gumloop.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 670 ms crawled 2026-05-18

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Gumloop | AI Automation Framework
Description: The no-code platform to build and host AI-powered business automations.

Open Graph

url: https://www.gumloop.com
title: Gumloop | AI Automation Framework
site name: Gumloop | AI Automation Framework
description: The no-code platform to build and host AI-powered business automations.

Technology

CDN: Vercel
CMS: Next.js

Social

Registration

Registrar

NameCheap, Inc.

Created

2024-04-25

Expires

2027-04-25 340 days left

Updated

2026-03-26

Name servers

dns1.registrar-servers.com
dns2.registrar-servers.com

DNS records live

NS

dns1.registrar-servers.com
dns2.registrar-servers.com

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 11 TXT records

google-site-verification=9-A8SLN6IgvzpmKx06GOzjxQ36YSBxOgZ3GZSn-_zxk
google-site-verification=Oyq-8Cq8yxFZt8L3FvuNJA0ywrLO-UxYog5l8FGem1I
google-site-verification=gVtsuJv4cuNUAoPe152dwyQoH-bwW-3RnKbKuP7kkCs
zoom-domain-verification=ZOOM_verify_d94b4f1c5f884073853e597ccc92018d
hubspot-developer-verification=YTRmMjBjY2YtYTM2Ny00YzJhLWE1MzktNGYzMDhlMzUxNWVl
atlassian-domain-verification=G1q1ZE1dJuc8VXuUUPa7prkrS4JGLZWw7jcj3kzVdW0RoCaFPQga2BsHDThuL3oW
MS=ms36049976
MS=ms69489081
openai-domain-verification=dv-hr50QocblBNyIkMv8vZGgQiG
oneleet-domain-verification-ed1b5569-137d-4e5f-abed-b7e790acd387
slack-domain-verification=BjKcOhII1Q0Q5OEz9uEObywqgxTBh88MY1Jstoq1

Email authentication strong

SPF

v=spf1 include:_spf.google.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:64fbab6193bb9@ag.dmarcly.com; ruf=mailto:64fbab6193bb9@fo.dmarcly.com; sp=none;

policy: reject (enforced) · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgWlNP6T6/AvfvuMXt52JvlLO7PqPspynWwgnCbm+7iAEqZ4fVCrLMGamyn+l/EWJKx9VoH4xMM1dJ+…

selectors probed

Certificate (current)

R13

from 2026-03-29 to 2026-06-27

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gumloop.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *; script-src 'self' 'unsafe-inline' 'unsafe-eval' *; connect-src 'self' blob: *; style-src 'self' 'unsafe-inline' *; img-src 'self' data: blob: *; font-src 'self' data: *; frame-src 'self' blob: *; worker-src 'self' blob:; frame-ancestors 'none';
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: same-site