Perform a basic security audit on your website and see what kind of vulnerabilities are affecting it.
5/100Astra Health Score
Security Audit Results
We detected suboptimal or unsafe practices on your website. Please see the list below for more details.
Csp Implemented With Unsafe Inline Best Practice Medium DetailsDescription:
Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src..
Hsts Implemented Max Age Less Than Six Months Best Practice Medium DetailsDescription:
HTTP Strict Transport Security (HSTS) header set to less than six months (15768000).
Sri Not Implemented And External Scripts Not Loaded Securely Best Practice Medium DetailsDescription:
Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src="//...".
X Content Type Options Not Implemented Best Practice Medium DetailsDescription:
X-Content-Type-Options header not implemented.
X Xss Protection Not Implemented Best Practice Medium DetailsDescription:
X-XSS-Protection header not implemented.