mermaidstraw.com

.com crawl

First seen 2026-05-10 · Last seen 2026-05-16 · ok HTTP/1.1 200 2236 ms crawled 2026-05-16

CA · 23.227.38.32 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Mermaid Straw
Description: Mermaid Straw offers cute, reusable drinkware and accessories designed to make everyday sipping more fun. Stainless steel cups, reusable straws, and matching extras.
Language: en
Canonical: https://mermaidstraw.com/

Open Graph

url: https://mermaidstraw.com/
title: Mermaid Straw
site name: Mermaid Straw
description: Mermaid Straw offers cute, reusable drinkware and accessories designed to make everyday sipping more fun. Stainless steel cups, reusable straws, and matching extras.

Technology

CDN: Cloudflare
CMS: Shopify

Third-party hosts loaded (4)

cdn.shopify.com×4
shop.app×2
fonts.shopifycdn.com×1
monorail-edge.shopifysvc.com×1

Social

Contact

Email

support@mermaidstraw.comcompanyfaqsrefund

Registration

Registrar

GoDaddy.com, LLC

Created

2018-07-06

Expires

2026-07-06 47 days left

Updated

2026-03-01

Name servers

ns29.domaincontrol.com
ns30.domaincontrol.com

DNS records live

NS

ns29.domaincontrol.com
ns30.domaincontrol.com

MX

10 mx1-us1.ppe-hosted.com
20 mx2-us1.ppe-hosted.com

TXT

google-site-verification=C8ufIH1rU2vto723i-s_K69u6aDntEp7_imVwWm9iQ0
NETORGFT4162890.onmicrosoft.com
google-site-verification=DvYoaqCZWrbRote7IHYJWnMM56UbliHUI7sivMKUEPs

Email authentication partial

SPF

v=spf1 a:dispatch-us.ppe-hosted.com include:secureserver.net include:mailgun.org ~all

softfail (~all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-03-30 to 2026-06-28

Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://mermaidstraw.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238

Links to (7)

Linked from (1)

twochicksonbooks.com×1