Issues
- 1
Ignore OCSP checks for short-lived certificates
#41 opened by Seirdy - 0
- 0
- 0
- 0
nameserver check fails if subdomain is not 'www'
#36 opened by mejofi - 0
RSS and JSON feeds should return Access-Control-Allow-Origin header check should be reworked
#35 opened by sesh - 5
- 4
HSTS preload test fails on subdomains?
#22 opened by mejofi - 0
Leaky headers check expects the header to be set to something that looks like a version number
#34 opened by sesh - 5
Certificate revocation
#15 opened by Seirdy - 5
- 1
Stray " in X-XSS-Protection header test
#30 opened by mejofi - 5
SSL certificate tests not present in JSON output?
#28 opened by mejofi - 3
Request: Add version info to usage output
#29 opened by mejofi - 1
Parse error in Cache-Control max-age test?
#27 opened by mejofi - 5
- 1
SSL expiry tests fail on IPv6-only domains
#23 opened by mejofi - 1
CAA record fail for subdomain (such as 'www') when defined for domain as a whole?
#20 opened by mejofi - 2
`ready --doc` fails when installed via pipx
#25 opened by mejofi - 3
Test for 'security.txt' does not follow redirect?
#19 opened by mejofi - 3
'Expires' timestamp not checked in 'security.txt'?
#18 opened by mejofi - 1
- 2
- 0
RSS check should use beautifulsoup
#16 opened by sesh - 1
Check for correct DKIM setup
#5 opened by sesh - 0
Check for wildcards like http: and https: in CSP
#10 opened by sesh - 0
- 2
Caching policies
#11 opened by Seirdy - 3
Check for unnecessary HTML entities
#13 opened by Seirdy - 1
CAA extensions for account URI and method binding
#14 opened by Seirdy - 1
- 1
Extract content security policy from http-equiv
#7 opened by sesh - 0
- 0
- 0
- 0