indexo.dev

bonescoffee.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 3342 ms crawled 2026-05-19

CA · 23.227.38.32 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Bones Coffee Company - Say Goodbye to Boring
Description
Discover 30+ bold flavored coffees at Bones Coffee. S'mores, maple bacon, seasonal favorites, and more. Small-batch roasted fresh. Find your new obsession.
Language
en
Canonical
https://www.bonescoffee.com/

Open Graph

url
https://www.bonescoffee.com/
title
Bones Coffee Company - Say Goodbye to Boring
site name
Bones Coffee Company
description
Discover 30+ bold flavored coffees at Bones Coffee. S'mores, maple bacon, seasonal favorites, and more. Small-batch roasted fresh. Find your new obsession.

Technology

CDN
Cloudflare
CMS
Shopify
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (27)
  • cdn.shopify.com×10
  • api.config-security.com×2
  • cdn-4.convertexperiments.com×2
  • conf.config-security.com×2
  • fonts.googleapis.com×2
  • shop.app×2
  • www.googletagmanager.com×2
  • app.consentmo.com×1
  • app.viralsweep.com×1
  • cdn-static.okendo.io×1
  • cdn-widgetsrepository.yotpo.com×1
  • cdn.consentmo.com×1
  • cdn.intelligems.io×1
  • cdn.rebuyengine.com×1
  • cdn.skio.com×1
  • code.jquery.com×1
  • d3hw6dc1ow8pp2.cloudfront.net×1
  • fonts.gstatic.com×1
  • limits.minmaxify.com×1
  • monorail-edge.shopifysvc.com×1
  • pixel.marathondataco.com×1
  • public.getfondue.com×1
  • static.klaviyo.com×1
  • storage.consentmo.com×1
  • surveys.okendo.io×1
  • triplewhale-pixel.web.app×1
  • workers.consentmo.com×1

Social

Contact

Address
79 Mid Cape Terrace, US

Registration

Registrar
GoDaddy.com, LLC
Created
2016-08-17
Expires
2028-08-17 820 days left
Updated
2023-01-04
Name servers
  • ns45.domaincontrol.com
  • ns46.domaincontrol.com

DNS records live

NS
  • ns45.domaincontrol.com
  • ns46.domaincontrol.com
MX
  • 0 bonescoffee-com.mail.protection.outlook.com
TXT
Show 6 TXT records
  • klaviyo-site-verification=KGTxFX
  • v=verifydomain MS=5822726
  • proxy-ssl.webflow.com
  • facebook-domain-verification=oqr93xxg09jhcm8imtqs5pfyd9yczz
  • include:mail.zendesk.com ~all
  • google-site-verification=DHdL2hFLNbMGLn03P7HbX7YB7OmyaLa6sYlxwn9RhgA

Email authentication strong

SPF
v=spf1 include:_spf.bonescoffee_com._d.easydmarc.pro ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;rua=mailto:ee2a111fee@rua.easydmarc.us;ruf=mailto:ee2a111fee@ruf.easydmarc.us;fo=1;
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyopEKFhJ2KC1kyWdpfENRmYlQ4NRA6q/PCEmHRhvABa3G1jfbrzErBWCze5LF3KvYRXa3OZDF46JA…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUD7zUnNoOmgvXJBbB/Jm8U4B1IPRPl5l16tqObZXx0U4V4rifMCe2QCpag2G5vN57ZaDrfF7Gv3u1…
selectors probed

Certificate (current)

E8
from 2026-03-31 to 2026-06-29
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.bonescoffee.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
block-all-mixed-content; frame-ancestors *; upgrade-insecure-requests;
strict-transport-security
max-age=7889238

Links to (8)

Linked from (1)