Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
Referrer-Policy | no-referrer, strict-origin-when-cross-origin |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
Expect-CT | max-age=3600; enforce; report-uri='https://cambier.report-uri.io/r/default/ct/enforce'; |
Expect-Staple | max-age=3600; enforce; report-uri='https://cambier.report-uri.io/r/default/staple/enforce'; |
Content-Security-Policy | default-src 'self' ; base-uri 'self' ; child-src 'self' https://buttons.github.io https://app.powerbi.com/ https://fncd.net/embed/ https://www.youtube.com/embed/; connect-src 'self' https://ajax.cloudflare.com/ https://ajax.googleapis.com/ https://fonts.googleapis.com/ https://amp.cloudflare.com/ https://discovery.amp.cloudflare.com/ https://www.google-analytics.com/ https://api.github.com/ https://www.embedplus.com/ https://*.gstatic.com/ https://www.youtube.com/ https://secure.gravatar.com/ https://blog.cloudflare.com/ https://cdn2.nextinpact.com/ https://korben.info/ https://yoast.com/ https://cdn.polyfill.io/ https://s.ytimg.com/ https://s.w.org/ https://buttons.github.io/ https://cdn.polyfill.io/ ; font-src 'self' data: https://fonts.gstatic.com/ https://github.com/google/fonts/blob/master/apache/ https://netdna.bootstrapcdn.com/ https://sxt.cdn.skype.com/assets/fonts/ https://themes.googleusercontent.com/; form-action 'self' ; frame-ancestors 'self' ; frame-src 'self' https://buttons.github.io https://app.powerbi.com/ https://fncd.net/embed/ https://www.youtube.com/embed/; img-src 'self' data: https://ajax.googleapis.com/ https://www.google-analytics.com/ https://amp.cloudflare.com/ https://secure.gravatar.com/ https://*.gstatic.com/ https://blog.cloudflare.com/ https://cdn2.nextinpact.com/ https://korben.info/ https://s.w.org/ https://ps.w.org/; manifest-src 'self' ; media-src 'self' ; object-src 'self' ; report-uri https://cambier.report-uri.com/r/d/csp/enforce ; script-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: https://ajax.cloudflare.com/ https://ajax.googleapis.com/ https://www.google-analytics.com/ https://amp.cloudflare.com/ https://cdn.ampproject.org/ https://www.gstatic.com/ https://buttons.github.io/ https://cdn.polyfill.io/ https://s.ytimg.com/ https://www.embedplus.com/ https://www.youtube.com/ ; style-src 'self' 'unsafe-inline' blob: https://ajax.googleapis.com/ https://amp.cloudflare.com/ https://fonts.googleapis.com/ https://buttons.github.io/ ; upgrade-insecure-requests ; worker-src 'self' blob ; |
CF-Cache-Status | MISS |
Server | cloudflare |
CF-RAY | 3f55784e0b7a3f95-YUL |
Content-Encoding | gzip |