stwinefridesholywell.co.uk

.uk crawl

First seen 2026-06-02 · Last seen 2026-06-03 · ok HTTP/1.1 200 974 ms crawled 2026-06-03

US · 198.185.159.145 · AS53831 Squarespace, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: St. Winefride's Church
Language: en-US

Open Graph

url: https://www.stwinefridesholywell.co.uk/
title: St. Winefride's Church
description: Welcome/ Croeso

Technology

Server: ESF

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (6)

fonts.googleapis.com×3
www.gstatic.com×3
lh3.googleusercontent.com×2
apis.google.com×1
maps-api-ssl.google.com×1
www.googletagmanager.com×1

Social

DNS records live

NS

ns-cloud-c1.googledomains.com
ns-cloud-c2.googledomains.com
ns-cloud-c3.googledomains.com
ns-cloud-c4.googledomains.com

MX

10 mx.daily.co.uk

Verified for

Google

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-27 to 2026-07-26

Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.stwinefridesholywell.co.uk/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'report-sample' 'nonce-jgbWvoreKuFCXC-R97qZ7g' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: same-site

Links to (2)

youtube.com×1
google.com×1

Linked from (1)

pcmew.org×1