Open
Cached
·
just now
23
Headers
Detected Technologies from Headers
esm.sh
Airtable
Algolia
Asana
Contentful
Font Awesome
Google Analytics
Google Cloud Storage
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Static File Front End
Google Tag Manager
G Workspace
LinkedIn
PostHog
Snapchat
Supabase
Active incidents
Twitter
Vimeo
YouTube
Google App Engine
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Accept-Encoding
accept-ranges: bytes connection: close vary: Accept-Encoding
Caching Headers
Cache-Control
private, no-cache, no-store, must-revalidate
Etag
W/"6a40-49773873e8"
Expires
-1
Last-Modified
Tue, 01 Jan 1980 00:00:01 GMT
Pragma
no-cache
cache-control: private, no-cache, no-store, must-revalidate etag: W/"6a40-49773873e8" expires: -1 last-modified: Tue, 01 Jan 1980 00:00:01 GMT pragma: no-cache
Content Headers
Content-Length
27200
Content-Type
text/html; charset=utf-8
content-length: 27200 content-type: text/html; charset=utf-8
Server Headers
Server
Google Frontend
server: Google Frontend
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Sat, 16 May 2026 07:25:20 GMT
X-Cloud-Trace-Context
2fe23b353368d1db16444f59f670153a
X-Dns-Prefetch-Control
off
X-Download-Options
noopen
X-Permitted-Cross-Domain-Policies
none
date: Sat, 16 May 2026 07:25:20 GMT x-cloud-trace-context: 2fe23b353368d1db16444f59f670153a x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none
Recommendations
Enable compression (gzip/brotli) to improve performance