Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-01-07 09:10:57 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1776 from drwetter/fix_1762_3.0

Browse Source 
Stop labeling X-XSS-Protection as green (3.0 branch)
This commit is contained in:
Dirk Wetter 2020-11-13 15:24:22 +01:00 committed by GitHub
commit d536c07b72
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
testssl.sh
View File

@ -3036,8 +3036,8 @@ run_cookie_flags() { # ARG1: Path
run_security_headers() {
local good_header="X-Frame-Options X-XSS-Protection X-Content-Type-Options Content-Security-Policy X-Content-Security-Policy X-WebKit-CSP Content-Security-Policy-Report-Only Expect-CT"
local other_header="Access-Control-Allow-Origin Upgrade X-Served-By Referrer-Policy X-UA-Compatible Cache-Control Pragma"
local good_header="X-Frame-Options X-Content-Type-Options Content-Security-Policy X-Content-Security-Policy X-WebKit-CSP Content-Security-Policy-Report-Only Expect-CT"
local other_header="Access-Control-Allow-Origin Upgrade X-Served-By Referrer-Policy X-UA-Compatible Cache-Control Pragma X-XSS-Protection"
local header header_output
local first=true
local spaces=" "
@ -3058,7 +3058,7 @@ run_security_headers() {
fi
# Include $header when determining where to insert line breaks, but print $header
# separately.
pr_svrty_good "$header"
pr_svrty_good "$header"; out ":"
header_output="$(out_row_aligned_max_width "${header:2} $HEADERVALUE" "$spaces " $TERM_WIDTH)"
outln "${header_output#${header:2}}"
fileout "$header" "OK" "$HEADERVALUE"
@ -3073,8 +3073,8 @@ run_security_headers() {
if "$first"; then
first=false
fi
pr_litecyan "$header"
outln " $HEADERVALUE" # shouldn't be that long
out "$header"
outln ": $HEADERVALUE" # shouldn't be that long
fileout "$header" "INFO" "$HEADERVALUE"
fi
done