sssmartspec/docs
Back to siteGitHub

Security

HTTPS, security headers (CSP, HSTS, X-Frame-Options), form protections.

Source module: security.ts

Rule IDs in this category are populated from the response headers actually returned by the target. Expect findings around missing CSP, missing HSTS, and HTTP-served assets on HTTPS pages.

Run just this category

smartspec audit https://example.com --categories security