HTTP Headers Analysis for https://nextstepgames.net

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

none

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

ESF

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

3 headers

Date

Other

Wed, 12 Nov 2025 21:16:09 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20251105.04_p2&app=25&clss=1&context=eJwNz2tQVAUABeDr3XsPhhBvWVBx2UWDUETKVGCDZWEhLHM02w2bIGFFfKABgs-ElHxVo5WJT5RHIOsqiimO2uCjGdSxJEyjUFMQEZEFAgFT6Pz4Zs45_459j0PhcKNgHWEUZrkbhQ_IZbtR8KXBAqPw6m6jIBUZBXfSnzAKxntGIZUutRuFevrEyySkU88YkyD5mIQVfiYhn5JjTEIm5dAmCg28LQwSJtwWfCjiQbcYS8G5veI0suX1in20anGfmEdXwvvFOjqn7Rcv0zNzvzhIZVv7xWM0_-qAuIjShSExm_pHD4nCmCGxZ-WQ-ILemKNQhFFEnkIRS7MfKhQJtNIWKuXSpN4waSqJBeGSPZ05Ei5doLhpWmkWZRkjpbXUFa-TBmjDU520jf5eEyU1UbUlSqohrTVKiqGdy_XSfkrO1kuLSazUS_Z0-IReOk7TT-klHaX7RkvZ1BcYIw3RtEUxUiSN-yxGmkgbW2Kkr8g0xSAl0ZWfDFIDff9NrFRC5VRNBYvjpIPU5PqO9IQa7eKlZsqZUyivpzpLoXyf_jxdKP9Ddf8elBsoalSRHE-q94tkf_q0sVhOo3W2Yjmfzi4skS9RxZIS-QRdbSqRfyfl8VJZRXZrymQncswvkz3Ia2y57Ev-H5XLwTS7rUJOoMMzLfJxup9ikR_T-XKL_AtNDbTKEVRXY5UbKCP5qLya2pYelbtpj7VNLqLa2ifyDTJFtMtJNO9iu5xM10xP5Xpy2vtU9iTFQweMoEonR1TT-GpHBNHty6_iHmWHOOFzeq_QCXOppdQZHWRpdUEVLWxzwXKyC3aFEw1Tu-EVqprqhrMUOc0NcRRyxx2h9OhLD9hofdFIbKLXGkdiEu1L9kQJ2S_xhCs9T2de5oktKiV2UOoUJR6bleiik1YlzlH_FSWEq0qsPeSFjXSzyAuNlLPVG-vpuc0bYqc39vd5o5Sat49CO-3UjcYemhc_Gkn0h8UHtX_54Dr523wQTHO7fJBAp-aNxZkFY_EztZ0ci26aYafCHKqaquJHFe6nqdBRrcIzWlPsiw0UbfPFu7RkkhpZ9FasGmHksUKNMdSVr8YALT6oRiadv67GRXL4VQ0X6qMXZPhNjRlUTlb6elCNnVQ0WYMKehmugazVoDJCg2pqT9OghzpXadBLu9ZosI8Sbmown0Yf9YMfJR7zQyrFG8djNjWZxuMJtTr6o5PuHvBHE91qYaZqpwDUULNLANqpwS0A9-k_9wAoPAKw61YoyqhOCMM1SxjqacA5HINkmRmOKhoStLAbpkXYCC1m0PIftFhJjd--jWYyKyKwiOzHRcCVGidEoplq9JG4QZrLkQikpXodVlBDgQ55bTpsoQ1eemyjHQY9dtNIsx5K6lqixwA557GTTRGNIXL8OBoedLcjGi3UUxmDF-SWbICSDq0zIDXXgGV0oMyAH2l6rQE6epoVi15SH4nF69RtjcVz-i4oDnvpzL04XKDijjjc3foALZTY-gAplJvYjM1kP9AMV8rIbcFqavN8hG6qaH8EU3orkmj_nTaU0p7QJ_A73QGHzTa4F9lQsaETrg7Dd3fX18K5tfaLl6K39GGaOUc9wZySlrUsIzMoMy3LnDkxm5s5Y-KCjGXpWeb0lMSQ4JApkycHTwkKfjNxecj_S_BchA&build-label=editors.sites-viewer-frontend_20251105.04_p2&imp-sid=CKKe56_E7ZADFVpaqwId5ZU2Pg&is-cached-offline=false"

Recommendations

Enable compression (gzip/brotli) to improve performance