staging.csop.cirasync.com

Risk Score: 0

Last scanned: 2025-09-23 18:08:14 UTC • Duration: 12152ms • View Scan Details →

Total Scans

Missing

CSP Status

Security Headers

CSP Violations

Security Headers

Referrer-Policy

no-referrer

X-Frame-Options

SAMEORIGIN

X-XSS-Protection

1; mode=block

Permissions-Policy

geolocation=(self "https://staging.csop.cirasync.com"), microphone=()

X-Content-Type-Options

nosniff

Strict-Transport-Security

max-age=31536000; includeSubDomains; preload

Content Security Policy

Policy Source: header

default-src 'self' https://staging.csop.cirasync.com; script-src 'self' https://staging.csop.cirasync.com https://cdnjs.cloudflare.com https://ajax.googleapis.com 'unsafe-inline'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; frame-src https://www.youtube.com https://player.vimeo.com; connect-src 'self' https://staging.csop.cirasync.com https://api.intercom.io;

← Back to Results Scan Again