indexo.dev

feedbackfirst.dev

.dev crawl

First seen 2026-05-01 · Last seen 2026-05-01 · ok HTTP/1.1 200 971 ms crawled 2026-05-08

FR · 195.35.48.246 · AS47583 Hostinger International Limited

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
FeedbackFirst: The community that rewards great feedback and boosts the best products.
Description
Leave structured feedback, earn credits, get visibility. FeedbackFirst is the maker community where quality feedback is rewarded and the best products rise to the top.
Language
en
Canonical
https://feedbackfirst.dev

Open Graph

url
https://feedbackfirst.dev
title
FeedbackFirst: The community that rewards great feedback and boosts the best products.
description
Leave structured feedback, earn credits, get visibility. FeedbackFirst is the maker community where quality feedback is rewarded and the best products rise to the top.

Technology

Server
nginx
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • fonts.googleapis.com×2
  • fixmyland.ing×1
  • fonts.gstatic.com×1
  • taap.it×1
  • www.googletagmanager.com×1

DNS records live

NS
  • ns1.dns-parking.com
  • ns2.dns-parking.com
MX
  • 10 mail.feedbackfirst.dev
TXT
  • google-site-verification=4A-ryIWPDy0k9PmeshaV-EittKiXndJrM6UPlU6VA0Q

Email authentication partial

SPF
v=spf1 mx a ip4:195.35.48.246 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@feedbackfirst.dev; adkim=s; aspf=s
policy: none (monitoring only)
DKIM
  • mail: v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9//1rbohpH4+/6Ytw8z9JbT0csjrEUke+wK9QxLnyMC/u9o3/FR7dRv84FWGuvxalDlZ…
selectors probed

Certificate (current)

E8
from 2026-05-05 to 2026-08-03
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://feedbackfirst.dev/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://taap.it; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https:; frame-src https:; frame-ancestors 'self'; base-uri 'self'; form-action 'self';

Linked from (1)