HTTP Headers Analysis for https://jtv.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Basic

default-src

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Caching Headers

3 headers

Cache-Control

Caching

no-cache

Expires

Caching

Tue, 04 Dec 1993 21:29:02 GMT

Pragma

Caching

no-cache

Content Headers

2 headers

Content-Language

Content

en-US

Content-Type

Content

text/html; charset=utf-8

Server Headers

0 headers

No server headers found

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

incap_ses_1847_1728515=CKw8C3BKcG7gSpvQR92hGQS5Y2kAAAAArpb8bz29xHLzbdtaWI5dkQ==; path=/; Domain=.jtv.com; Secure; SameSite=None

Other Headers

9 headers

Date

Other

Sun, 11 Jan 2026 14:51:48 GMT

Link

Other

<https://www.jtv.com/>; rel="alternate"; hreflang="en", <https://www.jtv.com/>; rel="alternate"; hreflang="x-default"

Server-Timing

Other

parentSpanId;desc="cd4a702dedb1a0bf"

X-Atg-Version

Other

version=QVRHUGxhdGZvcm0vMTEuMy4y

X-Cdn

Other

Imperva

X-Iinfo

Other

46-410876836-410876838 NNNY CT(2 1 0) RT(1768143108848 39) q(0 0 0 4) r(1 1) U12

X-Oracle-Dms-Ecid

Other

9884d60c-a8ac-47e5-995e-e624025cedc2-00602b95

X-Oracle-Dms-Rid

Other

0

X-Request-Id

Other

5928fe0ad1de5a8852bb715a263c70a0

Recommendations

Enable compression (gzip/brotli) to improve performance