Open
Cached
·
just now
12
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000 ; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Caching Headers
1 headers
Cache-Control
Caching
max-age=60
Content Headers
1 headers
Content-Type
Content
text/html; charset=utf-8
Server Headers
0 headers
No server headers found
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
bm_sz=E37AE0AFDE42F0DB309F0493F1D21161~YAAQGRMoFxH+lS+bAQAANu7iuR41yG0zcNYc9TV30m2eXmnJGl7buoHwZFc7s/JK3mGAAGgD7mEBgRjc8Yh6s9elN0tVqwWo2nD+4kSu4rcMpbmKz1TD5OZ37Yj9dLqRJjW72d/fU4AZ1QfPvFheu6wJroEgcsibr9e2ObUxkw5nRP0vqQ0hx70ScqizJkLSdbNRefkNBijJ8/1FlSuaxVjQg46Z2iXiXe1h/DABZ4LLF/lRhHH6BQK/GEv0jTV9vklvp+7OJTIWMO0fBJPwrA+UcYHlMKobzbhLcklkGDoA1ET4m3b35tOuTqnj6icXUsNCpRGWF6xsXfOqONq8cHrCKcXViBCjesbod+Yv~4274482~4470084; Domain=.mango.com; Path=/; Expires=Wed, 14 Jan 2026 04:23:35 GMT; Max-Age=14400
Other Headers
4 headers
Apigw-Requestid
Other
XJMduglHjoEEJyw=
Date
Other
Wed, 14 Jan 2026 00:23:35 GMT
Link
Other
</assets-site-shop/_next/static/css/8ce83c13e1ae7abe.css>; rel=preload; as="style", </assets-site-shop/_next/static/css/ba5106214f8f2043.css>; rel=preload; as="style", </assets-site-shop/_next/static/css/fede3e0ca66444bb.css>; rel=preload; as="style", </assets-site-shop/_next/static/css/cb06fd4d23919b51.css>; rel=preload; as="style"
X-Akamai-Transformed
Other
0 - 0 -
Recommendations
Enable compression (gzip/brotli) to improve performance