scanner icon indicating copy to clipboard operation
scanner copied to clipboard
Published 2 months ago verified publisher icon caido-community

Add HSTS enforcement check (#163)

Open jthack opened this issue 2 months ago • 0 comments

Summary

  • ensure HTTPS responses expose a Strict-Transport-Security header
  • flag missing headers, weak max-age values, and absent includeSubDomains
  • register the passive check and enable it in the Balanced preset

Testing

  • pnpm lint
  • pnpm typecheck
  • pnpm test -- --match 'HSTS not enforced'

Closes #163

jthack avatar Oct 23 '25 17:10 jthack