DNS Gurus
Cached · just now
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors; report-uri
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Vary
Performance
origin

Caching Headers

3 headers
Cache-Control
Caching
no-cache,must-revalidate,max-age=0,no-store,private
Expires
Caching
Tue, 14 Jan 2025 03:40:11 GMT
Last-Modified
Caching
Tue, 14 Jan 2025 03:40:11 GMT

Content Headers

1 headers
Content-Type
Content
text/html;charset=UTF-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
renderCtx=%7B%22pageId%22%3A%22b7f89b15-c3f3-4187-8147-f3f4cc6f3d66%22%2C%22schema%22%3A%22Published%22%2C%22viewType%22%3A%22Published%22%2C%22brandingSetId%22%3A%2259ad19c8-afe3-4da6-8dc1-9d3fdb5f13f2%22%2C%22audienceIds%22%3A%22%22%7D; path=/s; secure

Other Headers

9 headers
Akamai-Grn
Other
0.84813217.1768362011.46ccbe8b
Content-Security-Policy-Report-Only
Other
frame-src *.force.com https://player.vimeo.com 'self' https://stats.g.doubleclick.net *.youtube.co.uk https://sfdc-link-preview.hk.salesforce.com https://checkoutshopper-test.adyen.com/ https://pal-test.adyen.com *.cybersource.com *.youtube.es *.adis.ws *.youtube.ie https://www.youtube.com *.cloudinary.com https://pay.google.com https://actcomdevnedev.wpenginepowered.com *.vimeo.com *.youtube.jp bcove.video https://www.act365.com *.youtube.fr https://swiftpage--c.visualforce.com https://*.a.forceusercontent.com https://player.cloudinary.com https://sfdc-link-preview-staging.sfdc.sh https://s1.adis.ws *.forceusercontent.com https://dev-act-main.pantheonsite.io *.youtube.com *.brightcove.net *.youtube.nl https://service.force.com/embeddedservice/ http://webto.salesforce.com https://fast.wistia.net *.quip.com https://swiftpage--test.sandbox.my.site.com *.arkoselabs.com *.youtube-nocookie.com https://www.paypal.com https://appiniummastertrial.secure.force.com https://play.vidyard.com *.youtube.com.br *.salesforce-experience.com *.salesforceliveagent.com https://scormanywhere.secure.force.com https://checkoutshopper-live.adyen.com/ https://pr-2-act-main.pantheonsite.io *.sfdcfc.net *.youtube.ca https://location.force.com *.vidyard.com https://www.gstatic.com/recaptcha/ https://players.brightcove.net https://swiftpage--test.sandbox.my.salesforce-scrt.com https://www.act.com https://cdn.embedly.com https://www.google.com/recaptcha/ https://js.stripe.com/ https://www.sandbox.paypal.com https://swiftpage.my.salesforce.com https://*.a.forceusercontent.com/lightningmaps/ https://swiftpage.file.force.com https://www.googletagmanager.com https://usa714.sfdc-8tgtt5.salesforce.com *.wistia.net https://www.google-analytics.com *.salesforce.com *.youtube.pl; report-to sfdc-csp-ep; report-uri https://swiftpage.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D3j000000h43i&networkId=0DM3j000000LQyN&type=communities
Date
Other
Wed, 14 Jan 2026 03:40:12 GMT
Link
Other
</s/sfsites/auraFW/javascript/REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA/aura_prod.js>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=1767926471000411391178&rv=1762447848000>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.33554432.50331648-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=>;rel=preload;as=script;nopush
Report-To
Other
{"endpoints":[{"url":"https://swiftpage.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D3j000000h43i&networkId=0DM3j000000LQyN&type=communities"}],"max_age":31536000,"group":"sfdc-csp-ep"}
Reporting-Endpoints
Other
sfdc-csp-ep="https://swiftpage.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D3j000000h43i&networkId=0DM3j000000LQyN&type=communities"
Server-Timing
Other
Headers;dur=47
Timing-Allow-Origin
Other
*
X-Origin-Cache-Control
Other
no-cache,must-revalidate,max-age=0,no-store,private

Recommendations

Enable compression (gzip/brotli) to improve performance