Open
Cached
·
just now
92/100
SECURITY SCORE
Certificate Information
Subject
CN=cloudbees.com
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M01
Valid From
October 02, 2025
Valid Until
October 31, 2026
292 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C3:D6:2B:7F:0D:0C:49:55:B5:8A:9F:83:11:F2:98:9C:B1:19:AC:23:67:E5:2F:8E:86:03:F5:00:0E:75:EB:59
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains
Content-Security-Policy
Basic
default-src; script-src; style-src; +5 more
default-src 'self' https: blob:;script-src 'self' https: 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://build.cloudbees.com;font-src 'self' https: data:;img-src 'self' https: data:;frame-ancestors 'self' https://*.contentful.com;object-src 'none';upgrade-insecure-requests
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
54 domains
cloudbees.com
*.cloudbees.com
*.cbu.cloudbees.com
cloudbees.ai
*.cloudbees.ai
cloudbeesconnect.com
www.cloudbeesconnect.com
cloudbeesstatus.com
cloudbeesstatus.io
*.codeship.com
codeship.io
*.codeship.io
devops-world.com
www.devops-world.com
devops-world.io
www.devops-world.io
devops-world.net
www.devops-world.net
devops-world.org
www.devops-world.org
devopsworld.com
devopsworld.net
www.devopsworld.net
devoptics.com
electric-cloud.com
*.electric-cloud.com
guide-rails.io
www.guide-rails.io
jenkins-support.com
www.jenkins-support.com
jenkins-support.io
www.jenkins-support.io
jenkins-world.com
www.jenkins-world.com
jenkins-world.org
www.jenkins-world.org
jenkinssupport.io
www.jenkinssupport.io
jenkinsworld.com
www.jenkinsworld.com
jenkinsworld.org
www.jenkinsworld.org
releaseiq.io
*.releaseiq.io
rollout.io
*.rollout.io
support-my-jenkins.com
www.support-my-jenkins.com
support-my-jenkins.io
www.support-my-jenkins.io
supportmyjenkins.com
www.supportmyjenkins.com
supportmyjenkins.io
www.supportmyjenkins.io
Other domains in certificate