Issues: mozilla/http-observatory
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Problematic advice regarding cookies with HSTS without secure flag
security
An issue that relates to the content of the security recommendations in Observatory
#515
opened Dec 15, 2023 by
hannob
Set-cookie: HttpOnly flag seems to misinterpreted by Observatory checks
#513
opened Sep 25, 2023 by
ArtM01
Blank http-equiv causes CSP test to fail with 'csp-header-invalid'
#492
opened Jan 25, 2023 by
cuibonobo
CSP in <meta> is not analyzed when sent together with CSP in header
#489
opened Nov 14, 2022 by
rw-AntoniRoszak
Don't recommend "Deny by default" when prefetch-src is experimental
#463
opened Feb 28, 2022 by
carlin-q-scott
Absence of scripts or cookies should not be worth fewer points than secure cookies/scripts
#449
opened Aug 1, 2021 by
Seirdy
Warn if "Server" header reveals software version
feature request
#443
opened May 7, 2021 by
JeremyRand
Previous Next
ProTip!
no:milestone will show everything without a milestone.