{ "scan": { "algorithmVersion": 4, "grade": "D-", "error": null, "score": 25, "statusCode": 200, "testsFailed": 2, "testsPassed": 8, "testsQuantity": 10, "responseHeaders": { "date": "Sun, 09 Nov 2025 08:03:54 GMT", "content-type": "text/html;charset=UTF-8", "transfer-encoding": "chunked", "connection": "close", "cache-control": "no-store", "pragma": "", "expires": "", "strict-transport-security": "max-age=31536000; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-xss-protection": "1; mode=block", "content-language": "en" } }, "tests": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "pass": false, "result": "csp-not-implemented", "scoreModifier": -25, "data": null, "http": false, "meta": false, "policy": null, "numPolicies": 0 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "pass": true, "result": "cookies-not-found", "scoreModifier": 0, "data": null, "sameSite": false }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", "pass": true, "result": "cross-origin-resource-sharing-not-implemented", "scoreModifier": 0, "data": null }, "redirection": { "expectation": "redirection-to-https", "pass": true, "result": "redirection-to-https", "scoreModifier": 0, "destination": "https://sso.eionet.europa.eu/login", "redirects": true, "route": [ "http://sso.eionet.europa.eu/", "https://sso.eionet.europa.eu/", "https://sso.eionet.europa.eu/login" ], "statusCode": 200 }, "referrer-policy": { "expectation": "referrer-policy-private", "pass": true, "result": "referrer-policy-not-implemented", "scoreModifier": 0, "data": null, "http": false, "meta": false }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "pass": true, "result": "hsts-implemented-max-age-at-least-six-months", "scoreModifier": 0, "data": "max-age=31536000; includeSubDomains", "includeSubDomains": true, "maxAge": 31536000, "preload": false, "preloaded": false }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "pass": false, "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", "scoreModifier": -50, "data": { "//cdnjs.cloudflare.com/ajax/libs/zxcvbn/4.3.0/zxcvbn.js": { "crossorigin": null, "integrity": null }, "//ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js": { "crossorigin": null, "integrity": null }, "//ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js": { "crossorigin": null, "integrity": null }, "//cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js": { "crossorigin": null, "integrity": null }, "//cdnjs.cloudflare.com/ajax/libs/headjs/1.0.3/head.min.js": { "crossorigin": null, "integrity": null } } }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "pass": true, "result": "x-content-type-options-nosniff", "scoreModifier": 0, "data": "nosniff" }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "pass": true, "result": "x-frame-options-sameorigin-or-deny", "scoreModifier": 0, "data": "SAMEORIGIN" }, "cross-origin-resource-policy": { "expectation": "corp-implemented-with-same-site", "pass": true, "result": "corp-not-implemented", "scoreModifier": 0, "data": null, "http": false, "meta": false } } }