HTTP/1.1 200 OKDate: Sun, 02 Sep 2018 17:07:09 GMTContent-Type: text/html; charset=UTF-8Connection: keep-aliveSet-Cookie: __cfduid=d4fa3a497ce5287c1a1dcc19d321c9aad1535908028; expires=Mon, 02-Sep-19 17:07:08 GMT; path=/; Domain=www.hackerone.com; HttpOnly; SecureCache-Control: max-age=300, publicX-Drupal-Dynamic-Cache: HITLink: ; rel="shortlink", ; rel="canonical"X-UA-Compatible: IE=edgeContent-language: enX-Frame-Options: DENYExpires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Fri, 31 Aug 2018 22:28:16 GMTETag: "1535754496"X-Generator: Drupal 8 (https://www.drupal.org)Content-Security-Policy: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src js.driftt.com www.youtube-nocookie.com app-sj17.marketo.com; connect-src 'self' distillery.wistia.com pipedream.wistia.com embedwistia-a.akamaihd.net *.litix.io embed-ssl.wistia.com hackerone.com *.mktoresp.com checkout.stripe.com; font-src 'self' data:; form-action 'self' syndication.twitter.com platform.twitter.com; frame-ancestors 'self'; frame-src fast.wistia.com js.driftt.com www.youtube.com www.youtube-nocookie.com app-sj17.marketo.com boards.greenhouse.io platform.twitter.com syndication.twitter.com checkout.stripe.com; object-src 'self'; img-src 'self' data: embedwistia-a.akamaihd.net fast.wistia.com www.google-analytics.com syndication.twitter.com platform.twitter.com *.twimg.com q.stripe.com cdn.bizible.com; media-src 'self' blob:; script-src 'self' fast.wistia.com js.driftt.com www.google-analytics.com app-sj17.marketo.com munchkin.marketo.net boards.greenhouse.io platform.twitter.com cdn.syndication.twimg.com checkout.stripe.com cdn.bizible.com; style-src 'self' 'unsafe-inline' app-sj17.marketo.com boards.greenhouse.io boards-use1-cdn.greenhouse.io platform.twitter.com checkout.stripe.com; report-uri https://errors.hackerone.net/api/30/csp-report/?sentry_key=61c1e2f50d21487c97a071737701f598X-Drupal-Cache: HITContent-Encoding: gzipX-Request-ID: v-f318c7a8-aed1-11e8-b60d-efb780a70a8fX-AH-Environment: prodX-Geo-Country: Vary: Cookie,Accept-Encoding,X-Geo-CountryReferrer-Policy: no-referrer-when-downgradeX-Content-Type-Options: nosniffX-Permitted-Cross-Domain-Policies: noneX-XSS-Protection: 1; mode=blockStrict-Transport-Security: max-age=31536000; includeSubDomains; preloadExpect-CT: enforce, max-age=31536000X-Varnish: 36908528 39393484Age: 290Via: 1.1 varnish (Varnish/5.2)X-Cache: HITX-Cache-Hits: 6Accept-Ranges: bytesServer: cloudflareCF-RAY: 454192393b748655-ARN