indexo.dev

helvetiq.com

.com crawl

First seen 2026-05-09 · Last seen 2026-05-18 · ok HTTP/1.1 200 2851 ms crawled 2026-05-15

DE · 94.130.105.5 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
HELVETIQ - A life of ideas
Description
International publisher of books and games based in Switzerland. Inspired by the magic of play, the beauty of print and the bliss of good design.
Language
en

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (7)
  • www.googletagmanager.com×2
  • cdn-images.mailchimp.com×1
  • chimpstatic.com×1
  • fonts.googleapis.com×1
  • js-eu1.hs-scripts.com×1
  • maxcdn.bootstrapcdn.com×1
  • www.facebook.com×1

Social

Contact

Email

Registration

Registrar
Gandi SAS
Created
2008-02-26
Expires
2028-02-26 648 days left
Updated
2025-12-29
Name servers
  • ns-122-c.gandi.net
  • ns-188-a.gandi.net
  • ns-6-b.gandi.net

DNS records live

NS
  • ns-122-c.gandi.net
  • ns-188-a.gandi.net
  • ns-6-b.gandi.net
MX
  • 1 aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
TXT
  • google-site-verification=OFioeblTkW9ZYKs9D2t7nkAjiRa28k0c2EhByBc7zP8

Email authentication weak

SPF
v=spf1 ip4:138.201.199.16/32 include:_spf.google.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-11 to 2026-08-09
Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://helvetiq.com/intl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src *.fontawesome.com maxcdn.bootstrapcdn.com *.gstatic.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com pay.datatrans.com pay.sandbox.datatrans.com bergli.us12.list-manage.com https://seo.mageplaza.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net www.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.card
strict-transport-security
max-age=31536000

Links to (7)

Linked from (2)