DNS Gurus
Open Cached · just now
20 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Good
base-uri; connect-src; default-src; +11 more
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
  • Strengthen CSP by removing 'unsafe-eval'
  • Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers
Connection
Performance
keep-alive

Caching Headers

0 headers
No caching headers found

Content Headers

2 headers
Content-Length
Content
2206758
Content-Type
Content
text/html; charset=utf-8

Server Headers

1 headers
Server
Server
nginx

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
cid=f5cb9a34-14c0-3603-3f9f-94476abfeed0; Path=/; Domain=stripe.com; Max-Age=7776000; Secure; SameSite=Lax

Other Headers

9 headers
Content-Security-Policy-Report-Only
Other
base-uri 'none'; connect-src https://c.increment.com https://c.stripe.dev https://c.stripe.global https://c.stripe.partners blob: https://b.stripecdn.com https://climate.stripe.com https://errors.stripe.com https://ext.stripe.com https://r.stripe.com https://sales-live-chat.stripe.com https://stripe-images.s3.us-west-1.amazonaws.com https://stripe.com https://y4pfttj91h-1.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-2.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-3.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-dsn.algolia.net/1/indexes/mkt_partners/query https://tax-connectors.stripe.com 'self'; default-src 'none'; font-src https://b.stripecdn.com 'self'; form-action https://climate.stripe.com https://stripe.com 'self'; frame-ancestors https://app.contentful.com 'self'; frame-src https://checkout.stripe.dev https://support-conversations.stripe.com https://b.stripecdn.com https://checkout.stripe.com https://crypto-js.stripe.com https://js.stripe.com https://sales-live-chat.stripe.com 'self'; img-src data: https://assets.ctfassets.net https://assets.stripeassets.com https://b.stripecdn.com https://images.ctfassets.net https://images.stripeassets.com https://q.stripe.com https://stripe-camo.global.ssl.fastly.net 'self'; media-src https://assets.ctfassets.net https://assets.stripeassets.com https://b.stripecdn.com https://videos.ctfassets.net https://videos.stripeassets.com 'self'; script-src https://b.stripecdn.com https://crypto-js.stripe.com https://js.stripe.com 'self' 'sha256-3aWvb9tRBjmz1OjR3n7mwiTm94+s4iki4mMZF82asmc=' 'sha256-5LtzXhT7UFn+GqP5pKEMGL08UNZsrzANHFEBW/mQHGw=' 'sha256-beLzNcen8LrazzSCRjAapoIMTgJI0osPWGNSX7aK6lc=' 'sha256-cCM0Z4lzGkzQnmbdVw+ouz0JRawyaKcZ4yiqzqYS7ek=' 'sha256-vTifGUJH6hJYTvstw4xJ4xfr/vE0ELkOV4GpCumyqfg=' 'sha256-KxhSaxKB5RFTQsqfRwp+zG7iLjvMrTAySqnSvWlqct0=' 'sha256-tMuJ8c00j54yuxogrdIJeGhNVB350dc56i969XRz/Mc=' 'report-sample'; style-src https://b.stripecdn.com 'self' 'unsafe-inline'; worker-src 'none'; report-uri https://q.stripe.com/csp-violation?q=RORnEylN3WG3toaIxWOSUe3lYTQNr0fHqSE31THWQeBruFNT7-ywepZCeOHUBQc%3D
Cross-Origin-Opener-Policy-Report-Only
Other
same-origin-allow-popups; report-to="wsp_coop"
Date
Other
Mon, 03 Nov 2025 09:08:10 GMT
Report-To
Other
{"group":"wsp_coop","max_age":8640,"endpoints":[{"url":"https://q.stripe.com/coop-report?s=RORnEylN3WG3toaIxWOSUe3lYTQNr0fHqSE31THWQeBruFNT7-ywepZCeOHUBQc="}],"include_subdomains":true},{"group":"wsp_coep","max_age":8640,"endpoints":[{"url":"https://q.stripe.com/coep-report?s=RORnEylN3WG3toaIxWOSUe3lYTQNr0fHqSE31THWQeBruFNT7-ywepZCeOHUBQc="}],"include_subdomains":true}
Reporting-Endpoints
Other
coop="https://q.stripe.com/coop-report", wsp_coop="https://q.stripe.com/coop-report?s=RORnEylN3WG3toaIxWOSUe3lYTQNr0fHqSE31THWQeBruFNT7-ywepZCeOHUBQc=",wsp_coep="https://q.stripe.com/coep-report?s=RORnEylN3WG3toaIxWOSUe3lYTQNr0fHqSE31THWQeBruFNT7-ywepZCeOHUBQc="
X-Mkt-Cache
Other
HIT
X-Stripe-Proxy-Response
Other
upstream
X-Stripe-Server-Rpc-Duration-Micros
Other
121825
X-Wc
Other
ABCDEFGHIJ

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching

Analysis completed in 4ms