HTTP Headers Analysis for https://translate.proofpoint.com

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

keep-alive

Transfer-Encoding

Performance

chunked

Caching Headers

0 headers

No caching headers found

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

0 headers

No server headers found

CORS Headers

1 headers

Access-Control-Allow-Origin

Cors

*

Cookies Headers

1 headers

Set-Cookie

Cookies

PACookieRolloutBucket_prod=CSPForceReportViolation%3A45%26PCFAuthCAE%3A27%26TeamsSettingsRedirect%3A82%26TrialPageUrlRedirect%3A73%26IsAppFramePreloadKillSwitchEnabled%3A74%26EnableDraftPreview%3A38%26UseRootMainForModelApps%3A75%26HandlebarsPages%3A7%26BundledPlay%3A38%26ShowTrialBanner%3A12%26EnableInlineNsatUI%3A51%26CopilotAdorner%3A29%26CopilotAdornerPowerBI%3A16%26CopilotAdornerSharePointForm%3A59%26CopilotAdornerSharePointWebPart%3A58%26CopilotAdornerTeams%3A88%26CopilotAdornerIFrame%3A3%26CopilotAdornerNl2Query%3A78%26CopilotAdornerNl2QueryOnHover%3A84%26CopilotAdornerNl2QueryForSQL%3A26%26CopilotSidecar%3A53%26CopilotSidecarOCVFeedback%3A68%26CopilotSidecarLandingCard%3A57%26TrustedUCIAppLifecycleV2%3A20%26OnePlayerEnableAuthCAE%3A30%26OnePlayerTeamsEnableAuthCAE%3A45%26CanvasAppHealthPage%3A2%26EnableWebAuthResourceForMonitors%3A33%26EnableDescriptionCallout%3A29%26UsePowerPlatformAPI%3A46%26EnableAbortController%3A92%26EnableXhrReplacement%3A22%26EnableNativePromise%3A27%26CopilotSidecarRecordPicker%3A55%26PreloadRequestsForAppStart%3A38%26DraftCoPilotV2PromptSuggestions%3A59%26DraftCoPilotV2DefaultSkill%3A98%26DraftWithCopilotPromptVersionV2%3A40%26DraftWithCopilotGenerate%3A17%26EnableWebPlayerDraftPreview%3A11%26EnableCatchUpCallout%3A13%26UseMemoryCacheForOrgSettings%3A52%26EnableNewPublishedAppEndpoints%3A80%26EnableCopilotUpsell%3A87%26EnableMsalV3OnStandalone%3A42%26EnableMsalV3OnTeams%3A82%26EnableMsalV3OnEmbedded%3A17%26WebPlayerAuthExpiryBuffer%3A37%26WebPlayerAuthDefaultExpiry%3A67%26UseV2MonitoringHub%3A83%26EnableAppRedirect%3A15%26EnableEnvironmentRouteExchange%3A52%26EnableEnvironmentRouteObo%3A34%26Use1DSLocalStorageChannel%3A61%26Disable1DSSendBeacon%3A49%26Use1DSUSCollectorForROW%3A95%26EnableEuropeanInstitutionTelemetryRouting%3A60%26UsePowerPlatformApiLocate%3A63%26EnableCopilotCanvasApp%3A31%26EnableCopilotCanvasAppJsxPreview%3A36%26EnableAppBuilderV2App%3A93%26EnableCustomCanvasPageLoading%3A90%26IsCatalystBizChatEnabled%3A50; expires=Thu, 15 Jan 2026 04:44:07 GMT; path=/; secure; samesite=none; httponly

Other Headers

17 headers

Date

Other

Sun, 16 Nov 2025 04:44:07 GMT

Link

Other

<https://content.powerapps.com/resource/webplayerbus/hashedresources/ptqatkislb7c6/js/es6.player-boot.js>; rel=preload; as=script; crossorigin=anonymous; nopush

Server-Code-Repo-Name

Other

PowerApps-PowerApps-RP

Server-Timing

Other

x-ms-igw-upstream-headers;dur=5.2,x-ms-igw-req-overhead;dur=0.4

Service-Worker-Allowed

Other

/

X-Azure-Ref

Other

20251116T044407Z-18496456d97wwr97hC1BL1kfh800000003fg0000000056gc

X-Cache

Other

CONFIG_NOCACHE

X-Ms-Activity-Vector

Other

00.00.00

X-Ms-Correlation-Id

Other

fc16d980-7cc3-4224-b376-f5f42c4e98e4

X-Ms-Correlation-Request-Id

Other

fc16d980-7cc3-4224-b376-f5f42c4e98e4

X-Ms-Gateway-Clusters

Other

prdil105eus

X-Ms-Igw-Tracking-Id

Other

5165838e-dff3-4cd1-a94b-af87338ee1af20251116044407_prdil105eusgb0_8

X-Ms-Islandgateway

Other

_prdil105eusgb0_8

X-Ms-Ppapigateway

Other

_prdil105eusgb0_7

X-Ms-Request-Id

Other

unitedstates.eastus:d4bea8fd-31d6-4226-8721-7070674b9b0d

X-Ms-Service-Request-Id

Other

d9be5827-ab90-47e0-a819-f25f37a1af43

X-Servicefabric

Other

NoRetry

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching