Open
Cached
·
just now
22
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=86400
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Caching Headers
1 headers
Cache-Control
Caching
max-age=300, must-revalidate
Content Headers
1 headers
Content-Type
Content
text/html; charset=UTF-8
Server Headers
1 headers
Server
Server
nginx
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
bm_sz=8B220F6A6ED79132AF557642B0D1E6E5~YAAQyWncF70pYNeaAQAAAyPb9x6KhSSuUSP2DPzAFeqKmEx7DYHtJmf0Z5gXiRs/zzW2yfHqB4swQZMlU9yL/xNFq/yCDGYyRNeSI4Bb7Rih+e9mkRq7D2Nkw7z2/PFkp6vtdGdpW3ukGg46EtgGiwHSsovCeH4dN86Ei7FT3UcFq1NmoOKtZv/ajEYx7fB4QrIlRdxOlCq4685xh7bs2cZFApuhcTGI8zs8LnZZ8OqDQVotFl+ezNsjPovYKUkY7Qc3KFzJDVhGEyyIGwpWOoWIQNpjYvwB0wAXhS+0BwiKOxQW8qf7VVXJT4dJ3NXqXdzzw+wq1TkvrXCamEuvHLPtiYZ6M/5Zy9SdlsHxymPHgg==~3163185~4536373; Domain=.salesforce.com; Path=/; Expires=Sun, 07 Dec 2025 12:08:44 GMT; Max-Age=14399
Other Headers
10 headers
Ak-Uuid
Other
0.c969dc17.1765094924.481e190d
Date
Other
Sun, 07 Dec 2025 08:08:45 GMT
Host-Header
Other
a9130478a60e5f9135f765b23f26593b
Link
Other
<https://www.salesforce.com/blog/?p=99801>; rel=shortlink
Server-Timing
Other
ak_p; desc="1765094924861_400320969_1209932045_7598_113341_0_5_-";dur=1
X-Akamai-Transformed
Other
9 50060 0 pmb=mRUM,2
X-Dns-Prefetch-Control
Other
off
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Rq
Other
dca7 0 20 9980
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 949ms