usifest.cz
HTML metadata
Technology
- CDN
- Vercel
- CMS
- Next.js
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- ndzpmdrqtehetumfjvrn.supabase.co×14
- fonts.googleapis.com×1
- fonts.gstatic.com×1
- unieskolinovativnich.cz×1
- www.google.com×1
Social
Contact
DNS records live
- NS
-
- ns1.vercel-dns.com
- ns2.vercel-dns.com
- MX
-
- 10 5542330d88d696ac.mx2.emailprofi.seznam.cz
- 20 5542330d88d696ac.mx1.emailprofi.seznam.cz
- Verified for
-
Email authentication strong
- SPF
-
v=spf1 include:spf.seznam.cz ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; adkim=r; aspf=r;policy: quarantine - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 56 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
camera=(), microphone=(), geolocation=(), payment=(), usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://va.vercel-scripts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://*.supabase.co; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://*.supabase.co https://vitals.vercel-insights.com https://va.vercel-scripts.com; media-src 'self' https://*.supabase.co; frame-src https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=63072000; includeSubDomains; preload
Links to (16)
- zymestic.cz×1
- untethered.cz×1
- unieskolinovativnich.cz×1
- supabase.co×1
- ssps.cz×1
- praha.eu×1
- outschoolfest.cz×1
- nadaceneuron.cz×1
- mbcom.com×1
- makerfaire.cz×1
- linkedin.com×1
- instagram.com×1
- hn.cz×1
- google.com×1
- catta.cz×1
- bohemia.net×1