{ "scan": { "algorithmVersion": 4, "grade": "C", "error": null, "score": 55, "statusCode": 200, "testsFailed": 3, "testsPassed": 7, "testsQuantity": 10, "responseHeaders": { "server": "nginx/1.25.3", "date": "Mon, 14 Jul 2025 08:16:12 GMT", "content-type": "text/html", "content-length": "7818", "last-modified": "Fri, 19 Jan 2024 14:02:18 GMT", "connection": "close", "etag": "\"65aa80ea-1e8a\"", "cache-control": "no-cache", "accept-ranges": "bytes", "content-security-policy": "default-src 'self' 'unsafe-inline' 'unsafe-eval' *.eea.europa.eu *.eionet.europa.eu ; media-src 'self' *.eea.europa.eu *.eionet.europa.eu data: blob: ; frame-src 'self' *.eea.europa.eu *.eionet.europa.eu data: blob: ; img-src * 'self' 'unsafe-inline' 'unsafe-eval' data: blob:;", "access-control-allow-origin": "*" } }, "tests": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "pass": true, "result": "csp-implemented-with-no-unsafe-default-src-none", "scoreModifier": 10, "data": { "default-src": [ "'none'" ], "media-src": [ "blob:", "data:" ], "frame-src": [ "blob:", "data:" ], "img-src": [ "*", "blob:", "data:" ], "style-src": [ "'none'" ], "script-src": [ "'none'" ], "connect-src": [ "'none'" ], "font-src": [ "'none'" ], "child-src": [ "'none'" ], "worker-src": [ "'none'" ], "form-action": [ "'none'" ], "manifest-src": [ "'none'" ] }, "http": true, "meta": true, "policy": { "antiClickjacking": false, "defaultNone": true, "insecureBaseUri": true, "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, "unsafeInline": false, "unsafeInlineStyle": false, "unsafeObjects": false }, "numPolicies": 2 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "pass": true, "result": "cookies-not-found", "scoreModifier": 0, "data": null, "sameSite": false }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", "pass": true, "result": "cross-origin-resource-sharing-not-implemented", "scoreModifier": 0, "data": null }, "redirection": { "expectation": "redirection-to-https", "pass": true, "result": "redirection-not-needed-no-http", "scoreModifier": 0, "destination": null, "redirects": true, "route": [], "statusCode": null }, "referrer-policy": { "expectation": "referrer-policy-private", "pass": true, "result": "referrer-policy-private", "scoreModifier": 5, "data": "no-referrer", "http": false, "meta": true }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "pass": false, "result": "hsts-not-implemented", "scoreModifier": -20, "data": null, "includeSubDomains": false, "maxAge": null, "preload": false, "preloaded": false }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "pass": true, "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", "scoreModifier": 0, "data": {} }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "pass": false, "result": "x-content-type-options-not-implemented", "scoreModifier": -5, "data": null }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "pass": false, "result": "x-frame-options-not-implemented", "scoreModifier": -20, "data": null }, "cross-origin-resource-policy": { "expectation": "corp-implemented-with-same-site", "pass": true, "result": "corp-not-implemented", "scoreModifier": 0, "data": null, "http": false, "meta": false } } }