HTTP Headers Analysis for https://jtv.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Basic

default-src

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Caching Headers

3 headers

Cache-Control

Caching

no-cache

Expires

Caching

Tue, 04 Dec 1993 21:29:02 GMT

Pragma

Caching

no-cache

Content Headers

2 headers

Content-Language

Content

en-US

Content-Type

Content

text/html; charset=utf-8

Server Headers

0 headers

No server headers found

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

incap_ses_1847_1728515=jix3DdCXsAeKu9fUR92hGUxzZGkAAAAAiY++h+fC0za0IG5YHHndVQ==; path=/; Domain=.jtv.com; Secure; SameSite=None

Other Headers

9 headers

Date

Other

Mon, 12 Jan 2026 04:06:37 GMT

Link

Other

<https://www.jtv.com/>; rel="alternate"; hreflang="en", <https://www.jtv.com/>; rel="alternate"; hreflang="x-default"

Server-Timing

Other

parentSpanId;desc="908672c92b0282aa"

X-Atg-Version

Other

version=QVRHUGxhdGZvcm0vMTEuMy4y

X-Cdn

Other

Imperva

X-Iinfo

Other

40-185608490-185608491 NNNY CT(4 8 0) RT(1768190797107 8) q(0 0 0 0) r(1 1) U12

X-Oracle-Dms-Ecid

Other

4eaa200b-9001-49b6-8cd4-c7483fb0ddd6-006c405b

X-Oracle-Dms-Rid

Other

0

X-Request-Id

Other

eb8fae07512e3efdb6a68242acc71c84

Recommendations

Enable compression (gzip/brotli) to improve performance