{ "scan": { "algorithmVersion": 4, "grade": "B", "error": null, "score": 75, "statusCode": 200, "testsFailed": 2, "testsPassed": 8, "testsQuantity": 10, "responseHeaders": { "date": "Sun, 31 May 2026 04:31:18 GMT", "server": "Taleo Web Server", "strict-transport-security": "max-age=63072000;includeSubDomains", "content-security-policy": "upgrade-insecure-requests;frame-ancestors 'self' *.facebook.com *.tbe.com;", "referrer-policy": "no-referrer-when-downgrade", "x-xss-protection": "1", "x-content-type-options": "nosniff", "cache-control": "no-cache", "content-type": "text/html;charset=UTF-8", "set-cookie": [ "JSESSIONID=11B688B7E95959752A995000336DE364.TC_1072307_1072312; Path=/; Secure; HttpOnly;SameSite=None;Secure;", "ORA_OTSS_SESSION_ID=0c62cf24ce48c8560a9cf3c6e11033d3f3b938fdd6e16cb4cf8118e9d743fffe.aa254.frac1a-app-001.a.frac.oraclevcn.com; Path=/; Secure; HttpOnly;SameSite=None;Secure;" ], "connection": "close", "transfer-encoding": "chunked" } }, "tests": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "pass": false, "result": "csp-implemented-with-unsafe-inline", "scoreModifier": -20, "data": { "upgrade-insecure-requests": [ "'none'" ], "frame-ancestors": [ "'self'", "*.facebook.com", "*.tbe.com" ] }, "http": true, "meta": false, "policy": { "antiClickjacking": true, "defaultNone": false, "insecureBaseUri": true, "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, "unsafeInline": true, "unsafeInlineStyle": true, "unsafeObjects": true }, "numPolicies": 1 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "pass": true, "result": "cookies-secure-with-httponly-sessions-and-samesite", "scoreModifier": 5, "data": { "JSESSIONID": { "domain": "jobs.eea.europa.eu", "httponly": true, "path": "/", "port": null, "samesite": "none", "secure": true }, "ORA_OTSS_SESSION_ID": { "domain": "jobs.eea.europa.eu", "httponly": true, "path": "/", "port": null, "samesite": "none", "secure": true } }, "sameSite": true }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", "pass": true, "result": "cross-origin-resource-sharing-not-implemented", "scoreModifier": 0, "data": null }, "redirection": { "expectation": "redirection-to-https", "pass": true, "result": "redirection-to-https", "scoreModifier": 0, "destination": "https://jobs.eea.europa.eu/", "redirects": true, "route": [ "http://jobs.eea.europa.eu/", "https://jobs.eea.europa.eu/" ], "statusCode": 200 }, "referrer-policy": { "expectation": "referrer-policy-private", "pass": false, "result": "referrer-policy-unsafe", "scoreModifier": -5, "data": "no-referrer-when-downgrade", "http": true, "meta": false }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "pass": true, "result": "hsts-implemented-max-age-at-least-six-months", "scoreModifier": 0, "data": "max-age=63072000;includeSubDomains", "includeSubDomains": true, "maxAge": 63072000, "preload": false, "preloaded": false }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "pass": true, "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", "scoreModifier": 0, "data": {} }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "pass": true, "result": "x-content-type-options-nosniff", "scoreModifier": 0, "data": "nosniff" }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "pass": true, "result": "x-frame-options-implemented-via-csp", "scoreModifier": 5, "data": null }, "cross-origin-resource-policy": { "expectation": "corp-implemented-with-same-site", "pass": true, "result": "corp-not-implemented", "scoreModifier": 0, "data": null, "http": false, "meta": false } } }