checker-http

History

Pierre-Olivier Mercier ffa3fbe1f9 checker: validate security.txt is a real RFC 9116 file The http.security_txt rule reported OK for any 200 response with a non-empty body, so a soft-404 (status 200 + HTML body) served for /.well-known/security.txt was misread as "published". Capture the response Content-Type and count the RFC 9116 required fields (Contact, Expires) in the body. OK now requires text/plain with at least one Contact and exactly one Expires; a non-conforming 200 yields a new Warn http.security_txt.invalid explaining the defect. Redirects are still followed and the final response is validated, per RFC 9116 §3.		2026-06-14 18:14:00 +09:00
..
collect.go	checker: build host FQDN from subdomain + apex at service scope	2026-04-30 08:57:31 +07:00
collect_test.go	Initial commit	2026-04-28 18:42:11 +07:00
collector.go	checker: validate security.txt is a real RFC 9116 file	2026-06-14 18:14:00 +09:00
collector_honeypot.go	checker: add honeypot-path collector and rules	2026-06-13 16:25:21 +09:00
collector_root.go	Initial commit	2026-04-28 18:42:11 +07:00
collector_wellknown.go	checker: validate security.txt is a real RFC 9116 file	2026-06-14 18:14:00 +09:00
definition.go	checker: build host FQDN from subdomain + apex at service scope	2026-04-30 08:57:31 +07:00
header_rule.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
interactive.go	Initial commit	2026-04-28 18:42:11 +07:00
iter.go	Initial commit	2026-04-28 18:42:11 +07:00
provider.go	Initial commit	2026-04-28 18:42:11 +07:00
provider_test.go	checker: build host FQDN from subdomain + apex at service scope	2026-04-30 08:57:31 +07:00
registry.go	Initial commit	2026-04-28 18:42:11 +07:00
rules.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_cookies.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_cookies_rfc6265bis.go	Add RFC 6265bis cookie checks: name prefixes and per-cookie size	2026-04-28 18:42:45 +07:00
rules_cookies_rfc6265bis_test.go	Add RFC 6265bis cookie checks: name prefixes and per-cookie size	2026-04-28 18:42:45 +07:00
rules_cookies_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_honeypot.go	checker: add honeypot-path collector and rules	2026-06-13 16:25:21 +09:00
rules_honeypot_test.go	checker: add honeypot-path collector and rules	2026-06-13 16:25:21 +09:00
rules_modern_headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_modern_headers_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_reachability.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_reachability_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_redirect.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_redirect_chain.go	Add redirect-chain rules per RFC 9110 §15.4	2026-04-28 18:42:54 +07:00
rules_redirect_chain_test.go	Add redirect-chain rules per RFC 9110 §15.4	2026-04-28 18:42:54 +07:00
rules_redirect_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_security_headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_security_headers_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_sri.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_sri_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_wellknown.go	checker: validate security.txt is a real RFC 9116 file	2026-06-14 18:14:00 +09:00
rules_wellknown_test.go	checker: validate security.txt is a real RFC 9116 file	2026-06-14 18:14:00 +09:00
service.go	checker: build host FQDN from subdomain + apex at service scope	2026-04-30 08:57:31 +07:00
testhelpers_test.go	Initial commit	2026-04-28 18:42:11 +07:00
types.go	checker: build host FQDN from subdomain + apex at service scope	2026-04-30 08:57:31 +07:00