Perform a basic security audit on your website and see what kind of vulnerabilities are affecting it.
96/100Astra Health Score
Security Audit Results
We detected suboptimal or unsafe practices on your website. Please see the list below for more details.
Content Security Policy (CSP) header not implemented Header Security Low DetailsDescription:
Our scanners were not able to detect Content Security Policy (CSP) header amongst the header returned by your site..
Anti-CSRF tokens set without using the SameSite flag Cookie Security Low DetailsDescription:
SameSite prevents the browser from sending this cookie along with cross-site requests. Risk of cross-origin information leakage can be mitigated by using SameSite cookies. Our scanners detected that your website is using Anti-CSRF tokens but is not using SameSite attributes. SameSite is a new standard actively enforced by web browsers and We recommend that you add SameSite cookie attribute to all sensitive cookies..
Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS HTTP Security Info DetailsDescription:
Subresource Integrity enables you to mitigate some risks of attacks by ensuring that the files your web application or web document fetches (from a CDN or anywhere) have been delivered without a third-party having injected any additional content into those files and without any other changes of any kind at all having been made to those files. Great job loading all scripts via HTTPS, Implementing SRI will help you make your website more secure..