This is a tricky one because sf-cdn.limango.com looks like a content delivery subdomain, possibly for the limango.com marketplace. The technical setup is fine — AWS CloudFront and valid encryption — but the problems start with transparency. The domain's WHOIS record returns nothing at all, meaning the owner has chosen to stay completely anonymous. There is no about page, no contact information, no social media presence, and no history in the Wayback Machine. For any site that handles user data or processes transactions, this level of opacity is a red flag.
Most established retailers or marketplaces have a clear company name, an imprint or legal notice, customer service contact, and a record of operation you can verify. Here, you have none of that. The site also blocks automated inspection, which makes independent verification harder. If you're considering using limango.com for shopping, the bigger question is whether the main site resolves these same issues. As for sf-cdn.limango.com specifically, there is not enough signal to confirm it is a scam, but there is also none of the evidence you would expect from a legitimate business. A reasonable rule: if you cannot find out who runs a site or how to contact them, you should not trust it with your information or payment.