releaf.co.uk
releaf.co.uk
HTML metadata
Technology
- CDN
- Vercel
Third-party hosts loaded (6)
- www.datocms-assets.com×233
- releaf.com×4
- image.mux.com×2
- chat-assets.frontapp.com×1
- t.contentsquare.net×1
- track.adform.net×1
Social
Contact
- Address
- 1 King's Avenue, N21 3NA, London, GB
Registration
- Registrar
- GoDaddy.com, LLC.
- Created
- 2018-05-02
- Expires
- 2034-05-02 2903 days left
- Updated
- 2024-07-15
- Name servers
-
- brenda.ns.cloudflare.com.
- jose.ns.cloudflare.com.
DNS records live
- NS
-
- brenda.ns.cloudflare.com
- jose.ns.cloudflare.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
klaviyo-site-verification=UuAGMz_4r6z7fqkodhlse8t9qrwwkp080je7qm
- Verified for
-
- Apple
- Meta
- Microsoft 365
- OpenAI
- Slack
Email authentication strong
- SPF
-
v=spf1 include:trustpilotservice.com include:_spf.google.com include:spfuk.rocketseed.com include:_spf.sparkpostmail.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:re+964eea16819c@inbound.dmarcdigests.compolicy: quarantine - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvknPGLBcLNryW3yJ7wd9gTP4tL56lhi9SfZPL9YBej89U5Qx+H/ve0EWBkfXoBHTAFLNR+HrbceLo…
selectors probed - google:
Certificate (current)
R12
Expires in 37 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
camera=(self "https://releaf.daily.co" "https://releaf-staging.daily.co" "https://*.stripe.com"), microphone=(self "https://releaf.daily.co" "https://releaf-staging.daily.co" "https://*.stripe.com"), autoplay=(self "https://releaf.daily.co" "https://releaf-staging.daily.co" "https://*.stripe.com" "https://stream.mux.com/")- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' www.googletagmanager.com *.cal.com js.stripe.com *.google-analytics.com *.posthog.com vault.schema.io www.redditstatic.com 'unsafe-inline' 'unsafe-eval' *.releaf.co.uk *.adform.net alsoaskedapi.com *.openai.com bat.bing.com chat-assets.frontapp.com https://embeddables.p.mbirdcdn.net *.taboola.com *.tiktok.com clarity.ms *.clarity.ms the.sciencebehindecommerce.com https://a.omappapi.com https://connect.facebook.net https://static.ads-twitter.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://challenges.cloudflare.com/turnstile/v0/api.js https://lantern.roeyecdn.com/lantern_global_1.min.js https://www.awin1.com https://www.dwin1.com https://ads.realizeperformance.com https://a.quora.com/qevents.js *.esnbranding.com; connect-src 'self' js.stripe.com *.releaf.co.uk google.com *.google.com *.google-analytics.com *.doubleclick.net www.googletagmanager.com *.r2.cloudflarestorage.com www.redditstatic.com pixel-config.reddit.co- strict-transport-security
max-age=63072000