Server | Apache |
X-Frame-Options | DENY |
Content-Security-Policy | default-src 'self' http://*.bugherd.com https://*.bugherd.com https://bugherd-attachments.s3.amazonaws.com wss://ws.pusherapp.com http://*.addthis.com https://*.addthis.com http://*.fontawesome.com https://*.fontawesome.com http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.hotjar.com https://*.hotjar.com ws://*.hotjar.com http://*.hotjar.com:12080 http://*.userlike.com https://*.userlike.com ws://*.userlike.com wss://*.userlike.com; font-src 'self' data: http://themes.googleusercontent.com https://themes.googleusercontent.com http://fonts.googleapis.com https://fonts.googleapis.com http://fonts.gstatic.com https://fonts.gstatic.com http://hello.myfonts.net https://hello.myfonts.net http://*.bugherd.com https://*.bugherd.com http://*.fontawesome.com https://*.fontawesome.com http://*.cloudfront.net https://*.cloudfront.net; style-src 'self' 'unsafe-inline' http://fonts.googleapis.com https://fonts.googleapis.com http://*.bugherd.com https://*.bugherd.com http://*.cloudfront.net https://*.cloudfront.net http://*.typekit.net https://*.typekit.net http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.fontawesome.com https://*.fontawesome.com http://*.googleapis.com https://*.googleapis.com; child-src 'self' http://www.youtube.com https://www.youtube.com http://*.vimeo.com https://*.vimeo.com http://*.addthis.com https://*.addthis.com http://*.google.com https://*.google.com https://*.hotjar.com http://*.hotjar.com; img-src 'self' data: *; media-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' http://www.google-analytics.com https://www.google-analytics.com http://*.googleapis.com https://*.googleapis.com http://*.google.com https://*.google.com http://maps.gstatic.com https://maps.gstatic.com http://*.bugherd.com https://*.bugherd.com http://js.pusher.com https://js.pusher.com http://*.cloudfront.net https://*.cloudfront.net https://www.youtube.com https://s.ytimg.com http://*.addthis.com https://*.addthis.com http://*.addthisedge.com https://*.addthisedge.com http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.fontawesome.com https://*.fontawesome.com http://*.jquery.com https://*.jquery.com http://*.hotjar.com https://*.hotjar.com http://*.facebook.net https://*.facebook.net http://*.jsdelivr.net https://*.jsdelivr.net http://*.amazonaws.com https://*.amazonaws.com http://*.userlike.com https://*.userlike.com |
X-Content-Security-Policy | default-src 'self' http://*.bugherd.com https://*.bugherd.com https://bugherd-attachments.s3.amazonaws.com wss://ws.pusherapp.com http://*.addthis.com https://*.addthis.com http://*.fontawesome.com https://*.fontawesome.com http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.hotjar.com https://*.hotjar.com ws://*.hotjar.com http://*.hotjar.com:12080 http://*.userlike.com https://*.userlike.com ws://*.userlike.com wss://*.userlike.com; font-src 'self' data: http://themes.googleusercontent.com https://themes.googleusercontent.com http://fonts.googleapis.com https://fonts.googleapis.com http://fonts.gstatic.com https://fonts.gstatic.com http://hello.myfonts.net https://hello.myfonts.net http://*.bugherd.com https://*.bugherd.com http://*.fontawesome.com https://*.fontawesome.com http://*.cloudfront.net https://*.cloudfront.net; style-src 'self' 'unsafe-inline' http://fonts.googleapis.com https://fonts.googleapis.com http://*.bugherd.com https://*.bugherd.com http://*.cloudfront.net https://*.cloudfront.net http://*.typekit.net https://*.typekit.net http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.fontawesome.com https://*.fontawesome.com http://*.googleapis.com https://*.googleapis.com; child-src 'self' http://www.youtube.com https://www.youtube.com http://*.vimeo.com https://*.vimeo.com http://*.addthis.com https://*.addthis.com http://*.google.com https://*.google.com https://*.hotjar.com http://*.hotjar.com; img-src 'self' data: *; media-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' http://www.google-analytics.com https://www.google-analytics.com http://*.googleapis.com https://*.googleapis.com http://*.google.com https://*.google.com http://maps.gstatic.com https://maps.gstatic.com http://*.bugherd.com https://*.bugherd.com http://js.pusher.com https://js.pusher.com http://*.cloudfront.net https://*.cloudfront.net https://www.youtube.com https://s.ytimg.com http://*.addthis.com https://*.addthis.com http://*.addthisedge.com https://*.addthisedge.com http://*.rollingpin.at https://*.rollingpin.at http://*.rollingpin.eu https://*.rollingpin.eu http://*.fontawesome.com https://*.fontawesome.com http://*.jquery.com https://*.jquery.com http://*.hotjar.com https://*.hotjar.com http://*.facebook.net https://*.facebook.net http://*.jsdelivr.net https://*.jsdelivr.net http://*.amazonaws.com https://*.amazonaws.com http://*.userlike.com https://*.userlike.com |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | no-store, no-cache, must-revalidate |
Pragma | no-cache |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-UA-Compatible | IE=edge |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=UTF-8 |