HTTP Headers Analysis for https://mcp.music.apple.com

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

connection: close

Caching Headers

Age

Caching

0

age: 0

Content Headers

Content-Length

Content

52

Content-Type

Content

application/json; charset=utf-8

content-length: 52
content-type: application/json; charset=utf-8

Server Headers

Server

daiquiri/5

server: daiquiri/5

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Cdnuuid

Other

80dbd10e-008f-404c-bdb3-d0245040c03b-987647652

Date

Other

Wed, 22 Apr 2026 00:58:15 GMT

Via

Other

https/1.1 uschi5-edge-bx-012.ts.apple.com (acdn/302.16436)

X-Apple-Application-Site

Other

pv

X-Apple-Jingle-Correlation-Key

Other

3VLDUNFPXHTZHSD5M47Q634FGM

X-Cache

Other

skipped

X-Daiquiri-Debug-Worker-Pid

Other

94879

X-Daiquiri-Instance

Other

daiquiri:10001:daiquiri-all-shared-ext-5b65f7dbc6-dl9zx:7987:26RELEASE66:daiquiri-amp-kubernetes-shared-ext-ak8s-prod-pv4-amp-daiquiri-ingress-prod

cdnuuid: 80dbd10e-008f-404c-bdb3-d0245040c03b-987647652
date: Wed, 22 Apr 2026 00:58:15 GMT
via: https/1.1 uschi5-edge-bx-012.ts.apple.com (acdn/302.16436)
x-apple-application-site: pv
x-apple-jingle-correlation-key: 3VLDUNFPXHTZHSD5M47Q634FGM
x-cache: skipped
x-daiquiri-debug-worker-pid: 94879
x-daiquiri-instance: daiquiri:10001:daiquiri-all-shared-ext-5b65f7dbc6-dl9zx:7987:26RELEASE66:daiquiri-amp-kubernetes-shared-ext-ak8s-prod-pv4-amp-daiquiri-ingress-prod

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching