indexo.dev

sparai.org

.org crawl

First seen 2026-04-18 · Last seen 2026-05-15 · ok HTTP/1.1 200 806 ms crawled 2026-05-12

US · 104.21.46.5 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
SPAR - Research Program for AI Risks
Description
SPAR connects rising talent with experts in AI safety and policy through structured mentorship and impactful research projects. Apply to work on research addressing risks from advanced AI.
Language
en
Generator
Astro v5.13.2
Canonical
https://sparai.org/

Open Graph

url
https://sparai.org/
title
SPAR - Research Program for AI Risks
locale
en_US
site name
SPAR
description
SPAR connects rising talent with experts in AI safety and policy through structured mentorship and impactful research projects. Apply to work on research addressing risks from advanced AI.

Technology

CDN
Cloudflare

Contact

Address
st news about the program.Sign up← Back to form© 2026

Registration

Registrar
Squarespace Domains LLC
Created
2024-04-10
Expires
2027-04-10 325 days left
Updated
2026-04-10
Name servers
  • eva.ns.cloudflare.com
  • toby.ns.cloudflare.com

DNS records live

NS
  • eva.ns.cloudflare.com
  • toby.ns.cloudflare.com
MX
  • 1 smtp.google.com
TXT
  • airtable-verification=9a265bb098a4cb56762ddc1ff7e291ae
  • google-site-verification=nxwsW7_Vc-B3kbVK4fOKU7BblgYFwaVHMSJxHYy2UFI

Email authentication weak

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:2df4d2311ad34c888da51da5ee8251e8@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-14 to 2026-07-14
Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://sparai.org/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=(), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' ingest.kairos-project.org *.posthog.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com *.posthog.com; font-src 'self' fonts.gstatic.com data: *.posthog.com; img-src 'self' data: blob: https: *.posthog.com; media-src *.posthog.com; connect-src 'self' ingest.kairos-project.org *.posthog.com app.loops.so; frame-src airtable.com *.airtable.com; worker-src 'self' blob: data:; object-src 'none'; base-uri 'self'; form-action 'self' app.loops.so; frame-ancestors 'self' *.posthog.com; upgrade-insecure-requests; report-uri https://us.i.posthog.com/report/?token=phc_xOfKpi7sbI0tT5weFwnYcQXjjL53Kfr1JGMvFIYiJNy&sample_rate=0.1; report-to posthog

Links to (15)

Linked from (6)