Summary of github.com [Desktop version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Dec 6th, 2025 22:53 GMT+0
Server IP:140.82.112.4
Reverse DNS:lb-140-82-112-4-iad.github.com
Location:Mount Hope, United States
Version:for desktop
Your final score:
- A
- B
- C
- F
A
This test was made 115 days ago and may be outdated
Refresh Test
Executive Summary for github.com
- 3 third-party web software dependancies were identified, including 2 outdated dependancies. No known vulnerabilities were detected. One identified third-party web software dependancy has an unknown version. The identified CMS (CMS Netcat) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: lit-html, react. Show details.
- No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. The following checks were not performed, as no corresponding cookies with personal or tracking information seem to be sent by the website: Cookie Protection, Cookie Disclaimer. Show details.
- The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
- Issues were identified with key security header misconfigured Content-Security-Policy. Optional HTTP headers appear to be properly configured: Server, Referrer-Policy, Cache-Control. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
- Content-Security-Policy is enforced and appears to be properly configured. A report-only Content-Security-Policy is not present. Show details.
- 3 cookies detected; _octo have security or privacy-related configuration issues. Show details.
- 109 external requests detected; all requests completed successfully. SRI is not used for 83 third-party JavaScript and CSS files. Show details.
- No significant anti-scraping protections were detected. Show details.
- DNS A record detected; DNSSEC signatures are not present. Show details.
