USEPA/cam-api-portal

ZAP Scan Baseline Report

github-actions opened this issue 2 years ago · 2 comments

github-actions commented 2 years ago

Site: http://localhost:9080
New Alerts
- Content Security Policy (CSP) Header Not Set [10038] total: 3:
- Missing Anti-clickjacking Header [10020] total: 1:
  - http://localhost:9080
- Dangerous JS Functions [10110] total: 1:
  - http://localhost:9080/static/js/main.a65c9234.js
- In Page Banner Information Leak [10009] total: 2:
  - http://localhost:9080/robots.txt
  - http://localhost:9080/sitemap.xml
- Permissions Policy Header Not Set [10063] total: 4:
- Server Leaks Version Information via "Server" HTTP Response Header Field [10036] total: 5:
- Timestamp Disclosure - Unix [10096] total: 35:
- X-Content-Type-Options Header Missing [10021] total: 3:
- Information Disclosure - Suspicious Comments [10027] total: 1:
  - http://localhost:9080/static/js/main.a65c9234.js
- Modern Web Application [10109] total: 2:
  - http://localhost:9080
  - http://localhost:9080/static/js/main.a65c9234.js
- Storable and Cacheable Content [10049] total: 5:

View the following link to download the report.
RunnerID:3420526965

github-actions commented 2 years ago

Site: http://localhost:9080
Resolved Alerts
- Missing Anti-clickjacking Header [10020] total: 1:

View the following link to download the report.
RunnerID:3473458794

github-actions commented 2 years ago

Site: http://localhost:9080
New Alerts
- Missing Anti-clickjacking Header [10020] total: 1:
  - http://localhost:9080

View the following link to download the report.
RunnerID:3473469263