thecoolcatclub.com

HTML metadata

Title: The Cool Cat Club - Proper food, delivered monthly
Language: en

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (2)

cdn.brevo.com×1
www.googletagmanager.com×1

Registration

Registrar

GoDaddy.com, LLC

Created

2019-08-16

Expires

2026-08-16 87 days left

Updated

2025-08-17

Name servers

garret.ns.cloudflare.com
khloe.ns.cloudflare.com

DNS records live

NS

garret.ns.cloudflare.com
khloe.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

klaviyo-site-verification=Vuuppb

Verified for

Apple
Brevo
Google

Email authentication strong

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarc@thecoolcatclub.com;

policy: quarantine

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-04-16 to 2026-07-15

Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://thecoolcatclub.com/

present

content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: DENY
permissions-policy: microphone=(), camera=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests; connect-src 'self' https://thecoolcatclub-support.freshdesk.com https://api.thecoolcatclub.com https://staging-api.thecoolcatclub.com https://euc-widget.freshworks.com https://*.google.com https://www.google.com www.google.com https://*.doubleclick.net https://*.google-analytics.com https://*.facebook.com https://*.google.ie https://www.google.com:443 https://www.google.co.uk https://*.posthog.com https://in-automate.brevo.com https://widget.trustpilot.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://euc-widget.freshworks.com https://*.posthog.com; img-src 'self' https://ik.imagekit.io https://www.google.co.uk https://www.googletagmanager.com https://*.google-analytics.com https://*.facebook.com https://*.google.ie https://*.doubleclick.net https://www.google.al data:; frame-src 'self' https://js.stripe.com https://www.googletagmanager.com https://td.doubleclick.net https://widget.trustpilot.com; font-src 'self' https://fonts.googlea
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
content-security-policy-report-only: upgrade-insecure-requests; connect-src 'self' https://thecoolcatclub-support.freshdesk.com https://api.thecoolcatclub.com https://staging-api.thecoolcatclub.com https://euc-widget.freshworks.com https://*.google.com https://www.google.com www.google.com https://*.doubleclick.net https://*.google-analytics.com https://*.facebook.com https://*.google.ie https://www.google.com:443 https://www.google.co.uk https://*.posthog.com https://in-automate.brevo.com https://widget.trustpilot.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://euc-widget.freshworks.com https://*.posthog.com; img-src 'self' https://ik.imagekit.io https://www.google.co.uk https://www.googletagmanager.com https://*.google-analytics.com https://*.facebook.com https://*.google.ie https://*.doubleclick.net https://www.google.al data:; frame-src 'self' https://js.stripe.com https://www.googletagmanager.com https://td.doubleclick.net https://widget.trustpilot.com; font-src 'self' https://fonts.googlea

Linked from (1)

louiscatorze.com×1