Open
Cached
·
3h ago
29
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains; preload
Content-Security-Policy
Weak
upgrade-insecure-requests
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Consider adding Permissions-Policy to control browser features
Performance Headers
3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding
Caching Headers
2 headers
Cache-Control
Caching
s-maxage=36000, max-age=5
Last-Modified
Caching
Sun, 21 Dec 2025 09:54:28 GMT
Content Headers
1 headers
Content-Type
Content
text/html; charset=UTF-8
Server Headers
1 headers
Server
Server
cloudflare
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=WEJgvunZtrNI8l2VxoWrp8n1yYrE4bZSNVe_6aNtHg4-1767316662-1.0.1.1-mtvffLNlufMbbKVHFAImfoxdj3S5iW0m0.9lisRsmuhpvvXDC9GO70Ourm1BgTvc2AxT3pW.YyyD.mJGDBGOtz8g4YHME21qvImXGD9D_E4; path=/; expires=Fri, 02-Jan-26 01:47:42 GMT; domain=.stay22.com; HttpOnly; Secure; SameSite=None
Other Headers
18 headers
Alt-Svc
Other
h3=":443"; ma=86400
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9b766b154e13c9a1-IAD
Date
Other
Fri, 02 Jan 2026 01:17:42 GMT
Edge-Cache-Tag
Other
CT-131221293898,P-727020,W-190634886441,CW-129369280540,CW-129369848413,CW-129378119208,CW-129378119211,CW-129378119225,CW-129378119227,CW-129434150775,CW-185850895686,E-129369280383,E-129369280575,E-129369280828,E-129369280829,E-129369848186,E-129369848190,E-129378119037,E-129378119246,E-129378119253,E-129433638319,MENU-190634886441,PGS-ALL,SW-2,GC-129378126851,GC-129380233052,TS-129369848131
Link
Other
<https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css>; rel=preload; as=style,<https://cdn.jsdelivr.net/npm/[email protected]/dist/css/uikit.min.css>; rel=preload; as=style,</hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js>; rel=preload; as=script,<https://lando.stay22.com/hubfs/hub_generated/template_assets/1/129378119253/1765486667904/template_main.min.css>; rel=preload; as=style,<https://lando.stay22.com/hubfs/hub_generated/template_assets/1/129369280575/1765486675373/template_theme-overrides.min.css>; rel=preload; as=style,<https://lando.stay22.com/hubfs/hub_generated/template_assets/1/129378119246/1765486665556/template__header.min.css>; rel=preload; as=style,<https://lando.stay22.com/hubfs/hub_generated/module_assets/1/129378119225/1763919617353/module_Headers.min.css>; rel=preload; as=style,<https://lando.stay22.com/hubfs/hub_generated/module_assets/1/129369848413/1742603856540/module_Logo_Slider.min.css>; rel=preload; as=style
Nel
Other
{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Report-To
Other
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WjTf3aVL9rzvrzYuJx1O%2Bcdo%2F0W2qRW2V7XKlwGWQhzfwO7q8AXjY8rLLMsfVnjcFme%2FanDMaq6rjYxZAapVLwOX%2FALPVfHLraMaQGIJIKpl1NRb6a%2FjYrbVRChHw%2BUATyY%3D"}],"group":"cf-nel","max_age":604800}
Reporting-Endpoints
Other
heroku-nel="https://nel.heroku.com/reports?s=BS28y4P2n9Ez%2FUwdZCKl0ZWFjYXIf1eooe99QEyJJBg%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767316662"
Via
Other
2.0 heroku-router
X-Hs-Cache-Config
Other
BrowserCache-5s-EdgeCache-5s
X-Hs-Cache-Control
Other
s-maxage=36000, max-age=0
X-Hs-Cf-Cache-Status
Other
HIT
X-Hs-Cfworker-Meta
Other
{"contentType":"SITE_PAGE","resolver":"PreRenderedContentResolver"}
X-Hs-Content-Id
Other
131221293898
X-Hs-Hub-Id
Other
727020
X-Hs-Portal-Id
Other
727020
X-Hs-Prerendered
Other
Sun, 21 Dec 2025 09:54:28 GMT
Recommendations
Enable compression (gzip/brotli) to improve performance