Get an A–F grade for your site's HTTP security headers without leaving the terminal. Use it as a library, a CLI, or a CI gate that fails deploys on regression.
The flow goes like this:
Ship a deploy.
Alt-tab to securityheaders.com.
Paste in the URL.
Get an A–F grade for your site's HTTP security headers without leaving the terminal. Use it...
Get an A–F grade for your site's HTTP security headers without leaving the terminal. Use it as a library, a CLI, or a CI gate that fails deploys on regression.
The flow goes like this:
Ship a deploy.
Alt-tab to securityheaders.com.
Paste in the URL.

🛡️ I Built a Free HTTP Header Analyzer — and Most Sites Score an F A few months ago, I was...

If you run a website, your HTTP response headers are the first thing a browser sees before it renders...

Every web developer has had this moment: you check your app's response headers, see a wall of...

Your CI proves the app builds, the tests pass, and maybe that there are no known-vulnerable...

Your security scanner just came back with 6 flagged items. All missing HTTP headers. You did what...

TL;DR You can now paste any public GitHub repo URL and get a security grade back in...