go-flow.ai

.ai crawl

First seen 2026-04-13 · Last seen 2026-05-02 · ok HTTP/1.1 200 916 ms crawled 2026-05-07

US · 34.107.173.221 · AS396982 Google LLC

Reputation 100/100

Classifying

HTML metadata

Title: Flow by Innovaccer | AI Revenue Cycle Automation
Description: Flow by Innovaccer uses AI agents to automate eligibility, prior auth, scribing, coding, claims, denials, and payments—transforming revenue operations.
Language: en-US
Canonical: https://go-flow.ai

Open Graph

title: Flow by Innovaccer | AI Revenue Cycle Automation
description: Flow by Innovaccer uses AI agents to automate eligibility, prior auth, scribing, coding, claims, denials, and payments—transforming revenue operations.

Technology

CDN: Cloudflare
Server: nginx

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (9)

cdn.prod.website-files.com×48
cdnjs.cloudflare.com×7
cdn.jsdelivr.net×2
fonts.googleapis.com×2
ajax.googleapis.com×1
d3e54v103j8qbb.cloudfront.net×1
fonts.gstatic.com×1
hubspotonwebflow.com×1
use.typekit.net×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2025-06-13

Expires

2027-06-13 388 days left

Updated

2025-06-18

Name servers

ns19.domaincontrol.com
ns20.domaincontrol.com

DNS records live

NS

ns19.domaincontrol.com
ns20.domaincontrol.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Google

Email authentication strong

SPF: v=spf1 include:dc-aa8e722993._spfm.go-flow.ai ~all
softfail (~all)
DMARC: v=DMARC1; p=reject; adkim=r; aspf=r; rua=mailto:dmarc_rua@onsecureserver.net;
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

WR3

from 2026-03-31 to 2026-06-29

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://go-flow.ai/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=(), geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';font-src * data:;
strict-transport-security: max-age=31536000; includeSubDomains; preload, max-age=31536000; includeSubDomains;

Links to (3)

Linked from (1)

innovaccer.com×2