DNS Gurus
Cached · 3h ago
25 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors; report-uri
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Vary
Performance
origin

Caching Headers

3 headers
Cache-Control
Caching
no-cache,must-revalidate,max-age=0,no-store,private
Expires
Caching
Sat, 25 Jan 2025 01:49:31 GMT
Last-Modified
Caching
Sat, 25 Jan 2025 01:49:31 GMT

Content Headers

1 headers
Content-Type
Content
text/html;charset=UTF-8

Server Headers

1 headers
Server
Server
sfdcedge

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
renderCtx=%7B%22pageId%22%3A%22c807dbee-9ceb-43b2-8dcc-a3ad0cb90278%22%2C%22schema%22%3A%22Published%22%2C%22viewType%22%3A%22Published%22%2C%22brandingSetId%22%3A%222ef9cd26-302b-4c9b-aafc-96ff648c5dbc%22%2C%22audienceIds%22%3A%22%22%7D; path=/helpcenter/s; secure

Other Headers

12 headers
Akamai-Grn
Other
0.8ec83017.1769305771.fdd638ff
Content-Security-Policy-Report-Only
Other
frame-src https://funko.file.force.com *.force.com https://player.vimeo.com https://funko--omsstaging--c.sandbox.vf.force.com 'self' wss://realtime-api.bringg.com *.youtube.co.uk https://sfdc-link-preview.hk.salesforce.com https://checkoutshopper-test.adyen.com/ https://us2-realtime.bringg.com https://pal-test.adyen.com loungefly.com *.cybersource.com *.youtube.es https://funko--omsstaging.sandbox.my.site.com https://funko--c.vf.force.com *.adis.ws *.youtube.ie https://www.youtube.com *.cloudinary.com https://pay.google.com *.vimeo.com *.youtube.jp bcove.video *.youtube.fr https://*.a.forceusercontent.com https://player.cloudinary.com https://sfdc-link-preview-staging.sfdc.sh https://s1.adis.ws *.forceusercontent.com *.youtube.com *.brightcove.net *.youtube.nl https://service.force.com/embeddedservice/ https://fast.wistia.net wss://realtime2-api.bringg.com *.quip.com *.arkoselabs.com *.youtube-nocookie.com https://www.paypal.com https://appiniummastertrial.secure.force.com https://play.vidyard.com *.youtube.com.br https://eu2-realtime.bringg.com *.salesforce-experience.com https://realtime2-api.bringg.com wss://eu2-realtime.bringg.com funko.com *.salesforceliveagent.com https://eu1-realtime.bringg.com https://scormanywhere.secure.force.com https://checkoutshopper-live.adyen.com/ *.sfdcfc.net *.youtube.ca https://location.force.com *.vidyard.com https://www.gstatic.com/recaptcha/ https://players.brightcove.net https://realtime-api.bringg.com wss://eu1-realtime.bringg.com https://cdn.embedly.com https://www.google.com/recaptcha/ https://js.stripe.com/ https://www.sandbox.paypal.com wss://us2-realtime.bringg.com https://*.a.forceusercontent.com/lightningmaps/ https://usa652.sfdc-lywfpd.salesforce.com *.wistia.net *.salesforce.com https://funko.my.site.com *.youtube.pl; report-to sfdc-csp-ep; report-uri https://funko.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D8c000005L3ZZ&networkId=0DMU10000000BDC&type=communities
Date
Other
Sun, 25 Jan 2026 01:49:31 GMT
Link
Other
</helpcenter/s/sfsites/auraFW/javascript/REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA/aura_prod.js>;rel=preload;as=script;nopush,</helpcenter/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%2Fhelpcenter%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=1768976911000-155559202&rv=1763415943000>;rel=preload;as=script;nopush,</helpcenter/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.33554432.50331648-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=>;rel=preload;as=script;nopush
Report-To
Other
{"endpoints":[{"url":"https://funko.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D8c000005L3ZZ&networkId=0DMU10000000BDC&type=communities"}],"max_age":31536000,"group":"sfdc-csp-ep"}
Reporting-Endpoints
Other
sfdc-csp-ep="https://funko.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00D8c000005L3ZZ&networkId=0DMU10000000BDC&type=communities"
Server-Timing
Other
Headers;dur=43
Timing-Allow-Origin
Other
*
X-Origin-Cache-Control
Other
no-cache,must-revalidate,max-age=0,no-store,private
X-Request-Id
Other
6a5405f34b23c2be84839774ee5a80f4
X-Sfdc-Edge-Cache
Other
MISS
X-Sfdc-Request-Id
Other
6a5405f34b23c2be84839774ee5a80f4

Recommendations

Enable compression (gzip/brotli) to improve performance