impossiblefoods.com

HTML metadata

Title

Impossible Foods

Description

Our mission is to make delicious meat that’s packed with nutrients, better for the planet, and way better for animals.

Language

en-US

Canonical

https://impossiblefoods.com

Translations

de
de-de
en-ae
en-au
en-ca
en-gb
en-hk
en-nz
en-sg
fr-ca
nl
nl-nl
zh-hant-hk

Open Graph

url: https://impossiblefoods.com
title: Impossible Foods
site name: Home page | Impossible Foods
description: Our mission is to make delicious meat that’s packed with nutrients, better for the planet, and way better for animals.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Google Tag Manager

Cookie consent

Osano

Third-party hosts loaded (7)

images.ctfassets.net×54
downloads.ctfassets.net×2
ss.click2cart.com×2
cmp.osano.com×1
s3-us-west-2.amazonaws.com×1
s3.us-west-2.amazonaws.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Squarespace Domains II LLC

Created

2013-05-23

Expires

2027-05-23 368 days left

Updated

2026-05-09

Name servers

ashley.ns.cloudflare.com
stan.ns.cloudflare.com

DNS records live

NS

ashley.ns.cloudflare.com
stan.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 6 TXT records

hubspot-domain-verification=ODAzYmVlOGQtZmE0ZC00NmZhLWFhMWItYTllOGM2NDI3Zjdk
jamf-site-verification=m7vxK2kEqYtCpLppIM5N4A
shopify-verification-code=BlPKMTrynL3zekVZkP5hJ45RAMB4eo
zoho-verification=zb25026670.zmverify.zoho.com
atlassian-domain-verification=KqS4sWDySptDnPHjETGM1CS4ivlQkdzGWTfWsuh6QcT5ThS/2lz51JOgCGl5T0B9
google-site-verification=N6YdECDrF9Yd7L455M8xPSQnK4j7Rw2UnronEsGIOL0

Email authentication strong

SPF

v=spf1 include:5910013.spf05.hubspotemail.net include:_spf.google.com include:mail.zendesk.com include:_spf.salesforce.com include:one.zoho.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:517c2c13b9214803aae79d59d700b24f@dmarc-reports.cloudflare.net; pct=100; sp=reject;

policy: reject (enforced) · sp=reject

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00wjfP3BqhgpBX2Rilf+f3IiIU7DCyGN6hQ1JHMEIzvzpKJ5yDXYFGu6Wky8/Joe7dhvzMqJE+cdXz…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

WE1

from 2026-04-21 to 2026-07-20

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://impossiblefoods.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline' *.destinilocators.com *.destini.co *.googleapis.com fonts.googleapis.com *.zdassets.com youtube-nocookie.com *.storepoint.co *.lever.co *.mapbox.com *.fontawesome.com *.bootstrapcdn.com *.click2cart.com *.amazonaws.com; img-src * data:; media-src * data:; font-src 'self' fonts.gstatic.com *.amazonaws.com *.bootstrapcdn.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.youtube.com *.hsforms.net *.hs-analytics.net *.hsleadflows.net *.hs-banner.com *.hscollectedforms.net apps.bazaarvoice.com destinilocators.com *.destini.co *.google.com *.gstatic.com *.googleapis.com *.googletagmanager.com *.googleadservices.com *.doubleclick.net tpc.googlesyndication.com *.netlify.app cmp.osano.com cdn-akamai.mookie1.com js.adsrvr.org *.hs-scripts.com static.ads-twitter.com static.hotjar.com script.hotjar.com snap.licdn.com connect.facebook.net s.pinimg.com analytics.tiktok.com acdn.adnxs.com ct.pinterest.com mpsnare.iesnare.com *.sentry.io *.goog
strict-transport-security: max-age=31556926; includeSubDomains; preload