CSP Data for: eurostar.com

# Time Frame Framing Control TLS Enforce Content Control Third JS Parties 'unsafe-inline' http / https / * data: Diffs Normalized Policy
0
2017-10-01 - 2018-03-23
False
True
True
15
True
True
False
0
connect-src 'self' https:; default-src 'self' https:; font-src *.googletagmanager.com data: *.googleapis.com 'self' *.doubleclick.net blob: *.eurostar.com *.google.co.uk *.googleadservices.com *.facebook.com https: *.salesforceliveagent.com *.krxd.com *.google.com *.google-analytics.com *.monetate.net *.decibelinsight.net *.cloudflare.com *.gstatic.com *.facebook.net; frame-src *.gstatic.com *.google.co.uk *.googletagmanager.com *.googleadservices.com *.facebook.com *.decibelinsight.net *.facebook.net *.googleapis.com https: *.salesforceliveagent.com 'self' *.krxd.com *.doubleclick.net *.cloudflare.com *.google.com *.google-analytics.com *.monetate.net *.eurostar.com; img-src *.googletagmanager.com data: *.googleapis.com 'self' *.doubleclick.net blob: *.eurostar.com *.google.co.uk *.googleadservices.com *.facebook.com https: *.salesforceliveagent.com *.krxd.com *.google.com *.google-analytics.com *.monetate.net *.decibelinsight.net *.cloudflare.com *.gstatic.com *.facebook.net; script-src *.googletagmanager.com *.googleapis.com 'self' *.doubleclick.net 'unsafe-eval' *.eurostar.com *.google.co.uk *.googleadservices.com *.facebook.com https: *.salesforceliveagent.com *.krxd.com 'unsafe-inline' *.google.com *.google-analytics.com *.monetate.net *.decibelinsight.net *.cloudflare.com *.gstatic.com *.facebook.net; style-src *.googletagmanager.com data: *.googleapis.com 'self' *.doubleclick.net *.eurostar.com *.google.co.uk *.googleadservices.com *.facebook.com https: *.salesforceliveagent.com *.krxd.com 'unsafe-inline' *.google.com *.google-analytics.com *.monetate.net *.decibelinsight.net *.cloudflare.com *.gstatic.com *.facebook.net; 
1
2018-03-24 - 2018-03-25
False
True
True
0
True
True
True
107
default-src data: https: filesystem: * 'unsafe-inline' 'unsafe-eval' blob:; 
2
2018-03-26 - 2018-04-08
False
True
True
0
True
True
True
1
default-src data: wss: https: filesystem: * 'unsafe-inline' 'unsafe-eval' blob:; 
3
2018-04-09 - END
False
True
True
0
True
True
True
1
default-src data: https: filesystem: * 'unsafe-inline' 'unsafe-eval' blob:;