HTTP Headers Analysis for https://tadadelivery.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Weak

upgrade-insecure-requests; frame-ancestors

X-Frame-Options

Good

SameOrigin

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

Caching Headers

1 headers

Cache-Control

Caching

private, no-cache, no-store, max-age=0, must-revalidate

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

0 headers

No server headers found

CORS Headers

1 headers

Access-Control-Allow-Origin

Cors

*

Cookies Headers

1 headers

Set-Cookie

Cookies

incap_ses_1841_2932852=/i4IX+OamToVI+3aX4yMGa9agmkAAAAAU5ag4/5XOe2uf8nVMzHJMg==; path=/; Domain=.tadadelivery.com; Secure; SameSite=None

Other Headers

7 headers

Appversionname

Other

canary

Content-Security-Policy-Report-Only

Other

default-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: ; form-action 'none' ; frame-ancestors 'self' ; script-src 'unsafe-eval' 'unsafe-hashes' 'report-sample'; report-uri /csp_report; report-to /csp_report

Date

Other

Tue, 03 Feb 2026 20:29:35 GMT

Link

Other

<https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/091bb18002ede0b5-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/09744c42ea2047ae-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/0e7784537271ba44-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/18e122b1484d945e-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/2a15876e25787f01-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/42ca9a2dc174b9b9-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/76f29b690e794976-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/7ebd901f2f4a0b98-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/83c76cede88902c5-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/95a978e26cc29d74-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/9660dee8b9f46a2e-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/a1aa48d6a9b4d02c-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/b0088cce7ac0b424-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/b0d37b8b851eee48-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/d0b7d64a65dc32f9-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/d1475c40e69d0ed6-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/e0ad82400acf55c0-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/f4d4117ac16cdbe3-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/media/f5e5067cd50e2c82-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://services.dtc.mybees-platform.com/sting-dtc-mellifera-web/_next/static/css/8b7136130b514092.css>; rel=preload; as="style"

X-Cdn

Other

Imperva

X-Envoy-Upstream-Service-Time

Other

6831

X-Iinfo

Other

55-122791863-122791873 NNNN CT(6 9 0) RT(1770150568461 11) q(0 0 0 0) r(0 69) U12

Recommendations

Enable compression (gzip/brotli) to improve performance