ZAP: frontend #1009

github-actions · 2024-04-22T19:21:57Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
New Alerts
- CSP: Wildcard Directive [10055] total: 3:
- CSP: script-src unsafe-inline [10055] total: 3:
- Proxy Disclosure [40025] total: 10:
- Cookie with SameSite Attribute None [10054] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/
- Permissions Policy Header Not Set [10063] total: 5:
- Timestamp Disclosure - Unix [10096] total: 14:
- Base64 Disclosure [10094] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-Etl1qs0q.css
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-sZCDJ6kU.js
- Cookie Slack Detector [90027] total: 10:
- Information Disclosure - Suspicious Comments [10027] total: 9:
- Modern Web Application [10109] total: 3:
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:8789676401

ZAP is supported by the Crash Override Open Source Fellowship

github-actions · 2024-05-25T11:18:59Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
Resolved Alerts
- Permissions Policy Header Not Set [10063] total: 5:
- Base64 Disclosure [10094] total: 2:
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:9235047556

github-actions · 2024-06-08T11:08:16Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
New Alerts
- Permissions Policy Header Not Set [10063] total: 5:
- Base64 Disclosure [10094] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-BbJcEBxy.js
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-DrjEhotR.css
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:9428274353

github-actions · 2024-06-22T11:08:06Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
Resolved Alerts
- Permissions Policy Header Not Set [10063] total: 5:
- Base64 Disclosure [10094] total: 2:
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:9625004133

github-actions · 2024-07-06T11:08:05Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
New Alerts
- Permissions Policy Header Not Set [10063] total: 5:
- Base64 Disclosure [10094] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-BakOgAP8.css
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-C8U2C8af.js
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:9818777828

github-actions · 2024-07-22T21:19:27Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
Resolved Alerts
- CSP: Wildcard Directive [10055] total: 3:
- CSP: script-src unsafe-inline [10055] total: 3:
- Cookie with SameSite Attribute None [10054] total: 2:
- Permissions Policy Header Not Set [10063] total: 5:
- Timestamp Disclosure - Unix [10096] total: 14:
- Base64 Disclosure [10094] total: 2:
- Information Disclosure - Suspicious Comments [10027] total: 8:
- Modern Web Application [10109] total: 3:
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 3:

View the following link to download the report.
RunnerID:10048387724

github-actions · 2024-07-22T22:44:09Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
New Alerts
- CSP: Wildcard Directive [10055] total: 3:
- CSP: script-src unsafe-inline [10055] total: 3:
- Cookie with SameSite Attribute None [10054] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/
- Timestamp Disclosure - Unix [10096] total: 14:
- Information Disclosure - Suspicious Comments [10027] total: 8:
- Modern Web Application [10109] total: 3:

View the following link to download the report.
RunnerID:10049374456

github-actions · 2024-07-23T21:15:47Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
Resolved Alerts
- CSP: Wildcard Directive [10055] total: 3:
- CSP: script-src unsafe-inline [10055] total: 3:
- Cookie with SameSite Attribute None [10054] total: 2:
- Timestamp Disclosure - Unix [10096] total: 14:
- Information Disclosure - Suspicious Comments [10027] total: 8:
- Modern Web Application [10109] total: 3:

View the following link to download the report.
RunnerID:10049926680

github-actions · 2024-07-27T11:13:25Z

Site: https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
New Alerts
- CSP: Wildcard Directive [10055] total: 3:
- CSP: script-src unsafe-inline [10055] total: 3:
- Cookie with SameSite Attribute None [10054] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/
- Permissions Policy Header Not Set [10063] total: 5:
- Timestamp Disclosure - Unix [10096] total: 14:
- Base64 Disclosure [10094] total: 2:
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-DhjvuMC7.css
  - https://nr-spar-test-frontend.apps.silver.devops.gov.bc.ca/assets/index-ovw2vb2j.js
- Information Disclosure - Suspicious Comments [10027] total: 8:
- Modern Web Application [10109] total: 3:
- Non-Storable Content [10049] total: 9:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Session Management Response Identified [10112] total: 5:

View the following link to download the report.
RunnerID:10123016270

DerekRoberts pinned this issue Apr 22, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ZAP: frontend #1009

ZAP: frontend #1009

github-actions bot commented Apr 22, 2024

github-actions bot commented May 25, 2024

github-actions bot commented Jun 8, 2024

github-actions bot commented Jun 22, 2024

github-actions bot commented Jul 6, 2024

github-actions bot commented Jul 22, 2024

github-actions bot commented Jul 22, 2024

github-actions bot commented Jul 23, 2024

github-actions bot commented Jul 27, 2024

ZAP: frontend #1009

ZAP: frontend #1009

Comments

github-actions bot commented Apr 22, 2024

github-actions bot commented May 25, 2024

github-actions bot commented Jun 8, 2024

github-actions bot commented Jun 22, 2024

github-actions bot commented Jul 6, 2024

github-actions bot commented Jul 22, 2024

github-actions bot commented Jul 22, 2024

github-actions bot commented Jul 23, 2024

github-actions bot commented Jul 27, 2024