https://teck-global.com/

Submitted URL:
https://teck-global.com/
Report Finished:
Copy link
  • No classification
Copy link
Learn more...
NameValueSupportInfo
Strict-Transport-Securitymax-age=15552000; includeSubDomains; preloadGoodDeclare that a website is only accessible over a secure connection (HTTPS).

Click to learn more...
X-Frame-OptionsSAMEORIGINGoodIndicate whether a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>.

Click to learn more...
X-Content-Type-OptionsnosniffGoodIndicate that the MIME types advertised in the Content-Type headers should be followed and not be changed.

Click to learn more...
Content-Security-Policyscript-src 'self' https: ws: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; frame-src 'self' https: ws: wss: data: blob:; object-src 'none'; script-src static.cloudflareinsights.com cloudflareinsights.com ajax.cloudflare.com; GoodControl resources the user agent is allowed to load for a given page.

Click to learn more...
Referrer-Policysame-originGoodControl how much referrer information should be included with requests.

Click to learn more...
Clear-Site-Data—GoodControl the data stored by a client browser for their origins.

Click to learn more...
X-Permitted-Cross-Domain-Policies—GoodControl whether a web client such as Adobe Flash Player or Adobe Acrobat has permission to handle data across domains.

Click to learn more...
Permissions-Policyaccelerometer=(); camera=(); geolocation=*; gyroscope=(); magnetometer=(); microphone=(); payment=(); usb=(); interest-cohort=()NewAllow and deny the use of browser features in a document or iframe.

Click to learn more...
Cross-Origin-Embedder-Policy—NewConfigure embedding cross-origin resources into the document.

Click to learn more...
Cross-Origin-Opener-Policy—NewEnsure a top-level document does not share a browsing context group with cross-origin documents.

Click to learn more...
Cross-Origin-Resource-Policy—NewRequest that the browser blocks no-cors cross-origin/cross-site requests to the given resource.

Click to learn more...
X-XSS-Protection1; mode=blockDeprecatedDeprecated. Stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.

Click to learn more...
Feature-Policy—DeprecatedDeprecated. Replaced by the Permissions-Policy header.

Click to learn more...
Expect-CTmax-age=86400; enforceDeprecatedDeprecated. Opt in to reporting and/or enforcement of Certificate Transparency requirements.

Click to learn more...
Public-Key-Pins—DeprecatedDeprecated. Allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates.

Click to learn more...
Copy link
ViolationTypeInfo
Resource
https://teck-global.com/
Description
Refused to apply style from 'https://teck-global.com/wp-content/plugins/gutenverse-news/assets/fonts/jegicon/fonts/jegicon.woff?ver=1.0.4' because its MIME type ('font/woff') is not a supported stylesheet MIME type, and strict MIME checking is enabled.
Strict MIME checkingEnsures the resource is of the correct type before being interpreted by the browser.
Copy link
SubjectIssue dateExpiry date
teck-global.com
upload.video.google.com
cloudflareinsights.com
www.clarity.ms
*.gstatic.com
a.clarity.ms