yardstik.com

HTML metadata

Title

Yardstik – Trust, Reimagined

Description

Yardstik is the Human Trust Platform (HTP), a technology platform that makes human credibility into something you can continuously see, measure, and rely on.

Language

en-US

Generator

Divi v.5.0.0-public-beta.8.1

Canonical

https://yardstik.com/

Feeds

Yardstik » Feed RSS
Yardstik » Comments Feed RSS

Open Graph

url: https://yardstik.com/
title: Yardstik – Trust, Reimagined
locale: en_US
site name: Yardstik
description: Yardstik is the Human Trust Platform (HTP), a technology platform that makes human credibility into something you can continuously see, measure, and rely on.

Technology

Server: nginx
CMS: WordPress 5.0.0 outdated (current 6.8)
jQuery: 3.7.1

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

www.googletagmanager.com×2
cdnjs.cloudflare.com×1
fonts.gstatic.com×1
px.ads.linkedin.com×1

Social

Contact

Phone

888-278-5042

Registration

Registrar

GoDaddy.com, LLC

Created

2014-05-02

Expires

2027-05-02 345 days left

Updated

2022-10-17

Name servers

ns-1305.awsdns-35.org
ns-1703.awsdns-20.co.uk
ns-382.awsdns-47.com
ns-571.awsdns-07.net

DNS records live

NS

ns-1305.awsdns-35.org
ns-1703.awsdns-20.co.uk
ns-382.awsdns-47.com
ns-571.awsdns-07.net

MX

Show 6 MX records

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
15 7da6wkbls4rubs6maicc24orsabtmrgegdy2cu6q26t72awndsuq.mx-verification.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

mandrill_verify.oIrY6mg4JEQ7VB5fzaBI2A
MS=28A4EFDF8207A8E70C0430967C63947640F806D9

Verified for

Anthropic
Atlassian
Google
Postman

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:u14845945.wl196.sendgrid.net include:_spf.salesforce.com include:20956837.spf01.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@yardstik.com; ruf=mailto:dmarc@yardstik.com; fo=1;

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCn53mhdFFw9koSj0Oa5c1a1Sdv1LTf0w72qyrYLAV8saKhz0AGbqwferUr3d6cVjIG9nLA71WCujx68Zsydj…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyG5X9FgJTaKqRLL9aGg2/XHtbow+uHWd4Lr+z4ATTXJyX5LPsj3AhOxTwJO9liHDmVu1YOREqBokpmjdn…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOmbSug6Qgdv/6FrPgzaL5zkCEdu4PDvvScXXyqHARvi96uwQAJIGWPtuxkSEu1ezCqi06RW+K9/wljYghNSY7F8…

selectors probed

Certificate (current)

R13

from 2026-05-01 to 2026-07-30

Expires in 69 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://yardstik.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-eval' https:; frame-ancestors https:; img-src https: data: blob; font-src https: data:; worker-src 'self' blob:; connect-src wss://primary-realtime.intercom-messenger.com/ wss://ws.hotjar.com/ wss://nexus-websocket-b.intercom.io/ https: wss://nexus-websocket-a.intercom.io; form-action 'self' https://forms-na2.hsforms.com/ ; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' https://yardstik.com https://cdnjs.cloudflare.com https://widget.intercom.io https://js.intercomcdn.com https://js.hsforms.net https://sdk.avoma.com https://c.clarity.ms https://www.google.com https://js.sentry-cdn.com https://www.gstatic.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://assets.apollo.io/ https://snap.licdn.com/ https://js-na2.hsforms.net/ https://static.hotjar.com/ https://script.hotjar.com/ wss://nexus-websocket-a.intercom.io/ wss://ws.hotjar.com/ https://c.clarity.ms/;style-src 'self' https: 'unsafe-inline';
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (2)

cookiedatabase.org×3
linkedin.com×3

Linked from (1)

thepbsa.org×3