Open
Cached
·
1h ago
22
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=300
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
geolocation=(), microphone=(), camera=()
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Accept-Encoding, Cookie, Cookie
accept-ranges: bytes connection: close vary: Accept-Encoding, Cookie, Cookie
Caching Headers
Age
261584
Cache-Control
public, max-age=604800
age: 261584 cache-control: public, max-age=604800
Content Headers
Content-Length
42767
Content-Type
text/html; charset=UTF-8
content-length: 42767 content-type: text/html; charset=UTF-8
Server Headers
Server
nginx
server: nginx
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Mon, 30 Mar 2026 14:25:45 GMT
Link
rel=https://api.w.org/
rel=alternate
title=JSON
type=application/json
rel=shortlink
Via
1.1 varnish, 1.1 varnish
X-Cache
HIT, HIT
X-Cache-Hits
22, 0
X-Pantheon-Styx-Hostname
styx-us-a-556746b88b-fhdr7
X-Served-By
cache-chi-klot8100158-CHI, cache-nyc-kteb1890039-NYC
X-Styx-Req-Id
4a639945-29e3-11f1-8fa9-a20c00b924d7
X-Timer
S1774880745.186308,VS0,VE4
date: Mon, 30 Mar 2026 14:25:45 GMT link: <https://thejames.sonesta.com/wp-json/>; rel="https://api.w.org/", <https://thejames.sonesta.com/wp-json/wp/v2/pages/2>; rel="alternate"; title="JSON"; type="application/json", <https://thejames.sonesta.com/>; rel=shortlink via: 1.1 varnish, 1.1 varnish x-cache: HIT, HIT x-cache-hits: 22, 0 x-pantheon-styx-hostname: styx-us-a-556746b88b-fhdr7 x-served-by: cache-chi-klot8100158-CHI, cache-nyc-kteb1890039-NYC x-styx-req-id: 4a639945-29e3-11f1-8fa9-a20c00b924d7 x-timer: S1774880745.186308,VS0,VE4
Recommendations
Enable compression (gzip/brotli) to improve performance