CSP show missing even though it is configured. #102
Description
https://securityheaders.com/?q=https%3A%2F%2Fwww.prosper.com&followRedirects=on
The above analysis shows that the CSP is missing from our headers though it is set and can be seen in the response headers. It is shown in any other analyzers we have tried as in the below examples. I can't find any cause for this.
https://cspvalidator.org/#url=https://www.prosper.com
https://cspscanner.com/?q=https%3A%2F%2Fwww.prosper.com