cmentarz.app

.app crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 2566 ms crawled 2026-06-01

PL · 185.251.199.112 · AS48992 Archidiecezja Lubelska

Reputation 100/100

Classifying

HTML metadata

Title: Lista cmentarzy | cmentarz.app
Description: Przeglądaj listę wszystkich cmentarzy dostępnych w systemie.
Language: pl
Canonical: https://cmentarz.app/cemeteries

Open Graph

url: https://cmentarz.app/cemeteries
title: Lista cmentarzy | cmentarz.app
locale: pl_PL
site name: Cmentarz.app
description: Przeglądaj listę wszystkich cmentarzy dostępnych w systemie.

Technology

JS framework: Angular 20.3.4

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×1
fonts.gstatic.com×1

DNS records live

NS

ns.kuria.lublin.pl
ns2.kuria.lublin.pl

MX

0 sg.mail.diecezja.lublin.pl

Verified for

Google

Email authentication strong

SPF

v=spf1 mx ip4:185.251.199.197 ip4:185.251.199.201 ip6:2001:678:ea0:10::ff -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:admin@diecezja.lublin.pl

policy: quarantine

DKIM

dkim: v=DKIM1; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/bwUCpt4PYbfzMCySjHvrLK5e0QyCB1jC9g7R1TgqZFG9S9QG7R8o/mCJYdp/gMahrDEDNG7HVEsqKjdGh2J0…

selectors probed

Certificate (current)

R12

from 2026-05-25 to 2026-08-23

Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://cmentarz.app/cemeteries

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com;script-src-attr 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;worker-src 'self' blob:;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https: blob:;connect-src 'self' https://www.google-analytics.com https://api.cmentarz.app https://geoserver.cmentarz.app https://gtm.cmentarz.app https://sentry.kg-infra.com;frame-src 'self';base-uri 'self';form-action 'self';frame-ancestors 'self';object-src 'none';upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin

Links to (2)

archidiecezjalubelska.pl×1
3fishers.com×1