-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy path_headers
More file actions
17 lines (13 loc) · 2.12 KB
/
Copy path_headers
File metadata and controls
17 lines (13 loc) · 2.12 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
/*
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://*.googletagmanager.com https://cdn.jsdelivr.net https://unpkg.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://challenges.cloudflare.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com https://www.google.com https://www.google-analytics.com https://static.hotjar.com https://script.hotjar.com https://www.gstatic.com https://*.cloudflareinsights.com https://d3js.org https://cdn.datatables.net https://ajax.cloudflare.com https://*.grafana.net https://kit.fontawesome.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://unpkg.com https://www.gstatic.com https://cdn.datatables.net; img-src 'self' data: https://www.googletagmanager.com https://*.google-analytics.com https://*.googletagmanager.com https://xposedornot.com https://*.xposedornot.com https://*.hotjar.com https://cdnjs.cloudflare.com https://img.logo.dev; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.xposedornot.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://cloudflareinsights.com https://*.cloudflareinsights.com; font-src 'self' https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net; frame-src https://challenges.cloudflare.com https://www.google.com; worker-src 'self' blob:;
Permissions-Policy: camera=(), microphone=(), geolocation=(), accelerometer=(), magnetometer=()
Strict-Transport-Security: max-age=15552000
X-Frame-Options: DENY
/
Link: </.well-known/api-catalog>; rel="api-catalog"; type="application/linkset+json", </.well-known/mcp/server-card.json>; rel="service-meta"; type="application/json", </llms.txt>; rel="describedby"; type="text/plain"
/.well-known/api-catalog
Content-Type: application/linkset+json
/.well-known/mcp/server-card.json
Content-Type: application/json