indexo.dev

democracylab.org

.org crawl

First seen 2026-04-25 · Last seen 2026-05-16 · ok HTTP/1.1 200 946 ms crawled 2026-05-18

US · 13.248.131.213 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
DemocracyLab
Description
Everyone has something to contribute to the technical solutions society needs. Volunteer today to connect with other professionals volunteering their time.
Language
en
Canonical
https://www.democracylab.org/

Technology

Server
Heroku
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Font Awesome
  • Google Fonts

Third-party hosts loaded (5)

  • fonts.googleapis.com×2
  • use.fontawesome.com×2
  • www.googletagmanager.com×2
  • d1agxr2dqkgkuy.cloudfront.net×1
  • fonts.gstatic.com×1

Contact

Address
Seattle, USA

Registration

Registrar
Tucows Domains Inc.
Created
2007-05-21
Expires
2027-05-21 366 days left
Updated
2026-05-06
Name servers
  • pdns1.registrar-servers.com
  • pdns2.registrar-servers.com

DNS records live

NS
  • pdns1.registrar-servers.com
  • pdns2.registrar-servers.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • google-site-verification=EGPYufPqTjn_IKeLWB1-9fxaQv0QvZw21cQHJEdoDgA
  • google-site-verification=YiNJBDl4Nol4X5fkX1_Mc09CnxLmHwLsEVVBK1YQ1jI
  • brevo-code:5d7a06010bf083514008e32cfca93d6c

Email authentication partial

SPF
v=spf1 a mx include:_spf.google.com include:sendgrid.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBaTM/r290FUHtcnk2VudHLqMtk79CL/nOb8sTjig9U89vNPeEXn5XqiaTjFf26ywT6p3WJcs5JtAMKHdr…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZk3h06wxayRfNmOzxCvx+vSW39AG3uaA6xHkHJnjjSLRKycFNCiAxcr9iWhO7jI9BvW+TVHM0tDz0ROSD3qvbNw…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

R12
from 2026-05-07 to 2026-08-05
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://democracylab.org/

present
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-content-type-options
nosniff
content-security-policy
default-src 'none'; style-src 'self' 'unsafe-inline' fonts.googleapis.com *.fontawesome.com; img-src 'self' data: blob: 'unsafe-eval' *.cloudfront.net *.amazonaws.com heapanalytics.com/ *.google.com *.google-analytics.com *.googletagmanager.com *.paypal.com *.paypalobjects.com *.githubusercontent.com; font-src 'self' fonts.googleapis.com fonts.gstatic.com use.fontawesome.com; connect-src 'self' https://democracylab-marlok.s3.amazonaws.com *.qiqochat.com qiqocableeu.herokuapp.com *.google-analytics.com *.nr-data.net *.hereapi.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://blog.democracylab.org; frame-src qiqochat.com *.qiqochat.com *.google.com *.youtube.com democracylab.org democracy-lab-prod-mirror.herokuapp.com democracy-lab-dev.herokuapp.com democracy-lab-staging.herokuapp.com *.doubleclick.net *.hotjar.com opensandiego.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.heapanalytics.com/ *.google.com/ *.gstatic.com *.googletagmanager.com *.google-analyt
cross-origin-opener-policy
same-origin

Linked from (2)