{ "scan": { "algorithmVersion": 4, "grade": "B-", "error": null, "score": 65, "statusCode": 200, "testsFailed": 2, "testsPassed": 8, "testsQuantity": 10, "responseHeaders": { "date": "Sat, 12 Jul 2025 08:45:02 GMT", "server": "Apache/2.4.62 (Unix) OpenSSL/3.0.15", "x-frame-options": "SAMEORIGIN", "x-xss-protection": "1; mode=block", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-permitted-cross-domain-policies": "none", "referrer-policy": "strict-origin-when-cross-origin", "content-type": "text/html; charset=utf-8", "etag": "W/\"5ee7ab1e06571bc78cd091bb291ba8c2\"", "cache-control": "max-age=0, private, must-revalidate", "x-request-id": "09897429-65fe-44bf-8edc-6e811bb8487f", "x-runtime": "0.221545", "set-cookie": [ "_redmine_session=SEFWM3orcWhsL29uNGdiVzhic2p1TFEvMVUxLzBocSt6cUo0T0ZYQ0xOdVVaZk1rb0FmZjVtamVQbHpzK3Y4N3V6UlBEQUtCbHJVNFc2ZzNJWUN1aGVzWFhqeFNrSXhyMU4zWjB3dVNiSjZXa21Vc21idnlhR2lBYWZTZWF0eE9hZzdKVnpZQ2VWY3pWNHFsMGNxKzlFWDhrQVZ0UzdaV04zeXZyRFNnU3VRRzYwektzaHNHYUw2dlh5VUlxQmptLS1OWGNrV0Ria25yd1pDclpWWFRrRFNBPT0%3D--18ebb18ad573b214828df0c30fafbc854fcbc6f9; path=/; HttpOnly; SameSite=Lax" ], "strict-transport-security": "max-age=15780000;", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "connection": "close" } }, "tests": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "pass": false, "result": "csp-not-implemented", "scoreModifier": -25, "data": null, "http": false, "meta": false, "policy": null, "numPolicies": 0 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "pass": false, "result": "cookies-session-without-secure-flag-but-protected-by-hsts", "scoreModifier": -10, "data": { "_redmine_session": { "domain": "taskman.eionet.europa.eu", "httponly": true, "path": "/", "port": null, "samesite": "lax" } }, "sameSite": false }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", "pass": true, "result": "cross-origin-resource-sharing-not-implemented", "scoreModifier": 0, "data": null }, "redirection": { "expectation": "redirection-to-https", "pass": true, "result": "redirection-to-https", "scoreModifier": 0, "destination": "https://taskman.eionet.europa.eu/", "redirects": true, "route": [ "http://taskman.eionet.europa.eu/", "https://taskman.eionet.europa.eu/" ], "statusCode": 200 }, "referrer-policy": { "expectation": "referrer-policy-private", "pass": true, "result": "referrer-policy-private", "scoreModifier": 5, "data": "strict-origin-when-cross-origin", "http": true, "meta": false }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "pass": true, "result": "hsts-implemented-max-age-at-least-six-months", "scoreModifier": 0, "data": "max-age=15780000;", "includeSubDomains": false, "maxAge": 15780000, "preload": false, "preloaded": false }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "pass": true, "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", "scoreModifier": 0, "data": {} }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "pass": true, "result": "x-content-type-options-nosniff", "scoreModifier": 0, "data": "nosniff" }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "pass": true, "result": "x-frame-options-sameorigin-or-deny", "scoreModifier": 0, "data": "SAMEORIGIN" }, "cross-origin-resource-policy": { "expectation": "corp-implemented-with-same-site", "pass": true, "result": "corp-not-implemented", "scoreModifier": 0, "data": null, "http": false, "meta": false } } }