HTTP Headers Analysis for https://saltyparrot.hypernode.io

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Unknown Certificate Authority - the server's certificate is not trusted

Open Cached · just now

15 Headers

Detected Technologies from Headers

See all in URL Inspect 4

GitHub

Amazon S3

Azure Blob Storage

GitHub Copilot

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000; includeSubdomains; preload

Content-Security-Policy

Good

default-src; base-uri; child-src; +12 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

deny

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin-when-cross-origin, strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Strengthen CSP by removing 'unsafe-eval'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

Transfer-Encoding

Performance

chunked

Vary

Performance

X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With

connection: close
transfer-encoding: chunked
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With

Caching Headers

Cache-Control

Caching

no-cache

cache-control: no-cache

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

github.com

server: github.com

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

set-cookie: _gh_sess=NQiRunvHPXLV0ENdgec18deMcgO3lay%2Blq39fHbys4bf4GtiE9us78%2BraLibEoxW12dfb5YiCCgyWPTf6HfhClAmfmuJbdurdR6TuthUkVoxrUCHVuU0YfNmuAiGnDpmkuJAhYgKMllXJGRVXTKBJsZ7UAGypAYeooAxGc8zmoO761yotB6TZLEj4bvX6MIiO9wnPmyrr%2BI5Bz1SmLUM%2F71LWIb5O4TZ%2Bu1ygN6FTcv4XWUpZ3uoagXq3JXGlsyo5mqg1SXddMirCJXcT9kInA%3D%3D--rTHNT%2BqDZ2tVT2VX--sRK0XTTpX1AW7mjCV9NWxQ%3D%3D; path=/; HttpOnly; secure; SameSite=Lax
_octo=GH1.1.277813179.1778345378; expires=Sun, 09 May 2027 16:49:38 GMT; domain=.github.com; path=/; secure; SameSite=Lax
logged_in=no; expires=Sun, 09 May 2027 16:49:38 GMT; domain=.github.com; path=/; HttpOnly; secure; SameSite=Lax

Other Headers

Date

Other

Sat, 09 May 2026 16:49:38 GMT

X-Github-Request-Id

Other

843C:25026A:E10D:11C7B:69FF65A2

date: Sat, 09 May 2026 16:49:38 GMT
x-github-request-id: 843C:25026A:E10D:11C7B:69FF65A2

Recommendations

Enable compression (gzip/brotli) to improve performance