Open
Cached
·
just now
28
Headers
Detected Technologies from Headers
Gravatar
Adobe Audience Manager
Akamai
Active incidents
Bing
Microsoft Advertising
Calendly
Clickagy
Cloudflare CDN
G2
Google Analytics
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Search
Google Static File Front End
Google Tag Manager
HubSpot
Active incidents
HubSpot Forms
Active incidents
LinkedIn
Liveramp
Microsoft Clarity
Pantheon
Reddit
The Trade Desk
Twitter
Usercentrics
Varnish
Wistia
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
Accept-Encoding, Cookie, Cookie
connection: close transfer-encoding: chunked vary: Accept-Encoding, Cookie, Cookie
Caching Headers
Age
3644
Cache-Control
public, max-age=10800
age: 3644 cache-control: public, max-age=10800
Content Headers
Content-Type
text/html; charset=UTF-8
content-type: text/html; charset=UTF-8
Server Headers
Server
cloudflare
server: cloudflare
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Cf-Apo-Via
origin,page-rules
Cf-Cache-Status
BYPASS
Cf-Edge-Cache
cache,platform=wordpress
Cf-Ray
9f5194adbb92cdc4-IAD
Date
Fri, 01 May 2026 20:36:51 GMT
Feature-Policy
geolocation 'self'; notifications 'self'; push 'self'; sync-xhr 'self'; microphone 'self'; speaker 'self'; fullscreen 'self'; vibrate 'self'; payment 'self';
Via
1.1 varnish, 1.1 varnish
X-Cache
MISS, HIT
X-Cache-Hits
0, 1
X-Content-Security-Policy
default-src 'self' http: https: https://*.addigy.com https://*.pantheonsite.io;frame-ancestors 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://ssl.google-analytics.com http: https: ;img-src 'self' data: https://app-app.addigy.com https://www.addigy.com https://static.addigy.com https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://www.google-analytics.com https://stats.g.doubleclick.net https://tracking.g2crowd.com https://bat.bing.com https://t.co https://ssl.gstatic.com https://www.gstatic.com https://*.gravatar.com http://*.gravatar.com https://fast.wistia.com https://embedwistia-a.akamaihd.net https://embed-fastly.wistia.com https://embed-ssl.wistia.com https://aorta.clickagy.com https://alb.reddit.com https://forms.hsforms.com https://track.hubspot.com https://*.linkedin.com https://ps.eyeota.net https://match.adsrvr.org https://dpm.demdex.net https://idsync.rlcdn.com https://sync.crwdcntrl.net https://ml314.com https://obseu.bzcclandlord.com https://cm.g.doubleclick.net https://perf-na1.hsforms.com/ https://forms-na1.hsforms.com/ https://assets.calendly.com/ https://c.clarity.ms/ https://c.bing.com/ https://app.usercentrics.eu https://uct.service.usercentrics.eu;style-src 'self' 'unsafe-inline' http: https: fonts.googleapis.com;font-src 'self' data: http: https: fonts.googleapis.com http https: fonts.gstatic.com https://*.wistia.com;media-src 'self' data: blob: http: https:;worker-src 'self' blob:;
X-Pantheon-Styx-Hostname
styx-us-a-585b48f5c5-lf8zt
X-Served-By
cache-chi-kigq8000053-CHI, cache-iad-kiad7000063-IAD
X-Styx-Req-Id
ff20ce1c-4594-11f1-8a0a-7ee1f19c78da
X-Timer
S1777667812.512968,VS0,VE24
cf-apo-via: origin,page-rules cf-cache-status: BYPASS cf-edge-cache: cache,platform=wordpress cf-ray: 9f5194adbb92cdc4-IAD date: Fri, 01 May 2026 20:36:51 GMT feature-policy: geolocation 'self'; notifications 'self'; push 'self'; sync-xhr 'self'; microphone 'self'; speaker 'self'; fullscreen 'self'; vibrate 'self'; payment 'self'; link: <https://addigy.com/>; rel=shortlink via: 1.1 varnish, 1.1 varnish x-cache: MISS, HIT x-cache-hits: 0, 1 x-content-security-policy: default-src 'self' http: https: https://*.addigy.com https://*.pantheonsite.io;frame-ancestors 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://ssl.google-analytics.com http: https: ;img-src 'self' data: https://app-app.addigy.com https://www.addigy.com https://static.addigy.com https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://www.google-analytics.com https://stats.g.doubleclick.net https://tracking.g2crowd.com https://bat.bing.com https://t.co https://ssl.gstatic.com https://www.gstatic.com https://*.gravatar.com http://*.gravatar.com https://fast.wistia.com https://embedwistia-a.akamaihd.net https://embed-fastly.wistia.com https://embed-ssl.wistia.com https://aorta.clickagy.com https://alb.reddit.com https://forms.hsforms.com https://track.hubspot.com https://*.linkedin.com https://ps.eyeota.net https://match.adsrvr.org https://dpm.demdex.net https://idsync.rlcdn.com https://sync.crwdcntrl.net https://ml314.com https://obseu.bzcclandlord.com https://cm.g.doubleclick.net https://perf-na1.hsforms.com/ https://forms-na1.hsforms.com/ https://assets.calendly.com/ https://c.clarity.ms/ https://c.bing.com/ https://app.usercentrics.eu https://uct.service.usercentrics.eu;style-src 'self' 'unsafe-inline' http: https: fonts.googleapis.com;font-src 'self' data: http: https: fonts.googleapis.com http https: fonts.gstatic.com https://*.wistia.com;media-src 'self' data: blob: http: https:;worker-src 'self' blob:; x-pantheon-styx-hostname: styx-us-a-585b48f5c5-lf8zt x-served-by: cache-chi-kigq8000053-CHI, cache-iad-kiad7000063-IAD x-styx-req-id: ff20ce1c-4594-11f1-8a0a-7ee1f19c78da x-timer: S1777667812.512968,VS0,VE24
Recommendations
Enable compression (gzip/brotli) to improve performance