charmhub.io

HTML metadata

Title

Charmhub | The Open Operator Collection

Description

Universal operators for application lifecycle management on Linux, Windows and Kubernetes

Language

en

Canonical

https://charmhub.io/

Open Graph

url

https://charmhub.io

title

The Open Operator Collection

site name

Charmhub

description

Universal operators for application lifecycle management on Linux, Windows and Kubernetes

Technology

Server

nginx

CMS

Gatsby

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• assets.ubuntu.com×7
• res.cloudinary.com×1
• www.googletagmanager.com×1

Social

• github
• twitter
• youtube

DNS records live

NS

• ns1.canonical.com
• ns2.canonical.com
• ns3.canonical.com

MX

• 0

TXT

• google-site-verification=JYyvNQTcH3r07wPQq5iScplxjmA8Fzid-STLyvk47Jo

Email authentication strong

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;adkim=s;aspf=s;fo=1;rua=mailto:dmarc-rua-misc@admin.canonical.com

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

• default: v=DKIM1; p=
• google: v=DKIM1; p=
• selector1: v=DKIM1; p=
• selector2: v=DKIM1; p=
• k1: v=DKIM1; p=
• k2: v=DKIM1; p=
• mail: v=DKIM1; p=
• dkim: v=DKIM1; p=
• s1: v=DKIM1; p=
• s2: v=DKIM1; p=
• mxvault: v=DKIM1; p=
• smtpapi: v=DKIM1; p=

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://charmhub.io/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy
• cross-origin-opener-policy
• cross-origin-embedder-policy
• cross-origin-resource-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (5)

• ubuntu.com×6
• github.com×4
• twitter.com×4
• youtube.com×4
• canonical.com×1

Linked from (2)

• jujucharms.com×7
• canonical.com×4