heroku.com
HTTP check results
HTTP Response Headers
server
nginx
date
Fri, 27 Mar 2026 00:02:30 GMT
content-type
text/html; charset=UTF-8
location
https://www.heroku.com/
host-header
a9130478a60e5f9135f765b23f26593b
x-xss-protection
1; mode=block
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src https: data: wss://*.hotjar.com wss://*.crazyegg.com *.crazyegg.com wss://*.zohopublic.com; script-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; style-src https: data: 'unsafe-inline'; img-src data: https: 'unsafe-inline'; font-src data: https: 'unsafe-inline'; frame-ancestors 'self'; object-src 'self' blob; upgrade-insecure-requests; media-src 'self' blob: data: https:;
referrer-policy
no-referrer-when-downgrade
permissions-policy
autoplay=(), camera=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), publickey-credentials-get=(), usb=(), browsing-topics=()
x-redirect-by
WordPress
x-rq
arn1 0 40 9980
cache-control
max-age=3600
x-cache
HIT
strict-transport-security
max-age=31536000
Security Headers
strict-transport-security
content-security-policy
x-content-type-options
x-frame-options
x-xss-protection
referrer-policy
permissions-policy