goconstruct.org

HTML metadata

Title: Construction is a career like no other
Description: There is a role in construction for everyone, whether you're good at maths and sciences, love woodwork or computers, or are great at organising projects.
Language: en
Canonical: https://www.goconstruct.org/

Open Graph

url: https://www.goconstruct.org/
title: Construction is a career like no other
site name: Go Construct
description: There is a role in construction for everyone, whether you're good at maths and sciences, love woodwork or computers, or are great at organising projects.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (3)

i.ytimg.com×6
cc.cdn.civiccomputing.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Mesh Digital Limited

Created

2015-04-28

Expires

2027-04-28 344 days left

Updated

2026-04-29

Name servers

nina.ns.cloudflare.com
peyton.ns.cloudflare.com

DNS records live

NS

nina.ns.cloudflare.com
peyton.ns.cloudflare.com

MX

1 goconstruct-org.mail.protection.outlook.com

TXT

Show 4 TXT records

MS=ms92674271
_9oibacpzmn410rfrxidlqeq6re6u96r
facebook-domain-verification=3xkuyi8gmdq4uc3o822uibre17ys5r
google-site-verification=1i1I-4-loVkIg_o7FsQQLJDHcvPoMO6DPs30sOSBh2A

Email authentication strong

SPF

v=spf1 mx a include:u1850277.wl.sendgrid.net include:spf.protection.outlook.com

no all qualifier

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@citb.co.uk

policy: reject (enforced)

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7Fvs/ZnlFc6eyXJXlhpnCZ+Cqh+Si8MmP2PlmDhH/cgZdolFZbf/PNIDlXFr6R77P/1tNJiZkC3ZAe6UM7F…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDasaT97SqCjMaUOQbajW0RW5rAnFYSjiUjgOXrdwm8ZI4Newy4rQQ5lkACdkIiO4455RR6bra7kXh7DUsPCi…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5eVLKGZH6H5IdxBf/NDY4U33kDH/StIiEEbl0N4kYIwzAFnSdDtp4OsX1w5YpV1+qaJkbxfBgsOQPFeT6w…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC0DiWuViwMwZbNKEJJB0V62CvEhf+1YkfoZiAuXQcbYYhH/uqS/UvUZ2aTTbiTG78T3/xFhqQoVFWKcQhliSL6S7…

selectors probed

Certificate (current)

WE1

from 2026-04-20 to 2026-07-19

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.goconstruct.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.browsealoud.com *.typography.com *.fonts.net cdn.jsdelivr.net jsdelivr.net c.disquscdn.com disqus.com translations.signapsesolutions.com; script-src 'unsafe-eval' 'unsafe-inline' 'report-sample' 'self' api.reciteme.com cdn.sitesearch360.com js.sitesearch360.com googleapis.com chatgpt.com shared-15-24-search.clients.uk.funnelback.com pagead2.googlesyndication.com ci.funnelback.co.uk *.browsealoud.com *.googleadservices.com stage-shared-15-24-search.clients.uk.funnelback.com *.hotjar.com *.doubleclick.net *.typography.com localhost:* *.fonts.net *.qualtrics.com *.quantcount.com google.com *.doubleclick.net guantcount.com *.snapchat.com script.hotjar.com secure.quantserve.com analytics.tiktok.com sc-static.net static.hotjar.com snap.licdn.com *.redditstatic.com translations.signapsesolutions.com js.monitor.azure.com disqus.com c.disquscdn.com *.clarity.ms c.bing.com emea3.recruitmentplatform.com s.ytimg.com www.youtube.com maps.googleapis.com unpkg.com apis.google.co
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: same-origin