trenlab.es

HTML metadata

Title

Trenlab | El tren hacia el futuro de Renfe

Description

Vehículo de innovación de Renfe para transformar el sector de la movilidad y la logística. Un espacio para experimentar con nuevas tecnologías, impulsar la sostenibilidad, compartir ideas, inspirar y apoyar al talento emprendedor.

Language

es-ES

Canonical

https://trenlab.es

Translations

en
es-es

Open Graph

title: Trenlab | El tren hacia el futuro de Renfe
description: Vehículo de innovación de Renfe para transformar el sector de la movilidad y la logística. Un espacio para experimentar con nuevas tecnologías, impulsar la sostenibilidad, compartir ideas, inspirar y apoyar al talento emprendedor.

Technology

CDN: Cloudflare

Fonts

Google Fonts

Social widgets

YouTube Embed

Third-party hosts loaded (7)

cdn.prod.website-files.com×27
www.youtube-nocookie.com×7
ajax.googleapis.com×1
d3e54v103j8qbb.cloudfront.net×1
fonts.googleapis.com×1
fonts.gstatic.com×1
www.google.com×1

Social

DNS records live

NS

dns1.renfe.es
dns2.renfe.es

TXT

v=spf1 -all

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://trenlab.es/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=("https://www.youtube.com" "https://www.youtube-nocookie.com" "https://cdn.embedly.com"), gyroscope=("https://www.youtube.com" "https://www.youtube-nocookie.com" "https://cdn.embedly.com"), clipboard-write=("https://www.youtube.com" "https://www.youtube-nocookie.com" "https://cdn.embedly.com"), web-share=("https://www.youtube.com" "https://www.youtube-nocookie.com" "https://cdn.embedly.com"), picture-in-picture=(*)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; object-src 'none'; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; img-src 'self' data: https: https://www.google-analytics.com; font-src 'self' https://fonts.gstatic.com https://cdn.prod.website-files.com https://assets.website-files.com data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.prod.website-files.com; script-src 'self' 'unsafe-inline' https://cdn.prod.website-files.com https://ajax.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://www.googletagmanager.com https://d3e54v103j8qbb.cloudfront.net https://challenges.cloudflare.com; connect-src 'self' https://cdn.prod.website-files.com https://ajax.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://www.google-analytics.com https://challenges.cloudflare.com; frame-src https://www.youtube-nocookie.com https://www.youtube.com https://cdn.embedly.com https://challenges.cloudflare.com; upgrade-
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin

Links to (10)

Linked from (1)

alandalusinnovation.com×2