HTTP Headers Analysis for https://www.apsulli.com

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

accept-encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

cloudflare

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

9 headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9c55fbcc8d90388e-IAD

Date

Other

Thu, 29 Jan 2026 04:28:34 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Nel

Other

{"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}

Report-To

Other

{"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ph%2Fb0ZCbJC%2FDRqRRKKtIZQXwTR2rUoyaHdfmDx%2FsQm7fm%2BxLZxzb%2Fq%2Fi2SB4RRPrL%2FCrDgim1x1c%2FR%2BTgfEP%2Bt65fZh6LhHPA2zvoj7rvML9lQ%3D%3D"}]}

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20260121.02_p2&app=25&clss=1&context=eJwNyGlYkwUAB_C37X3_GEKLATJJAd-VDRGblIkCAk020qLSakt7lERUVMA4PUrhKUp9Osw00Q4UMUnEvErKTrDyTDDLqHkkOIENdjBgaEn_D78vP_8aVdUws1A_3Cw8HWIWnqWgTWZhDN2pNAv3bDcLYrVZCCHDYbNgvmoWFlOTwyz8RvNGWoQ88o62CGKERSi-3yJUUFaaRSikUnqTpsZcEu4Qxl8SIij5ukdhIn1ZnyKenOV9igFatWxAUU6nEn2KFvomyac4Qf3ZPsUd2rvRp_icFpweVCylPGFIUUK-UUMKYfSQwrtySPEvPTxbqUyg5HKl0kSzbiiVc2ilc6pYRorKRNGfvtqfKP5I6fFJ4tPknpEqDtLfax4T2ygfBrGUtq4wiB9TVolBXEaKgwbRn6Z8aRBTaSAmTRyi-KVpYgo98HKaGEuv29LEt8gyyShm0qkvjGIrbXnHJNZQLTXQzQGT6KTKZeniTmpTPy7ayeo3Q2yn0tlV0jqyL6mSeunPY1XSNWrp3Sm1UtRT1ZKOXrLulnLoVeduqYKOL6mRmmjf8hrpMJ1uq5EukObQHimKzmV8Kv1OgRV7pVAaGVkrjSHdC7WSnmZ17ZPm0GcZddIh-ra2TvqJCrIOSKupK_eA5CFVaZcURjvqu6RqOnnSLjWTJdkhZdLcRoeURb9buqXLpPqwWwoj5Y0ADKeDqkA00NiGQEygSyfuwVUqiVNhLT1ZpcJzZNtzL3qoriMIR2hJVxBWkJ9eDRV9fUCNRrpLDsbddGRyMI5TSnww0inucgimUok6FGtpeEYogmnz6lDsoJtvhMJJ66pH4E160DoCD5H_8jCo6VZeGPzzw7AhSoP3aPEkDTqzNXDT0XoNviHfKQ2E0xq8smskXqeL1SNhpdKN4VhHt5zhULjC8fFAOPZQ-6b74KCtqaOwg-bOGIVMuloXgZN_ReActVkj0EE6ZwT09Jw7AnPoy7mR-H5RJE5Q19FIeGimXxRmkz0nCj0NUeinNbvH4DWa7hyDJ2j5QzKK6FGTjAQKLZYxmm5XyFC-IeP4ehlNtGynjEL69pyMRgr4VUYQDdC_ZDwvYybVUj0FNcsYQW_fkbGVqidqsY_-S9RCStLiYLIWDeTI0cJLrlVa9NGci1osoBnmsZhFbZaxsNN-6HCUPIE63CJVkA4h9BV9R_J4HcbRL9U6nKc_bDpcoQZVNH6g9qBoOKg1OBr_0O2QaChDo9EiJOBMXQJ-o4WHEpBDZw4noJnqMhJxhIaEJPjdlYSE4UmYSSs-SMJK2rZhGqrIunka2sn_gWSoyTo-Be30gyEFzaQ9kYIYyjWkophaK1PR2ZwKN5V3pWIDvWc0YDu5lxswSH7tBgTQZIcByeRUTscQBb44HaF0pWc6bHR5TRpuUHCWERpaXGZEPmlrjIihT_Ya8SlNOWlEKnUXmdBH8n4TxpGn3oRbVHbNhPX0_oR0fEhNV9Nxhq5svA4bze-4joWkfqYd4fQLnSf_wXaoaVusDR9RQZkNqymq0QYdnU2-iRay5HUgk3JrOlBM-oBOxNO71zqxjVb1d6KcWhxdaCWN2o4oOrzSjq_ps2MOHKKSRgfW0gfZ3fiELn7UjVbqTuxBH91_rAdY78TLSS7I81wYR3UFLhyh_a-5MGuTC9usLjiuuaB_xI3wZ92IpMxFbiyhuq1uBFS60bHTjYov3NhOfz_hwdmlHgQf8EBDs0N6YZvfi4wFvfg-xYvcRV4U0_OrvbCu8eKZJi9KKc3uRTpFn-pDLA3m9qPzz3700K55A4hZPICfA3y4b7QPKbIPfrd9UJFt-yD6adrBQSTTpL8GMYUmX7gNdcAwT5P9DO5d3-TaogwXn8_JLpXHZy_MKcovKJxQmFOUXRhbwssuiF1UkJ9XlJ23cH6cPu5R_cS4iRP0cfNXxP0P8hHwlQ&build-label=editors.sites-viewer-frontend_20260121.02_p2&imp-sid=CNKAz9H0r5IDFavizgAdUAcfKw&is-cached-offline=false"

Server-Timing

Other

cfEdge;dur=17,cfOrigin;dur=199

Recommendations

Enable compression (gzip/brotli) to improve performance