ZAP Full Scan Report

[github-actions[bot]]

• Site: //localhost

• Site: http://localhost:3001 New Alerts

  • Cloud Metadata Potentially Exposed [90034] total: 1:
    • http://localhost:3001/latest/meta-data/
  • Content Security Policy (CSP) Header Not Set [10038] total: 4:
    • http://localhost:3001/console
    • http://localhost:3001/console/welcome
    • http://localhost:3001/robots.txt
    • http://localhost:3001/sitemap.xml
  • HTTP Only Site [10106] total: 1:
    • http://localhost:3001
  • Missing Anti-clickjacking Header [10020] total: 4:
    • http://localhost:3001/console
    • http://localhost:3001/console/welcome
    • http://localhost:3001/robots.txt
    • http://localhost:3001/sitemap.xml
  • Dangerous JS Functions [10110] total: 1:
    • http://localhost:3001/console/index.0d27b911.js
  • Permissions Policy Header Not Set [10063] total: 6:
    • http://localhost:3001/console
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/welcome
    • http://localhost:3001/index.a6d631cb.js
    • http://localhost:3001/robots.txt
    • ..
  • Timestamp Disclosure - Unix [10096] total: 15:
    • http://localhost:3001/index.a68549b1.css
    • http://localhost:3001/index.a6d631cb.js
    • http://localhost:3001/index.a6d631cb.js
    • http://localhost:3001/index.a6d631cb.js
    • http://localhost:3001/index.a6d631cb.js
    • ..
  • X-Content-Type-Options Header Missing [10021] total: 11:
    • http://localhost:3001/apple-touch-icon.0ef268e2.png
    • http://localhost:3001/console
    • http://localhost:3001/console/apple-touch-icon.0c1546b6.png
    • http://localhost:3001/console/index.25ac61b6.css
    • http://localhost:3001/console/index.33ccf51c.css
    • ..
  • Base64 Disclosure [10094] total: 3:
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/index.a68549b1.css
    • http://localhost:3001/index.a6d631cb.js
  • Information Disclosure - Suspicious Comments [10027] total: 10:
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/index.0d27b911.js
    • ..
  • Modern Web Application [10109] total: 6:
    • http://localhost:3001/console
    • http://localhost:3001/console/index.0d27b911.js
    • http://localhost:3001/console/welcome
    • http://localhost:3001/index.a6d631cb.js
    • http://localhost:3001/robots.txt
    • ..
  • Non-Storable Content [10049] total: 3:
    • http://localhost:3001
    • http://localhost:3001/
    • http://localhost:3001/welcome
  • Storable and Cacheable Content [10049] total: 2:
    • http://localhost:3001/apple-touch-icon.0ef268e2.png
    • http://localhost:3001/index.a68549b1.css
  • Storable but Non-Cacheable Content [10049] total: 4:
    • http://localhost:3001/console
    • http://localhost:3001/console/welcome
    • http://localhost:3001/robots.txt
    • http://localhost:3001/sitemap.xml
  • User Agent Fuzzer [10104] total: 21:
    • http://localhost:3001
    • http://localhost:3001
    • http://localhost:3001
    • http://localhost:3001
    • http://localhost:3001
    • ..

View the following link to download the report. RunnerID:2709405042