tesslstatus.io

.io crawl

First seen 2026-04-13 · Last seen 2026-05-10 · ok HTTP/1.1 200 783 ms crawled 2026-05-06

US · 66.33.60.130 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Tessl Status

Language

Canonical

https://tesslstatus.io

Feeds

RSS RSS
Atom Atom

Open Graph

url: https://tesslstatus.io
title: Tessl Status
locale: en-US
site name: Tessl Status
description: Latest service status for Tessl

Technology

CDN: Vercel
CMS: Next.js

DNS records live

NS

demi.ns.cloudflare.com
tony.ns.cloudflare.com

Email authentication no MX

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; adkim=s; aspf=s; fo=1; rua=mailto:security-dmarc-aggregated-reports@tessl.io; ruf=mailto:security-dmarc-forensic-reports@tessl.io;

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

default: v=DKIM1; p=
google: v=DKIM1; p=
selector1: v=DKIM1; p=
selector2: v=DKIM1; p=
k1: v=DKIM1; p=
k2: v=DKIM1; p=
mail: v=DKIM1; p=
dkim: v=DKIM1; p=
s1: v=DKIM1; p=
s2: v=DKIM1; p=
mxvault: v=DKIM1; p=
smtpapi: v=DKIM1; p=

selectors probed

Certificate (current)

R12

from 2026-04-15 to 2026-07-14

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://tesslstatus.io/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
permissions-policy: clipboard-write=(self), camera=(), microphone=(), geolocation=(), payment=(), usb=(), display-capture=()
x-content-type-options: nosniff
content-security-policy: connect-src vitals.vercel-insights.com status-page-hpp6atguc-incident-io-team.vercel.app https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.google.com https://*.google.co.uk https://*.g.doubleclick.net https://global.localizecdn.com https://app.localizejs.com https://*.unbabel.com https://*.bablic.com 'self'; script-src 'unsafe-inline' https: 'self'; style-src 'unsafe-inline' 'self'; report-uri https://o494704.ingest.sentry.io/api/4504554480795648/security?security_key=5d578c0eb4bd4811adf4f2176db9a1c8; frame-ancestors 'self'; img-src data: https://*.google-analytics.com https://*.googletagmanager.com https://*.analytics.google.com https://*.g.doubleclick.net https://*.google.com https://*.google.co.uk https://global.localizecdn.com https://assets.localizecdn.com https://uploads.bablic.com 'self'; report-to https://o494704.ingest.sentry.io/api/4504554480795648/security?security_key=5d578c0eb4bd4811adf4f2176db9a1c8; base-uri 'none'; chi
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (2)

incident.io×2
tessl.io×2

Linked from (1)

tessl.io×2