Cached · 1h ago
29 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=63072000; preload
Content-Security-Policy
Basic
base-uri; default-src; script-src; +11 more Analyze
Content-Security-Policy-Report-Only
Weak
X-Frame-Options
Excellent
deny
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Content-Encoding
Performance
identity
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

Cache-Control
Caching
max-age=0, stale-if-error=0, no-cache="Set-Cookie"

Content Headers

Content-Encoding
Content
identity
Content-Type
Content
text/html

Server Headers

Server
Server
AtlassianEdge

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Alt-Svc
Other
h3=":443"; ma=86400
Atl-Request-Id
Other
29824e09-840e-4374-84ea-07d0ee93eeb1
Atl-Traceid
Other
29824e09840e437484ea07d0ee93eeb1
Date
Other
Sun, 19 Jul 2026 16:47:00 GMT
Nel
Other
Report-To Group endpoint-1 max-age: 10m
failure: 1.0% include subdomains
Report-To
Other
Group endpoint-1 max-age: 10m
Reporting-Endpoints
Other
csp-default-endpoint="https://web-security-reports.services.atlassian.com/csp-report/wac-web"
Server-Timing
Other
cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1023,atl-edge;dur=1021,atl-edge-internal;dur=2,atl-edge-upstream;dur=1020,atl-edge-pop;desc="aws-us-east-1",bifrost;dur=9.012297000735998,tesseract;dur=1,cdn-cache-miss,cdn-pop;desc="IAD55-P4",cdn-rid;desc="tnS69HF2B22pievlwFuQSM65mRw7-jue6whEtjWdnis0dWjR7xffjg==",cdn-downstream-fbl;dur=1033
Via
Other
1.1 ae045a09c544d6454a994246a7c445b6.cloudfront.net (CloudFront), 1.1 e7803a00a023f1e04faef1ed4f572ace.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
tnS69HF2B22pievlwFuQSM65mRw7-jue6whEtjWdnis0dWjR7xffjg==
X-Amz-Cf-Pop
Other
IAD61-P10, IAD55-P4
X-Cache
Other
Miss from cloudfront
X-Envoy-Attempt-Count
Other
1
X-Instance-Type
Other
r8g.12xlarge
X-Node-Architecture
Other
arm64

Recommendations

No recommendations at this time