indexo.dev

compasspathways.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-08 · ok HTTP/1.1 200 386 ms crawled 2026-05-06

GB · 213.171.208.113 · AS8560 IONOS SE

Reputation 97/100 dmarc monitor-only

Classifying

HTML metadata

Title
Compass Pathways | Biotechnology Company
Description
Compass is a biotechnology company dedicated to accelerating patient access and experience to evidence-based innovation in mental health care.
Language
en
Generator
WP Rocket 3.21.0
Canonical
https://compasspathways.com/

Open Graph

url
https://compasspathways.com/
title
Compass Pathways | Biotechnology Company
locale
en_US
site name
Compass Pathways
description
Compass is a biotechnology company dedicated to accelerating patient access and experience to evidence-based innovation in mental health care.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • Vimeo Embed
Third-party hosts loaded (7)
  • www.googletagmanager.com×3
  • fonts.googleapis.com×2
  • www.google-analytics.com×2
  • app.greenweb.org×1
  • cdnjs.cloudflare.com×1
  • player.vimeo.com×1
  • static.addtoany.com×1

Social

Contact

Address
1st floor, Eastbourne Terrace, W2 6LG, Paddington, London, United Kingdom

Registration

Registrar
Amazon Registrar, Inc.
Created
2014-11-16
Expires
2026-11-16 180 days left
Updated
2025-10-12
Name servers
  • ns-1479.awsdns-56.org
  • ns-1564.awsdns-03.co.uk
  • ns-415.awsdns-51.com
  • ns-733.awsdns-27.net

DNS records live

NS
  • ns-1479.awsdns-56.org
  • ns-1564.awsdns-03.co.uk
  • ns-415.awsdns-51.com
  • ns-733.awsdns-27.net
MX
  • 10 compasspathways-com.mail.protection.outlook.com
TXT
Show 7 TXT records
  • miro-verification=aea969037534c38afa12e0471048b2bbcf043034
  • onetrust-domain-verification=a9e179b958804fdfb8bf696761d9d390
  • ppe-c9af6421abd0e8bbf402
  • MS=ms66325387
  • apple-domain-verification=hNiWLMf9U0GS9hQm
  • bw=bjPa1ML4exEXPN5NhtPvtA7qeT1HWn0QM9OtCekR8IGp
  • docusign=5822990a-b048-4796-8e25-39d841c41a91

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net include:spf.UK.exclaimer.net -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC2Fie/pNRFNMJUSC8kT3TT+80JspBPu4oL2r9M5TmWq9qzEg7PN0fW7tMQcj6XJq1f8GUykIKRu0XbrGNph8…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed

Certificate (current)

R12
from 2026-04-16 to 2026-07-15
Expires in 57 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://compasspathways.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin, no-referrer-when-downgrade
permissions-policy
autoplay=(), geolocation=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' data: gap: https://artery.blob.core.windows.net; script-src-elem * 'unsafe-eval' 'self' 'unsafe-inline' data: ; style-src 'unsafe-inline' 'self' https://cdnjs.cloudflare.com https://fonts.googleapis.com; img-src * 'self' data: https://compasspathways.com https://*.compasspathways.com; font-src 'self' data: https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src * 'self' ; frame-src 'self' https://job-boards.eu.greenhouse.io https://compasspathways.com https://compasspathways.gcs-web.com https://boards.eu.greenhouse.io/ https://static.addtoany.com/ https://w.soundcloud.com https://td.doubleclick.net/ https://player.vimeo.com; object-src 'none'; script-src 'unsafe-inline' 'unsafe-eval' ;
strict-transport-security
max-age=15768000; includeSubDomains

Links to (6)

Linked from (3)