HTTP Headers Analysis for https://www.puppet.com

Detected Technologies from Headers

See all in URL Inspect 51

AWS CloudFront

Google AdSense

Microsoft 365

Google Tag Manager Bing G2

AppNexus (Xandr)

OpenStreetMap Capterra

Google DoubleClick

Google Analytics Microsoft Advertising

Google Conversion Tracking

Trendemon 6sense

New Relic

Google Static File Front End Captivate

Varnish

Google API JS Client

Google Fonts

Wistia

Twitter

Cloudflare Web Analytics

Pantheon

ZoomInfo

HubSpot Analytics

unpkg

Google Search

Nginx

Adobe Marketo

Qualified

Storylane

Facebook

Amazon S3

OneTrust

GitHub

Adobe Fonts (Typekit)

AddToAny

Storyblok

Cloudflare CDNJS Simplecast

Vimeo

HubSpot Highcharts

YouTube Microsoft Clarity

Sentry

jsDelivr

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000, max-age=300

Content-Security-Policy

Basic

default-src; connect-src; font-src; +14 more Analyze

Content-Security-Policy-Report-Only

Basic

default-src; connect-src; font-src; +14 more Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Vary

Performance

Accept-Encoding, Cookie, Cookie, Cookie

accept-ranges: bytes
connection: close
vary: Accept-Encoding, Cookie, Cookie, Cookie

Caching Headers

Age

Caching

15952

Cache-Control

Caching

max-age=86400, public

Etag

Caching

W/"1771428558"

Expires

Caching

Sun, 19 Nov 1978 05:00:00 GMT

Last-Modified

Caching

Wed, 18 Feb 2026 15:29:18 GMT

age: 15952
cache-control: max-age=86400, public
etag: W/"1771428558"
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Wed, 18 Feb 2026 15:29:18 GMT

Content Headers

Content-Language

Content

en

Content-Length

Content

115113

Content-Type

Content

text/html; charset=UTF-8

content-language: en
content-length: 115113
content-type: text/html; charset=UTF-8

Server Headers

Server

nginx

server: nginx

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date

Other

Wed, 18 Feb 2026 19:55:11 GMT

Link

Other

URL /styles/node/1/6483/backgrounds.css

rel=stylesheet

Via

Other

1.1 varnish, 1.1 varnish, 1.1 varnish, 1.1 varnish

X-Cache

Other

HIT, MISS, MISS, MISS

X-Cache-Hits

Other

25, 0, 0, 0

X-Pantheon-Styx-Hostname

Other

styx-us-b-5d6dddb5b4-s4qcn

X-Served-By

Other

cache-chi-klot8100073-CHI, cache-ewr-kewr1740087-EWR, cache-ewr-kewr1740030-EWR, cache-ewr-kewr1740030-EWR

X-Styx-Req-Id

Other

974655e7-0cde-11f1-895c-a2e87d456932

X-Timer

Other

S1771444511.013889,VS0,VE35

date: Wed, 18 Feb 2026 19:55:11 GMT
link: </styles/node/1/6483/backgrounds.css>; rel="stylesheet"
via: 1.1 varnish, 1.1 varnish, 1.1 varnish, 1.1 varnish
x-cache: HIT, MISS, MISS, MISS
x-cache-hits: 25, 0, 0, 0
x-pantheon-styx-hostname: styx-us-b-5d6dddb5b4-s4qcn
x-served-by: cache-chi-klot8100073-CHI, cache-ewr-kewr1740087-EWR, cache-ewr-kewr1740030-EWR, cache-ewr-kewr1740030-EWR
x-styx-req-id: 974655e7-0cde-11f1-895c-a2e87d456932
x-timer: S1771444511.013889,VS0,VE35

Recommendations

Enable compression (gzip/brotli) to improve performance