| Titletag | Descriptiontag | language |
|---|---|---|
| Chocolate Shop | Chocolate | Purdys Chocolatier | English |
| Alexarank |
|---|
| 251518 |
| Ip adress | 151.101.65.124 | Nameserver | ns-1318.awsdns-36.org ns-653.awsdns-17.net ns-1712.awsdns-22.co.uk ns-328.awsdns-41.com |
Status code | 200 |
N/A
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://purdys.com/
Accept-Ranges: bytes
Date: Sun, 24 Aug 2025 10:14:56 GMT
X-Served-By: cache-tyo11957-TYO
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1756030496.384707,VS0,VE0
Vary:
Strict-Transport-Security: max-age=31557600
HTTP/1.1 302 Found
Connection: keep-alive
Content-Length: 0
x-frame-options: SAMEORIGIN
x-debug-info: eyJyZXRyaWVzIjowfQ==
pragma: no-cache
content-security-policy-report-only: style-src-elem https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.listrakbi.com https://*.azureedge.net https://*.bootstrapcdn.com 'unsafe-inline' https://*.yotpo.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://fonts.googleapis.com/; script-src-elem https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.hotjar.com https://*.searchspring.io https://*.searchspring.net https://*.azureedge.net https://www.googletagmanager.com https://acsbapp.com https://*.blob.core.windows.net https://*.listrakbi.com https://*.listrak.com 'self' https://*.licdn.com https://*.bing.com https://*.pinimg.com https://*.pinterest.com https://*.pepperjam.com https://*.tctm.co https://*.facebook.net https://*.youtube.com https://*.jsdelivr.net 'unsafe-inline' https://*.newrelic.com https://*.googleapis.com *.bing.com *.calendly.com *.clarity.ms *.doubleclick.net *.facebook.net *.google.com *.googleadservices.com *.googleoptimize.com *.googletagmanager.com *.gstatic.com *.hotjar.com *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.listrak.com *.listrakbi.com *.newrelic.com *.paypal.com *.paypalobjects.com *.pepperjam.com *.pinimg.com *.pinterest.com *.searchspring.net *.searchspring.io *.tctm.co *.tiktok.com *.twitter.com *.yotpo.com *.youtube.com acsbapp.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net sc-static.net tagmanager.google.com analytics.google.com unpkg.com https://js.squareup.com https://js.afterpay.com/ https://nd.squarecdn.com https://js.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://portal.sandbox.afterpay.com/ https://portal.afterpay.com/ https://cdn.plaid.com/ https://sandbox.kit.cash.app/ https://kit.cash.app/; font-src https://*.googleapis.com https://*.gstatic.com data: https://*.fontawesome.com maxcdn.bootstrapcdn.com https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.cloudflare.com https://maxcdn.bootstrapcdn.com https://*.yotpo.com https://*.azureedge.net 'unsafe-inline' https://*.cloudfront.net *.flaticon.com sc-static.net https://square-fonts-production-f.squarecdn.com/ https://d1g145x70srn7h.cloudfront.net/ https://cash-f.squarecdn.com/ dhv2ziothpgrr.cloudfront.net fonts.gstatic.com *.yotpo.com *.googleapis.com *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com maps.googleapis.com maps.gstatic.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * https://acs-us-east-1.ndsprod.nds-sandbox-issuer.com/ *.facebook.com *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com *.meetanshi.com 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com bid.g.doubleclick.net www.googletagmanager.com *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ www.google.com maps.googleapis.com maps.gstatic.com https://*.moneris.com/ *.meetanshi.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.weltpixel.com *.wesupply.xyz https://wesupplylabs.com *.googletagmanager.com *.doubleclick.net *.yotpo.com https://pci-connect.squareup.com https://connect.squareup.com https://pci-connect.squareupsandbox.com https://connect.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://acs-us-east-1.ndsprod.nds-sandbox-issuer.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com https://www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io *.gstatic.com *.googleapis.com https://images.unsplash.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com *.meetanshi.com https://meetanshi.com/media/logo.png www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com https://*.magentosite.cloud purdys.local *.purdys.local *.bing.com *.clarity.ms *.doubleclick.net *.ggpht.com *.google.com *.googleusercontent.com *.inspectlet.com *.kaltura.com *.linkedin.com *.listrakbi.com *.pinterest.com *.searchspring.net *.twitter.com *.yandex.ru *.yotpo.com *.azureedge.net *.blob.core.windows.net swiperjs.com https://purdys.com https://*.purdys.com https://*.bing.com https://*.google.com 'self' https://*.google.ca https://*.linkedin.com https://*.cloudfront.net https://*.listrakbi.com https://*.searchspring.io https://*.doubleclick.net https://www.gstatic.com/ https://sandbox.api.cash.app/ https://site-assets.afterpay.com/ https://sandbox.web.squarecdn.com/ https://api.cash.app/ https://web.squarecdn.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ https://franklin-assets.s3.amazonaws.com/ https://static.sandbox.afterpay.com/ https://static.afterpay.com/ https://static.sandbox.afterpay.com/logo/ dhv2ziothpgrr.cloudfront.net *.facebook.com *.reddit.com *.ads-twitter.com t.co *.bing.net *.klaviyo.com *.google-analytics.com *.googletagmanager.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://*.googleapis.com *.gstatic.com www.google.com/recaptcha/ www.gstatic.com/recaptcha/ https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com https://*.moneris.com/ *.meetanshi.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com https://*.magentosite.cloud https://purdys.com https://*.purdys.com *.googletagmanager.com tagmanager.google.com *.google.com *.facebook.net unpkg.com https://*.searchspring.io https://acsbapp.com https://*.blob.core.windows.net https://*.listrakbi.com 'self' acsbapp.com *.bing.com *.calendly.com *.clarity.ms *.doubleclick.net *.googleadservices.com *.googleoptimize.com *.hotjar.com *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.listrak.com *.listrakbi.com *.paypalobjects.com *.pepperjam.com *.pinimg.com *.pinterest.com *.searchspring.net *.searchspring.io *.tctm.co *.tiktok.com *.twitter.com *.yotpo.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net sc-static.net https://purdys.local https://*.purdys.local https://*.hotjar.com https://*.azureedge.net https://*.licdn.com https://*.bing.com https://*.pinimg.com https://*.tctm.co 'unsafe-inline' https://js.squareup.com https://js.afterpay.com/ https://nd.squarecdn.com https://js.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://portal.sandbox.afterpay.com/ https://portal.afterpay.com/ https://cdn.plaid.com/ https://sandbox.kit.cash.app/ https://kit.cash.app/ dhv2ziothpgrr.cloudfront.net *.smsbump.com 7kgd3hs1oh.execute-api.us-east-1.amazonaws.com d18eg7dreypte5.cloudfront.net https://cdn.searchspring.net/intellisuggest/is.min.js *.cloudflare.com *.redditstatic.com *.reddit.com *.ads-twitter.com *.klaviyo.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.googleapis.com https://static.klaviyo.com https://*.moneris.com/ *.fontawesome.com maxcdn.bootstrapcdn.com 'unsafe-inline' assets.braintreegateway.com https://*.azureedge.net https://*.listrakbi.com https://*.yotpo.com *.cloudflare.com *.googletagmanager.com *.gstatic.com *.jsdelivr.net *.listrakbi.com *.azureedge.net *.blob.core.windows.net https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://fonts.googleapis.com/ dhv2ziothpgrr.cloudfront.net *.tagmanager.google.com *.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com maps.googleapis.com maps.gstatic.com *.bing.com *.gstatic.com *.kaltura.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://*.googleapis.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com *.meetanshi.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com https://*.magentosite.cloud https://purdys.local https://*.purdys.local *.bing.com *.clarity.ms *.cloudflare.com *.doubleclick.net *.googleadservices.com *.googleoptimize.com *.googletagmanager.com *.hotjar.io *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.pepperjam.com *.pinimg.com *.tctm.co acsbapp.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net www.google.ae www.google.am www.google.at https://purdys.com https://*.purdys.com https://*.listrakbi.com https://*.acsbapp.com https://*.pinterest.com https://*.linkedin.com https://*.velaro.com https://*.nr-data.net https://*.searchspring.io https://*.doubleclick.net https://*.hotjar.com https://*.tiktok.com https://pci-connect.squareup.com https://pci-connect.squareupsandbox.com https://api.amplitude.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ https://o160250.ingest.sentry.io/ https://api.lab.amplitude.com/sdk/vardata https://sandbox.plaid.com/ https://production.plaid.com/ dhv2ziothpgrr.cloudfront.net *.smsbump.com 7kgd3hs1oh.execute-api.us-east-1.amazonaws.com https://beacon.searchspring.io/beacon *.google-analytics.com *.analytics.google.com *.facebook.net *.redditstatic.com *.reddit.com *.tiktok.com *.twitter.com *.ads-twitter.com *.bing.net *.klaviyo.com *.run.app *.yotpo.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri https://f0d1d91f-01e4-4d5d-a8d9-5469b5b19d14.sansec.watch/; report-to report-endpoint;
accept-ranges: bytes
x-platform-server: i-8ccfb59ad7200861
x-platform-server: i-8ccfb59ad7200861
set-cookie: PHPSESSID=e90f7f00660791d0c8c0ca7f5b342790; expires=Sun, 31-Aug-2025 10:14:56 GMT; Max-Age=604800; path=/; domain=.purdys.com; HttpOnly; SameSite=Lax
set-cookie: wp_ga4_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.purdys.com; SameSite=Lax
set-cookie: wp_ga4_customerGroup=NOT%20LOGGED%20IN; expires=Mon, 24-Aug-2026 10:14:56 GMT; Max-Age=31536000; path=/; domain=.purdys.com; SameSite=Lax
traceresponse: 00-185eac6ed103fc3fde269cce0cd9c859-e855294018deb91c-01
x-content-type-options: nosniff
x-timer: S1756030497.635589,VS0,VE358
expires: Sat, 24 Aug 2024 10:14:56 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate, no-cache, no-store
location: https://www.purdys.com/
x-xss-protection: 1; mode=block
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/f0d1d91f-01e4-4d5d-a8d9-5469b5b19d14.sansec.watch\/"}]}
Date: Sun, 24 Aug 2025 10:14:57 GMT
X-Served-By: cache-iad-kjyo7100138-IAD, cache-iad-kjyo7100138-IAD, cache-tyo11955-TYO
X-Cache: MISS, MISS, MISS
X-Cache-Hits: 0, 0, 0
Vary: Accept-Encoding,Cookie
Strict-Transport-Security: max-age=31557600
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 63877
x-timer: S1756026005.346518,VS0,VE45855
traceresponse: 00-185ea8591c68e8dcb0b3631e66bcd03d-2dfa4d32635b0121-01
x-xss-protection: 1; mode=block
expires: Mon, 25 Aug 2025 09:00:07 GMT
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/f0d1d91f-01e4-4d5d-a8d9-5469b5b19d14.sansec.watch\/"}]}
x-debug-info: eyJyZXRyaWVzIjowfQ==
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
pragma: cache
x-platform-server: i-8ccfb59ad7200861
x-platform-server: i-8ccfb59ad7200861
content-security-policy-report-only: style-src-elem https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.listrakbi.com https://*.azureedge.net https://*.bootstrapcdn.com 'unsafe-inline' https://*.yotpo.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://fonts.googleapis.com/; script-src-elem https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.hotjar.com https://*.searchspring.io https://*.searchspring.net https://*.azureedge.net https://www.googletagmanager.com https://acsbapp.com https://*.blob.core.windows.net https://*.listrakbi.com https://*.listrak.com 'self' https://*.licdn.com https://*.bing.com https://*.pinimg.com https://*.pinterest.com https://*.pepperjam.com https://*.tctm.co https://*.facebook.net https://*.youtube.com https://*.jsdelivr.net 'unsafe-inline' https://*.newrelic.com https://*.googleapis.com *.bing.com *.calendly.com *.clarity.ms *.doubleclick.net *.facebook.net *.google.com *.googleadservices.com *.googleoptimize.com *.googletagmanager.com *.gstatic.com *.hotjar.com *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.listrak.com *.listrakbi.com *.newrelic.com *.paypal.com *.paypalobjects.com *.pepperjam.com *.pinimg.com *.pinterest.com *.searchspring.net *.searchspring.io *.tctm.co *.tiktok.com *.twitter.com *.yotpo.com *.youtube.com acsbapp.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net sc-static.net tagmanager.google.com analytics.google.com unpkg.com https://js.squareup.com https://js.afterpay.com/ https://nd.squarecdn.com https://js.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://portal.sandbox.afterpay.com/ https://portal.afterpay.com/ https://cdn.plaid.com/ https://sandbox.kit.cash.app/ https://kit.cash.app/; font-src https://*.googleapis.com https://*.gstatic.com data: https://*.fontawesome.com maxcdn.bootstrapcdn.com https://*.magentosite.cloud https://purdys.local https://*.purdys.local https://purdys.com https://*.purdys.com https://*.cloudflare.com https://maxcdn.bootstrapcdn.com https://*.yotpo.com https://*.azureedge.net 'unsafe-inline' https://*.cloudfront.net *.flaticon.com sc-static.net https://square-fonts-production-f.squarecdn.com/ https://d1g145x70srn7h.cloudfront.net/ https://cash-f.squarecdn.com/ dhv2ziothpgrr.cloudfront.net fonts.gstatic.com *.yotpo.com *.googleapis.com *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com maps.googleapis.com maps.gstatic.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * https://acs-us-east-1.ndsprod.nds-sandbox-issuer.com/ *.facebook.com *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com *.meetanshi.com 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com bid.g.doubleclick.net www.googletagmanager.com *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ www.google.com maps.googleapis.com maps.gstatic.com https://*.moneris.com/ *.meetanshi.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.weltpixel.com *.wesupply.xyz https://wesupplylabs.com *.googletagmanager.com *.doubleclick.net *.yotpo.com https://pci-connect.squareup.com https://connect.squareup.com https://pci-connect.squareupsandbox.com https://connect.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://acs-us-east-1.ndsprod.nds-sandbox-issuer.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com https://www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io *.gstatic.com *.googleapis.com https://images.unsplash.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com *.meetanshi.com https://meetanshi.com/media/logo.png www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com https://*.magentosite.cloud purdys.local *.purdys.local *.bing.com *.clarity.ms *.doubleclick.net *.ggpht.com *.google.com *.googleusercontent.com *.inspectlet.com *.kaltura.com *.linkedin.com *.listrakbi.com *.pinterest.com *.searchspring.net *.twitter.com *.yandex.ru *.yotpo.com *.azureedge.net *.blob.core.windows.net swiperjs.com https://purdys.com https://*.purdys.com https://*.bing.com https://*.google.com 'self' https://*.google.ca https://*.linkedin.com https://*.cloudfront.net https://*.listrakbi.com https://*.searchspring.io https://*.doubleclick.net https://www.gstatic.com/ https://sandbox.api.cash.app/ https://site-assets.afterpay.com/ https://sandbox.web.squarecdn.com/ https://api.cash.app/ https://web.squarecdn.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ https://franklin-assets.s3.amazonaws.com/ https://static.sandbox.afterpay.com/ https://static.afterpay.com/ https://static.sandbox.afterpay.com/logo/ dhv2ziothpgrr.cloudfront.net *.facebook.com *.reddit.com *.ads-twitter.com t.co *.bing.net *.klaviyo.com *.google-analytics.com *.googletagmanager.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://*.googleapis.com *.gstatic.com www.google.com/recaptcha/ www.gstatic.com/recaptcha/ https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com https://*.moneris.com/ *.meetanshi.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com https://*.magentosite.cloud https://purdys.com https://*.purdys.com *.googletagmanager.com tagmanager.google.com *.google.com *.facebook.net unpkg.com https://*.searchspring.io https://acsbapp.com https://*.blob.core.windows.net https://*.listrakbi.com 'self' acsbapp.com *.bing.com *.calendly.com *.clarity.ms *.doubleclick.net *.googleadservices.com *.googleoptimize.com *.hotjar.com *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.listrak.com *.listrakbi.com *.paypalobjects.com *.pepperjam.com *.pinimg.com *.pinterest.com *.searchspring.net *.searchspring.io *.tctm.co *.tiktok.com *.twitter.com *.yotpo.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net sc-static.net https://purdys.local https://*.purdys.local https://*.hotjar.com https://*.azureedge.net https://*.licdn.com https://*.bing.com https://*.pinimg.com https://*.tctm.co 'unsafe-inline' https://js.squareup.com https://js.afterpay.com/ https://nd.squarecdn.com https://js.squareupsandbox.com https://sandbox.web.squarecdn.com https://web.squarecdn.com https://portal.sandbox.afterpay.com/ https://portal.afterpay.com/ https://cdn.plaid.com/ https://sandbox.kit.cash.app/ https://kit.cash.app/ dhv2ziothpgrr.cloudfront.net *.smsbump.com 7kgd3hs1oh.execute-api.us-east-1.amazonaws.com d18eg7dreypte5.cloudfront.net https://cdn.searchspring.net/intellisuggest/is.min.js *.cloudflare.com *.redditstatic.com *.reddit.com *.ads-twitter.com *.klaviyo.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.googleapis.com https://static.klaviyo.com https://*.moneris.com/ *.fontawesome.com maxcdn.bootstrapcdn.com 'unsafe-inline' assets.braintreegateway.com https://*.azureedge.net https://*.listrakbi.com https://*.yotpo.com *.cloudflare.com *.googletagmanager.com *.gstatic.com *.jsdelivr.net *.listrakbi.com *.azureedge.net *.blob.core.windows.net https://sandbox.web.squarecdn.com https://web.squarecdn.com https://sandbox.kit.cash.app/ https://kit.cash.app/ https://fonts.googleapis.com/ dhv2ziothpgrr.cloudfront.net *.tagmanager.google.com *.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com maps.googleapis.com maps.gstatic.com *.bing.com *.gstatic.com *.kaltura.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://*.googleapis.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ maps.googleapis.com maps.gstatic.com *.meetanshi.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com https://*.magentosite.cloud https://purdys.local https://*.purdys.local *.bing.com *.clarity.ms *.cloudflare.com *.doubleclick.net *.googleadservices.com *.googleoptimize.com *.googletagmanager.com *.hotjar.io *.inspectlet.com *.jsdelivr.net *.kaltura.com *.licdn.com *.pepperjam.com *.pinimg.com *.tctm.co acsbapp.com *.cloudfront.net *.azureedge.net *.blob.core.windows.net www.google.ae www.google.am www.google.at https://purdys.com https://*.purdys.com https://*.listrakbi.com https://*.acsbapp.com https://*.pinterest.com https://*.linkedin.com https://*.velaro.com https://*.nr-data.net https://*.searchspring.io https://*.doubleclick.net https://*.hotjar.com https://*.tiktok.com https://pci-connect.squareup.com https://pci-connect.squareupsandbox.com https://api.amplitude.com/ https://api.squareupsandbox.com/ https://api.squareup.com/ https://o160250.ingest.sentry.io/ https://api.lab.amplitude.com/sdk/vardata https://sandbox.plaid.com/ https://production.plaid.com/ dhv2ziothpgrr.cloudfront.net *.smsbump.com 7kgd3hs1oh.execute-api.us-east-1.amazonaws.com https://beacon.searchspring.io/beacon *.google-analytics.com *.analytics.google.com *.facebook.net *.redditstatic.com *.reddit.com *.tiktok.com *.twitter.com *.ads-twitter.com *.bing.net *.klaviyo.com *.run.app *.yotpo.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri https://f0d1d91f-01e4-4d5d-a8d9-5469b5b19d14.sansec.watch/; report-to report-endpoint;
x-content-type-options: nosniff
Content-Encoding: br
Accept-Ranges: bytes
Age: 4446
Date: Sun, 24 Aug 2025 10:14:57 GMT
X-Served-By: cache-iad-kjyo7100150-IAD, cache-iad-kjyo7100150-IAD, cache-tyo11961-TYO
X-Cache: MISS, HIT, MISS
X-Cache-Hits: 0, 36, 0
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding,Cookie
Strict-Transport-Security: max-age=31557600