indexo.dev

opendor.me

.me crawl

First seen 2026-04-23 · Last seen 2026-05-04 · ok HTTP/1.1 200 6401 ms crawled 2026-05-17

DE · 138.201.90.207 · AS24940 Hetzner Online GmbH

Reputation 75/100 listed in spam blocklist

Classifying

HTML metadata

Title
opendor.me
Description
We open doors for open-source contributors and make open-source visible and understandable for everyone and show recruiters the open-source work of a potential candidate.
Language
en
Canonical
https://opendor.me

Open Graph

url
https://opendor.me
title
opendor.me
locale
en
image:url
https://opendor.me/images/og-home.png
site name
opendor.me
description
We open doors for open-source contributors and make open-source visible and understandable for everyone and show recruiters the open-source work of a potential candidate.

Technology

Server
nginx

Third-party hosts loaded (3)

  • avatars.githubusercontent.com×16
  • images.unsplash.com×2
  • u.gummibeer.dev×1

Social

DNS records live

NS
  • dahlia.ns.cloudflare.com
  • frank.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 4 TXT records
  • brave-ledger-verification=d50fd487413a972cc11c683029efddf173169ad74b33f8002e6eaafeede93c8c
  • google-site-verification=-_yZUS5KEnfvKPAqtcu_2PbjIF_bZRF-WWTpzzfyJuw
  • google-site-verification=KU3Cd5cftUSKq-EobugKBNh1fv1dGTnkhc03hsVNUHo
  • have-i-been-pwned-verification=dweb_7rzn3vq363p9c3nfsr0cy117

Email authentication strong

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1n6He4ckvUbdKDfwqDGKG9fh3GpmD4O2yuAJr+t36/cytMHaLIHPRotuncMYkpbidDixmERIcF0N0t…
selectors probed

Certificate (current)

E8
from 2026-04-01 to 2026-06-30
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://opendor.me/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
Header values
x-frame-options
SAMEORIGIN
permissions-policy
interest-cohort=()
x-content-type-options
nosniff
content-security-policy
default-src 'none';base-uri 'self';child-src 'none';connect-src 'self' https://*.algolia.net https://*.algolianet.com https://u.gummibeer.dev/api/collect;form-action 'self';frame-src 'none';frame-ancestors 'none';manifest-src 'self';media-src 'none';object-src 'none';worker-src 'self';img-src 'self' data: https://avatars.githubusercontent.com https://images.unsplash.com https://opendor.me;script-src 'self' 'unsafe-eval' 'nonce-EaNGCWml9Ayyob91iZ3NRqhA50EfA0B4' https://opendor.me https://u.gummibeer.dev/umami.js;style-src 'self' 'unsafe-inline' https://opendor.me;font-src 'self' https://opendor.me

Links to (4)

Linked from (2)