jeremyckahn / chitchatter

Secure peer-to-peer chat that is serverless, decentralized, and ephemeral

https://chitchatter.im/

Security Report - 2023-11-06

github-actions opened this issue 7 months ago · comments

github-actions commented 7 months ago

Site: https://chitchatter.im
New Alerts
- CORS Misconfiguration [40040] total: 12:
- Content Security Policy (CSP) Header Not Set [10038] total: 2:
  - https://chitchatter.im/
  - https://chitchatter.im/sitemap.xml
- Cross-Domain Misconfiguration [10098] total: 8:
- Missing Anti-clickjacking Header [10020] total: 1:
  - https://chitchatter.im/
- Dangerous JS Functions [10110] total: 1:
  - https://chitchatter.im/static/js/main.47518670.js
- Permissions Policy Header Not Set [10063] total: 3:
- Strict-Transport-Security Header Not Set [10035] total: 8:
- Timestamp Disclosure - Unix [10096] total: 46:
- X-Content-Type-Options Header Missing [10021] total: 7:
- Information Disclosure - Suspicious Comments [10027] total: 2:
  - https://chitchatter.im/sitemap.xml
  - https://chitchatter.im/static/js/main.47518670.js
- Modern Web Application [10109] total: 2:
  - https://chitchatter.im/
  - https://chitchatter.im/sitemap.xml
- Re-examine Cache-control Directives [10015] total: 3:
- Retrieved from Cache [10050] total: 9:
- Storable and Cacheable Content [10049] total: 8:
- User Agent Fuzzer [10104] total: 36:

View the following link to download the report.
RunnerID:6764637718

Jeremy Kahn commented 7 months ago

Closing as a duplicate of #198.