Content-Encoding | gzip |
Content-Security-Policy | default-src 'none'; script-src 'self' 'unsafe-eval' https: maps.googleapis.com maps.gstatic.com mts0.googleapis.com mts1.googleapis.com assets.zendesk.com *.marketo.com *.marketo.net *.mktoresp.com ajax.googleapis.com *.google-analytics.com 'sha256-ZfRB21G+orBZZSVxc9XY02GPAGiTKfo+4bxSVr6VRso='; object-src 'none'; style-src 'self' 'unsafe-inline' https: fonts.googleapis.com fonts.gstatic.com; img-src 'self' https: csi.gstatic.com i.imgur.com maps.googleapis.com maps.gstatic.com mts0.googleapis.com mts1.googleapis.com *.google-analytics.com 'sha256-ZfRB21G+orBZZSVxc9XY02GPAGiTKfo+4bxSVr6VRso='; media-src 'self' https: ; frame-ancestors 'none'; font-src 'self' https: fonts.googleapis.com fonts.gstatic.com data:; connect-src 'self' https: *.srcclr.com *.srcclr.io *.sourceclear.com *.sourceclear.io api.github.com ajax.googleapis.com *.marketo.com *.marketo.net *.mktoresp.com; |
Content-Type | text/html |
ETag | W/"57e57ba8-a4c7" |
Last-Modified | Fri, 23 Sep 2016 18:59:52 GMT |
Public-Key-Pins | pin-sha256="kFU5/c+68qybwh1tEjbyyFWl8D8UPtbLLtNDyG/9Qz4="; max-age=5184000; includeSubDomains; |
Server | nginx |
Strict-Transport-Security | max-age=31536001; |
X-Content-Type-Options | nosniff |
X-Download-Options | noopen |
X-Frame-Options | sameorigin |
X-XSS-Protection | 1; mode=block |
Connection | keep-alive |