indexo.dev

john-west.co.uk

.uk crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 3753 ms crawled 2026-05-16

NL · 35.214.241.200 · AS15169 Google LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Homepage | John West
Description
It doesn’t matter whether you’re running marathons or running a household – with John West, you’re never running on empty. Our nutritious and delicious protein will give you the strength to conquer whatever your day brings.
Language
en-GB
Generator
WordPress 6.9.4
Canonical
https://www.john-west.co.uk/
Feeds

Open Graph

url
https://www.john-west.co.uk
title
Homepage
locale
en_GB
site name
John West

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • cdn.jsdelivr.net×8
  • unpkg.com×3
  • static.klaviyo.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
CSC Corporate Domains, Inc
Created
1998-03-20
Expires
2027-03-20 303 days left
Updated
2026-03-16
Name servers
  • dns1.cscdns.net.
  • dns2.cscdns.net.

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 0 mx.john-west.co.uk.cust.b.hostedemail.com
TXT
  • klaviyo-site-verification=SnC3ag
Verified for
  • GlobalSign
  • Google

Email authentication weak

SPF
not published
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-10 to 2026-07-09
Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.john-west.co.uk/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https:; font-src 'self' data: https:; connect-src 'self' https:; frame-ancestors 'self'; base-uri 'self'; object-src 'none';

Links to (7)

Linked from (1)