checker-http

History

Pierre-Olivier Mercier 603e93355b Deepen CSP, Permissions-Policy and cookie audits Detect CSP weaknesses individually (unsafe-inline, unsafe-eval, missing default-src/script-src, permissive sources on script-src or its default-src fallback) instead of a single catch-all "unsafe" code, and honour CSP3 fetch-directive fallback via EffectiveSources/WildcardSource helpers. Validate Permissions-Policy values: warn when a powerful feature (camera, microphone, geolocation, payment, sensors, …) is granted to all origins. Add a SameSite aggregate state on cookie audits so callers get the global ratio alongside per-cookie diagnostics.		2026-04-28 18:43:07 +07:00
..
collect.go	Add redirect-chain rules per RFC 9110 §15.4	2026-04-28 18:42:54 +07:00
collect_test.go	Initial commit	2026-04-28 18:42:11 +07:00
collector.go	Initial commit	2026-04-28 18:42:11 +07:00
collector_root.go	Initial commit	2026-04-28 18:42:11 +07:00
collector_wellknown.go	Initial commit	2026-04-28 18:42:11 +07:00
definition.go	Initial commit	2026-04-28 18:42:11 +07:00
header_rule.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
interactive.go	Initial commit	2026-04-28 18:42:11 +07:00
iter.go	Initial commit	2026-04-28 18:42:11 +07:00
provider.go	Initial commit	2026-04-28 18:42:11 +07:00
provider_test.go	Initial commit	2026-04-28 18:42:11 +07:00
registry.go	Initial commit	2026-04-28 18:42:11 +07:00
rules.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_cookies.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_cookies_rfc6265bis.go	Add RFC 6265bis cookie checks: name prefixes and per-cookie size	2026-04-28 18:42:45 +07:00
rules_cookies_rfc6265bis_test.go	Add RFC 6265bis cookie checks: name prefixes and per-cookie size	2026-04-28 18:42:45 +07:00
rules_cookies_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_modern_headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_modern_headers_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_reachability.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_reachability_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_redirect.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_redirect_chain.go	Add redirect-chain rules per RFC 9110 §15.4	2026-04-28 18:42:54 +07:00
rules_redirect_chain_test.go	Add redirect-chain rules per RFC 9110 §15.4	2026-04-28 18:42:54 +07:00
rules_redirect_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_security_headers.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_security_headers_test.go	Deepen CSP, Permissions-Policy and cookie audits	2026-04-28 18:43:07 +07:00
rules_sri.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_sri_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_test.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_wellknown.go	Initial commit	2026-04-28 18:42:11 +07:00
rules_wellknown_test.go	Initial commit	2026-04-28 18:42:11 +07:00
service.go	Initial commit	2026-04-28 18:42:11 +07:00
testhelpers_test.go	Initial commit	2026-04-28 18:42:11 +07:00
types.go	Add RFC 6265bis cookie checks: name prefixes and per-cookie size	2026-04-28 18:42:45 +07:00