Open
Cached
·
10h ago
23
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
same-origin
Permissions-Policy
Present
accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
Performance Headers
1 headers
Connection
Performance
close
Caching Headers
2 headers
Cache-Control
Caching
private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires
Caching
Thu, 01 Jan 1970 00:00:01 GMT
Content Headers
2 headers
Content-Length
Content
6931
Content-Type
Content
text/html; charset=UTF-8
Server Headers
1 headers
Server
Server
cloudflare
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=ixbowxarJOZLq83VmzuWcC25LkiyaDOe7yNS7ARv1z4-1765954664-1.0.1.1-AeMq9fzj9422v22NaTHpLjMIBP2wbdmW17Gh10Aimy19RYRJj7y1dG41RuprJPm0h5CTEZo7INPPvLgnKhjhmNgFlVlsJ7qrSMQ3qyrafZg; path=/; expires=Wed, 17-Dec-25 07:27:44 GMT; domain=.gitlab.com; HttpOnly; Secure; SameSite=None
Other Headers
9 headers
Accept-Ch
Other
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cf-Mitigated
Other
challenge
Cf-Ray
Other
9af4872c9977d64d-IAD
Critical-Ch
Other
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Date
Other
Wed, 17 Dec 2025 06:57:44 GMT
Nel
Other
{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Origin-Agent-Cluster
Other
?1
Report-To
Other
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gtxb2O2w2QlPcJtyeLzbSwjvtUWyGC1P7fJmndQZCAz%2FdXZg1cOVGJ2uSVcUcdHXMjxuCM5IFbabtuB5Y0inulEC6lDv6tX0aatul46Lc8ckzyie5qWObVpwGr4%3D"}],"group":"cf-nel","max_age":604800}
Server-Timing
Other
chlray;desc="9af4872c9977d64d"
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 468ms