coachbaseapp.com
HTML metadata
Technology
- CDN
- Cloudflare
Third-party hosts loaded (2)
- cdn.jsdelivr.net×10
- esm.sh×5
Registration
- Registrar
- Porkbun LLC
- Created
- 2026-02-23
- Expires
- 2027-02-23 278 days left
- Updated
- 2026-02-24
- Name servers
-
- diana.ns.cloudflare.com
- phil.ns.cloudflare.com
DNS records live
- NS
-
- diana.ns.cloudflare.com
- phil.ns.cloudflare.com
- MX
-
- 10 in1-smtp.messagingengine.com
- 20 in2-smtp.messagingengine.com
- TXT
-
zoom-domain-verification=ZOOM_verify_f806e7623de049488cecc7710e6dd047
Email authentication strong
- SPF
-
v=spf1 include:spf.messagingengine.com ?allneutral (?all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
E8
Expires in 64 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; font-src 'self' data: fonts.gstatic.com; img-src 'self' https: data:; object-src 'none'; script-src 'self' cdn.jsdelivr.net esm.sh us-assets.i.posthog.com connect-js.stripe.com js.stripe.com unpkg.com 'nonce-cqUh5kZR/lYQVtGoMzWqqQ=='; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdn.jsdelivr.net; connect-src 'self' us.i.posthog.com us.posthog.com esm.sh *.daily.co *.wss.daily.co api.stripe.com *.stripe.com; frame-src 'self' js.stripe.com checkout.stripe.com connect-js.stripe.com *.daily.co- strict-transport-security
max-age=63072000; includeSubDomains