indexo.dev

beinclusive.app

.app crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 787 ms crawled 2026-05-08

US · 208.97.186.84 · AS26347 New Dream Network, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Manual accessibility audit software - Be Inclusive
Description
Helping you define, track, and share digital accessibility audits. We make manual auditing easier to manage and share with teammates & clients.
Language
en
Canonical
https://beinclusive.app

Open Graph

url
https://beinclusive.app
title
Manual accessibility audit software - Be Inclusive
locale
en_US
site name
Be Inclusive
description
Be Inclusive is a web app that helps you define, track, and share digital accessibility audits.

Technology

Server
Apache
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×1
  • fonts.gstatic.com×1

Social

DNS records live

NS
  • ns1.dreamhost.com
  • ns2.dreamhost.com
  • ns3.dreamhost.com
MX
  • 0 smtp.google.com
TXT
  • google-site-verification=5IY46QGkhDaUji9Jo_QxrZF7ozxsUXHC8riw_6XUqgk
  • google-site-verification=SZWTwieqg7EV-V-D3tAVrku1LIWzVvz8Wh5AglESLYM

Email authentication weak

SPF
v=spf1 include:_spf.google.com include:vps22811.dreamhostps.com include:beinclusive.app ~all
softfail (~all)
DMARC
not published
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmquV0g7sqs7R3J1RlZC6xSPaQIepno8slynPW4Ry6oBj0kLC9IQQBv+uBsJVTNsqKl4FVUfubrC8as…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OfLDeb0STkw7zxW51al0FzrBxpFd0XbZToJce9+gSTVsiXEBBs1jmZMNtbEKQirGto4lx5ydLEIhcSJmp…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3bTjbFGyVXCGGL5GzuAyJaDsDq/YuAi9Jd5r613QghYj8SYMVCkBzFUQ5/R12cJaOBk6MzHUcytkl44Fmn4H7i4…
selectors probed

Certificate (current)

R13
from 2026-03-31 to 2026-06-29
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://beinclusive.app/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
font-src 'self' *.beinclusive.app *.walnutcreekcreative.com fonts.googleapis.com fonts.gstatic.com; img-src 'self' data: *.beinclusive.app *.walnutcreekcreative.com www.gravatar.com placeimg.com i.ytimg.com i0.wp.com/beinclusive.app; connect-src 'self' *.sentry.io *.beinclusive.app *.walnutcreekcreative.com api.websitecarbon.com; style-src 'unsafe-inline' 'self' *.beinclusive.app *.walnutcreekcreative.com fonts.googleapis.com; script-src-elem 'self' 'sha256-zN+nEW98jW0MuUSe1zFShEDYr5H0TwKhVSxdAOMl2Xk=' 'sha256-C6RupNDhM6e6ID1XnaWtWpVp74kRQhnZiGUKzlEqXLo=' 'sha256-sizfu3xEnzQxD0gkXCTSwf8zN1tP4eplj3cH5rzHW7k=' *.beinclusive.app *.walnutcreekcreative.com; frame-ancestors 'self' *.beinclusive.app *.walnutcreekcreative.com;
strict-transport-security
max-age=10886400; includeSubDomains; preload

Links to (3)

Linked from (1)