HTTP/2 200
cache-control: private, no-cache
content-encoding: gzip
content-security-policy: default-src 'self' www.bestpractices.dev.global.ssl.fastly.net bestpractices.coreinfrastructure.org.global.ssl.fastly.net bestpractices.coreinfrastructure.org www.bestpractices.dev; base-uri 'self'; form-action 'self' www.bestpractices.dev.global.ssl.fastly.net bestpractices.coreinfrastructure.org.global.ssl.fastly.net bestpractices.coreinfrastructure.org www.bestpractices.dev; frame-ancestors 'none'; img-src 'self' www.bestpractices.dev.global.ssl.fastly.net bestpractices.coreinfrastructure.org.global.ssl.fastly.net bestpractices.coreinfrastructure.org www.bestpractices.dev secure.gravatar.com avatars.githubusercontent.com; object-src 'none'; script-src 'self' www.bestpractices.dev.global.ssl.fastly.net bestpractices.coreinfrastructure.org.global.ssl.fastly.net bestpractices.coreinfrastructure.org www.bestpractices.dev; style-src 'self' www.bestpractices.dev.global.ssl.fastly.net bestpractices.coreinfrastructure.org.global.ssl.fastly.net bestpractices.coreinfrastructure.org www.bestpractices.dev
content-type: text/html; charset=utf-8
feature-policy: fullscreen 'none'; geolocation 'none'; midi 'none';notifications 'none'; push 'none'; sync-xhr 'none'; microphone 'none';camera 'none'; magnetometer 'none'; gyroscope 'none'; speaker 'none';vibrate 'none'; payment 'none'
nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
permissions-policy: fullscreen=(), geolocation=(), midi=(), notifications=(), push=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), payment=()
referrer-policy: no-referrer-when-downgrade
report-to: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2Bxu0LU5DUgqAn5DRNhJ3BKXRtngbFJg0m%2FLbpXJuOWI%3D\u0026sid=af571f24-03ee-46d1-9f90-ab9030c2c74c\u0026ts=1766732434"}],"max_age":3600}
reporting-endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2Bxu0LU5DUgqAn5DRNhJ3BKXRtngbFJg0m%2FLbpXJuOWI%3D&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&ts=1766732434"
server: Heroku
set-cookie: _BadgeApp_session=R0hkU0pMK3p1U0MxdjdrZXdsb0lLZHV0YmJUbEFOd1phZVdRY2R1K25JVHhIcFRFUS9lSHlsQzlkamF6STVNZTV6eU5sekp1cWQrUm9lNGhGY1JSd3dYa2owNllUQ1djYnovR3dndzFVWUt6UDNBWFI4NDFpQkhjaGx5S0dKVXJacXNxeW1Xayt0U1BBMVRsb2U3ci9nPT0tLXZzcEd3aXUvRm5NZS82QVdIUFU2eXc9PQ%3D%3D--db865e457da9c77055e96ac0fd7252bf46e80fdc; path=/; secure; httponly
via: 1.1 heroku-router, 1.1 varnish
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: eeac1ce3-79bf-06af-569a-3d5427113e51
x-runtime: 0.013947
x-xss-protection: 1; mode=block
accept-ranges: bytes
date: Fri, 26 Dec 2025 07:00:34 GMT
x-served-by: cache-bom-vanm7210050-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1766732434.692129,VS0,VE712
vary: Accept-Encoding
strict-transport-security: max-age=300
BadgeApp
