lanewyorkina.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-13 · ok HTTP/1.1 200 5073 ms crawled 2026-05-13

US · 151.101.1.75 · AS54113 Fastly, Inc.

Reputation 94/100 dmarc monitor-only

sector food type homepage

HTML metadata

Title: La Newyorkina Premium Mexican Icecream, icepops and sweets
Description: La Newyorkina is a latin-woman owned Icepop, Ice Cream and sweets company founded in 2010 by Mexico City native, James Beard nominated pastry Chef Fany Gerson
Language: en-US
Canonical: https://www.lanewyorkina.com/

Open Graph

url: https://www.lanewyorkina.com/
title: La Newyorkina Premium Mexican Icecream, icepops and sweets
site name: La Newyorkina
description: La Newyorkina is a latin-woman owned Icepop, Ice Cream and sweets company founded in 2010 by Mexico City native, James Beard nominated pastry Chef Fany Gerson

Technology

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (12)

theme-assets.getbento.com×4
app-assets.getbento.com×3
images.getbento.com×3
assets-cdn-refresh.getbento.com×1
cdnjs.cloudflare.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
widgets.resy.com×1
wsv3cdn.audioeye.com×1
www.google.com×1
www.googletagmanager.com×1
www.gstatic.com×1

Social

Contact

Email

info@lanewyorkina.com

Registration

Registrar

GoDaddy.com, LLC

Created

2010-03-19

Expires

2028-03-19 668 days left

Updated

2026-03-20

Name servers

ns05.domaincontrol.com
ns06.domaincontrol.com

DNS records live

NS

ns05.domaincontrol.com
ns06.domaincontrol.com

MX

0 lanewyorkina-com.mail.protection.outlook.com

Email authentication partial

SPF: v=spf1 include:secureserver.net -all
strict (-all)
DMARC: v=DMARC1; p=none
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-03-18 to 2026-06-16

Expires in 26 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.lanewyorkina.com/

present

strict-transport-security
content-security-policy
x-frame-options
cross-origin-opener-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src * blob: data: 'unsafe-inline' 'unsafe-eval'; script-src 'self' * https://cdn.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; script-src-elem * https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' * https://heapanalytics.com https://viewer.threshold360.com blob: data:; style-src 'self' * https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval' blob:; connect-src 'self' * https://c.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com wss://viewer.threshold360.com blob:; font-src 'self' * https://heapanalytics.com https://viewer.threshold360.com data:; frame-src 'self' * https://viewer.threshold360.com; worker-src * blob:; media-src * blob: data:; frame-ancestors 'self';
strict-transport-security: max-age=2592000; includeSubDomains
cross-origin-opener-policy: same-origin

Links to (6)

Linked from (1)

fanygerson.com×2