{
  "scan": {
    "algorithmVersion": 4,
    "grade": "B",
    "error": null,
    "score": 75,
    "statusCode": 200,
    "testsFailed": 2,
    "testsPassed": 8,
    "testsQuantity": 10,
    "responseHeaders": {
      "server": "nginx/1.29.0",
      "date": "Thu, 14 May 2026 04:23:29 GMT",
      "content-type": "text/html; charset=utf-8",
      "content-security-policy": "img-src 'self'; script-src 'self' http://cdnjs.cloudflare.com http://code.jquery.com https://matomo.eea.europa.eu cdn.ravenjs.com 'nonce-H3zchXKG2ZbHwQKBE4JRNg=='; style-src 'self' http://cdnjs.cloudflare.com http://code.jquery.com http://maxcdn.bootstrapcdn.com 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-p08VBe6m5i8+qtXWjnH/AN3klt1l4uoOLsjNn8BjdQo=' 'nonce-H3zchXKG2ZbHwQKBE4JRNg=='; default-src 'self'",
      "x-frame-options": "DENY",
      "referrer-policy": "same-origin",
      "strict-transport-security": "max-age=31536000; includeSubDomains; preload",
      "x-content-type-options": "nosniff",
      "x-xss-protection": "1; mode=block",
      "vary": "Origin, Accept-Encoding",
      "transfer-encoding": "chunked",
      "connection": "close"
    }
  },
  "tests": {
    "content-security-policy": {
      "expectation": "csp-implemented-with-no-unsafe",
      "pass": false,
      "result": "csp-implemented-with-insecure-scheme",
      "scoreModifier": -20,
      "data": {
        "img-src": [
          "'self'"
        ],
        "script-src": [
          "'nonce-h3zchxkg2zbhwqkbe4jrng=='",
          "'self'",
          "cdn.ravenjs.com",
          "http://cdnjs.cloudflare.com",
          "http://code.jquery.com",
          "https://matomo.eea.europa.eu"
        ],
        "style-src": [
          "'nonce-h3zchxkg2zbhwqkbe4jrng=='",
          "'self'",
          "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='",
          "'sha256-p08vbe6m5i8+qtxwjnh/an3klt1l4uoolsjnn8bjdqo='",
          "http://cdnjs.cloudflare.com",
          "http://code.jquery.com",
          "http://maxcdn.bootstrapcdn.com"
        ],
        "default-src": [
          "'self'"
        ]
      },
      "http": true,
      "meta": false,
      "policy": {
        "antiClickjacking": false,
        "defaultNone": false,
        "insecureBaseUri": true,
        "insecureFormAction": true,
        "insecureSchemeActive": true,
        "insecureSchemePassive": false,
        "strictDynamic": false,
        "unsafeEval": false,
        "unsafeInline": false,
        "unsafeInlineStyle": false,
        "unsafeObjects": false
      },
      "numPolicies": 1
    },
    "cookies": {
      "expectation": "cookies-secure-with-httponly-sessions",
      "pass": true,
      "result": "cookies-not-found",
      "scoreModifier": 0,
      "data": null,
      "sameSite": false
    },
    "cross-origin-resource-sharing": {
      "expectation": "cross-origin-resource-sharing-not-implemented",
      "pass": true,
      "result": "cross-origin-resource-sharing-not-implemented",
      "scoreModifier": 0,
      "data": null
    },
    "redirection": {
      "expectation": "redirection-to-https",
      "pass": true,
      "result": "redirection-to-https",
      "scoreModifier": 0,
      "destination": "https://cis2.eea.europa.eu/about",
      "redirects": true,
      "route": [
        "http://cis2.eea.europa.eu/",
        "https://cis2.eea.europa.eu/",
        "https://cis2.eea.europa.eu/about"
      ],
      "statusCode": 200
    },
    "referrer-policy": {
      "expectation": "referrer-policy-private",
      "pass": true,
      "result": "referrer-policy-private",
      "scoreModifier": 5,
      "data": "same-origin",
      "http": true,
      "meta": false
    },
    "strict-transport-security": {
      "expectation": "hsts-implemented-max-age-at-least-six-months",
      "pass": true,
      "result": "hsts-implemented-max-age-at-least-six-months",
      "scoreModifier": 0,
      "data": "max-age=31536000; includeSubDomains; preload",
      "includeSubDomains": true,
      "maxAge": 31536000,
      "preload": true,
      "preloaded": false
    },
    "subresource-integrity": {
      "expectation": "sri-implemented-and-external-scripts-loaded-securely",
      "pass": false,
      "result": "sri-not-implemented-but-external-scripts-loaded-securely",
      "scoreModifier": -5,
      "data": {
        "https://cdn.ravenjs.com/3.17.0/raven.min.js": {
          "crossorigin": "anonymous",
          "integrity": null
        }
      }
    },
    "x-content-type-options": {
      "expectation": "x-content-type-options-nosniff",
      "pass": true,
      "result": "x-content-type-options-nosniff",
      "scoreModifier": 0,
      "data": "nosniff"
    },
    "x-frame-options": {
      "expectation": "x-frame-options-sameorigin-or-deny",
      "pass": true,
      "result": "x-frame-options-sameorigin-or-deny",
      "scoreModifier": 0,
      "data": "DENY"
    },
    "cross-origin-resource-policy": {
      "expectation": "corp-implemented-with-same-site",
      "pass": true,
      "result": "corp-not-implemented",
      "scoreModifier": 0,
      "data": null,
      "http": false,
      "meta": false
    }
  }
}