autheo.com

HTML metadata

Title

Autheo | The Collective & Living OS

Description

Autheo is a Layer-0 Operating System with an integrated Layer-1 blockchain that unifies identity, compute, storage, developer tooling, and AI capabilities in one interoperable environment.

Language

en

Canonical

https://www.autheo.com

Translations

en
es
ko
zh

Feeds

Autheo Blog (JSON Feed) JSON Feed
Autheo Blog (Atom) Atom

Open Graph

url: https://www.autheo.com
title: Autheo | The Collective & Living OS
site name: Autheo
description: Autheo is a Layer-0 Operating System with an integrated Layer-1 blockchain that unifies identity, compute, storage, developer tooling, and AI capabilities in one interoperable environment.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Cloudflare Insights
Google Tag Manager

Third-party hosts loaded (3)

d32y5c5q9836ah.cloudfront.net×41
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

PDR Ltd. d/b/a PublicDomainRegistry.com

Created

2014-06-05

Expires

2030-06-05 1476 days left

Updated

2026-04-09

Name servers

craig.ns.cloudflare.com
tori.ns.cloudflare.com

DNS records live

NS

craig.ns.cloudflare.com
tori.ns.cloudflare.com

MX

10 mx.zoho.in
20 mx2.zoho.in
50 mx3.zoho.in

TXT

lunar-verification=d0e42dae-34b1-4908-afa0-39dd676209c8
"google-site-verification=KcPZtAYG4ceWt2qKNJz0q0S03rHOz7MJtSjeltsQwY8"

Verified for

Google

Email authentication strong

SPF: v=spf1 include:zohomail.in ~all
softfail (~all)
DMARC: v=DMARC1; p=quarantine; rua=mailto:admin@launchlegends.io; ruf=mailto:admin@launchlegends.io; sp=quarantine; adkim=r; aspf=r
policy: quarantine · sp=quarantine
DKIM: no key found at common selectors

Certificate (current)

E7

from 2026-04-09 to 2026-07-08

Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.autheo.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(), interest-cohort=(), payment=(), usb=(), accelerometer=(), gyroscope=(), magnetometer=(), ambient-light-sensor=(), screen-wake-lock=(), serial=(), bluetooth=(), idle-detection=(), display-capture=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'nonce-HSpSE05CyiClxLZg703tyQ==' 'strict-dynamic' https://client.autheo.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://cdn.sanity.io https://platform.twitter.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.sanity.io https://platform.twitter.com; font-src 'self' https://fonts.gstatic.com https://cdn.sanity.io; img-src 'self' data: https: blob: https://pbs.twimg.com; media-src 'self' https: blob:; frame-src https://client.autheo.com https://www.google.com https://cdn.sanity.io https://platform.twitter.com; connect-src 'self' https://client.autheo.com https://cdn.sanity.io https://apicdn.sanity.io https://*.api.sanity.io https://*.supabase.co wss://*.supabase.co https://a.nel.cloudflare.com https://www.google-analytics.com https://vitals.vercel-insights.com; object-src 'none'; base-uri 'self'; form-action 'self' https://client.autheo.com; frame-ancestors 'self'
strict-transport-security: max-age=0; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site

Links to (5)

Linked from (2)

autheofoundation.org×1
ethdenver.com×1