNdSR7oM-6l7tg35Kvu2DBeR7dBICKeXYJCymJJ0v5lCz3hftNCD5YYSe2vmhm-wd_eBCDw74oZnutDJTjb0_aqnF0R8d1ODsj0f00sUfcld__HAnHJV0U4jAVVMEbtGQQySGyTQrEqdoRFDDZpQaEWPUmEnLv1djFTV-8w5ayCCPwlKynRwFJ2qcEo0WqtVE4zr51EUjgJZpYrCCGkpiUGiJwVYqctdgO-3SarCHxhk0UFBPpgZD5FDITlZ5HEbI7tM4uNKDrji0Ut_xeLwi5zQtFHRovRaLC7TIpgOVWvxEM-q1iKHOvAT0k-pIAt6kXnMCXtC3gYnYRxebEnGVyroS8WDbY7RSytPHWEhOH7bAgwpSWrCFbIda4EQ5Ba1YQxa3NvRSdUcb9FlPkUr771tQQXvD29G2ox2-Z7qALVa4GK3Iy-7GkaJudDzshtPY0ZbOe_VwePhy0yW5h_hxumGlaophYXpedk5uYG56niF3aj43Q87URTnZWXmGrIUpIUEh04ODg4MCg0JSlgf9D7cwaew&build-label=editors.sites-viewer-frontend_20251110.02_p0&imp-sid=CLLtqcmq8ZADFX_jzgAdtqkynA&is-cached-offline=false"

Recommendations

Enable compression (gzip/brotli) to improve performance