indexo.dev

costa-coffee.cz

.cz crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 422 ms crawled 2026-05-30

FR · 37.58.225.219 · AS16347 ADISTA SAS

Reputation 100/100

Classifying

HTML metadata

Title
Costa Coffee
Description
Z nabídky Costa Coffee si vybere každý, ať už má jakékoliv kávové preference
Language
cs
Canonical
https://www.costa-coffee.cz/

Open Graph

url
https://www.costa-coffee.cz/
title
Costa Coffee
locale
cs_CZ
site name
Costa Coffee
description
Z nabídky Costa Coffee si vybere každý, ať už má jakékoliv kávové preference

Technology

CMS
WordPress

Third-party hosts loaded (1)

  • stats.query.cz×1

Social

Contact

Phone

DNS records live

NS
  • nsa.perf1.fr
  • nsb.perf1.com
  • nsc.perf1.com
MX
  • 10 mail.costa-coffee.cz
TXT
  • _0oyqhrla96fwwqy1q1atm0pkf2zub0a
  • 1f0rwty51cj0dpzcj1ww877d5d95647n

Email authentication strong

SPF
v=spf1 include:sparkpostmail.com ip4:80.188.202.97 ip4:81.91.86.7 ip4:217.198.123.26 ip4:103.232.173.104 ip4:103.73.172.29 -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; adkim=s; aspf=s; fo=1; rua=mailto:dmarc@lagardere-tr.com
policy: reject (enforced) · sp=reject
DKIM
  • mail: v=DKIM1;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7aZXRBDKPCE/fspb5cN0YCWlciBlWmLgT8dI3KqmfNEaCaqwtlqIj94mmyqaJ3hMqctwBg6fUNsNlC5+vvYQdJ…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-05-07 to 2026-11-22
Expires in 174 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.costa-coffee.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(self), display-capture=(), encrypted-media=(), fullscreen=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=(), interest-cohort=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; font-src 'self' data: https://s0.wp.com https://fonts.gstatic.com; script-src-elem 'self' 'unsafe-inline' data: https://stats.lagardere-tr.com https://translate.google.com https://translate.googleapis.com https://translate-pa.googleapis.com https://www.google.com https://secure.smartform.cz https://4w.smartform.cz https://maps.googleapis.com https://widget.packeta.com https://stats.query.cz; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://translate.google.com https://translate.googleapis.com https://translate-pa.googleapis.com https://www.google.com https://secure.smartform.cz https://4w.smartform.cz https://maps.googleapis.com https://widget.packeta.com https://stats.query.cz; style-src 'self' 'unsafe-inline' https://www.gstatic.com https://secure.smartform.cz https://fonts.googleapis.com https://ajax.googleapis.com; object-src 'none'; base-uri 'none'; img-src 'self' data: https: http://translate.google.com; form-action 'self'; connect-src
strict-transport-security
max-age=63072000;includeSubDomains;preload

Links to (5)

Linked from (1)