finishedgoods.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-16 · ok HTTP/1.1 200 4128 ms crawled 2026-05-14

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Custom Cannabis Vape Hardware & Packaging | Finished Goods
Description: Custom-tuned vaporizer hardware that eliminates clogs. We tune every vape to your oil's viscosity and heat profile.
Language: en
Canonical: https://www.finishedgoods.com

Open Graph

url: https://finishedgoods.com
title: Custom Cannabis Vape Hardware & Packaging | Finished Goods
site name: Finished Goods
description: Custom-tuned vaporizer hardware that eliminates clogs. We tune every vape to your oil's viscosity and heat profile.

Technology

CDN: Vercel
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Contact

Email

info@finishedgoods.com

Phone

8182330059

Address

Los Angeles, CA, US

Registration

Registrar

GoDaddy.com, LLC

Created

1999-12-11

Expires

2026-12-11 205 days left

Updated

2025-12-12

Name servers

ns45.domaincontrol.com
ns46.domaincontrol.com

DNS records live

NS

ns45.domaincontrol.com
ns46.domaincontrol.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=0pqnePxBMjFYx8X89BDB-WAtYR58Zc9rd0AdPEYfqOc
google-site-verification=w7krw7vJhU06ZnsCFLdMEcDG2Ey0AS-oQmxficzCGQ4

Email authentication partial

SPF

v=spf1 include:dc-aa8e722993._spfm.finishedgoods.com ~all

softfail (~all)

DMARC

v=DMARC1;p=none;sp=none;pct=100;rua=mailto:luke@finishedgoods.com;ruf=mailto:luke@finishedgoods.com;ri=86400;aspf=s;adkim=s;fo=1

policy: none (monitoring only) · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCXIwkmuDPFe/crpY1O1oiiIKFETAlAIilxspvwAFXa1sSRoSZf8LTYxYHf6lamjqxUT2IbAbi65pv1KN6b7d…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R12

from 2026-05-01 to 2026-07-30

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.finishedgoods.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: camera=(), microphone=(), geolocation=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://*.googletagmanager.com https://*.google-analytics.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https:; font-src 'self' data:; connect-src 'self' https://*.google-analytics.com https://*.googletagmanager.com https://*.analytics.google.com https://hooks.zapier.com https://*.supabase.co https://hebbkx1anhila5yf.public.blob.vercel-storage.com https://*.public.blob.vercel-storage.com; frame-ancestors 'none'; base-uri 'self'; form-action 'self' https://hooks.zapier.com; object-src 'none'; upgrade-insecure-requests
strict-transport-security: max-age=63072000; includeSubDomains; preload

Linked from (1)

beardbrospharms.com×1