DNS Gurus
Cached · just now
23 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=300
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Excellent
deny
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

1 headers
Cache-Control
Caching
no-store, no-cache, must-revalidate

Content Headers

1 headers
Content-Type
Content
text/html; charset=UTF-8

Server Headers

1 headers
Server
Server
cloudflare

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
__cf_bm=kkChIIvTDUD_Yvod_gR9pZLp19ukYVQh7BT9DHBL9F0-1767031058-1.0.1.1-o64lw50RwLrPmrCmesRK_VXkVn.QxvKcCMrTl5sVR_pNmxUBngVVNKCluxlDFm0pErZJxNdnN0byMM72SmhIM.5qqdwBw11BzN0naBLqiJg; path=/; expires=Mon, 29-Dec-25 18:27:38 GMT; domain=.shop.bolt.com; HttpOnly; Secure; SameSite=None

Other Headers

13 headers
Alt-Svc
Other
h3=":443"; ma=86400
Bc-Ray
Other
1
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9b5b2e525a7329bc-IAD
Date
Other
Mon, 29 Dec 2025 17:57:38 GMT
Fpc-Metadata
Other
c=1:h=1:t=1
Link
Other
<https://cdn11.bigcommerce.com/s-ojbg1g4emk>; rel=preconnect; as=font; crossorigin=anonymous, <https://fonts.googleapis.com/>; rel=preconnect; as=font; crossorigin=anonymous, <https://fonts.gstatic.com/>; rel=preconnect; as=font; crossorigin=anonymous, <https://fonts.googleapis.com/css?family=Montserrat:400%7CKarla:400&display=swap>; rel=preload; as=style, <https://cdn11.bigcommerce.com/s-ojbg1g4emk/stencil/4e5c1f70-3a64-013e-8f9e-2a132074d21d/e/a7ad40c0-5087-013e-99ad-7628ba92e5f7/css/theme-3f768a80-7af3-013e-7f8d-325ff9060520.css>; rel=preload; as=style, <https://cdn11.bigcommerce.com/s-ojbg1g4emk/stencil/4e5c1f70-3a64-013e-8f9e-2a132074d21d/e/a7ad40c0-5087-013e-99ad-7628ba92e5f7/css/custom-3f768a80-7af3-013e-7f8d-325ff9060520.css>; rel=preload; as=style
Nel
Other
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Report-To
Other
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KIwgkYSpWKtoZYjRR76mnenyp9emaJoKNVgeuDaFqD9pcd%2BXyi04qH5CgCBYG%2B0d2GI%2FIAHUtTYPi31z8V7zyXPXtZKxJAKCsksJ9%2BhbOVlfuNqUxoXyZOp2cwL89%2FQ%3D"}],"group":"cf-nel","max_age":604800}
X-Bc-Is-Ha
Other
1
X-Bc-Store-Id
Other
1001793369
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
1a01c666664ef79bdc48e09907d39216

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 234ms