Summary of spacelift.io [Mobile version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Apr 7th, 2025 02:36 GMT+0
Server IP:3.162.3.15
Reverse DNS:server-3-162-3-15.yul62.r.cloudfront.net
Location:N/A, United States
Version:for iPhone 6
Your final score:
- A
- B
- C
- F
A
This test was made 362 days ago and may be outdated
Refresh Test
Executive Summary for spacelift.io
- One third-party web software dependancy was identified; its version could not be determined. The identified CMS (WordPress) appears to be up to date. No Software Components were fingerprinted. Show details.
- No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. The following checks were not performed, as no corresponding cookies with personal or tracking information seem to be sent by the website: Cookie Protection, Cookie Disclaimer. Show details.
- The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
- Issues were identified with key security headers: missing Content-Security-Policy; misconfigured Strict-Transport-Security. Optional HTTP headers appear to be properly configured: Server, Permissions-Policy, Referrer-Policy, Cache-Control. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
- Content-Security-Policy is enforced but configuration issues were identified: overly permissive directives, directive errors. A report-only Content-Security-Policy is not present. Show details.
- No cookies were detected. Show details.
- 72 external requests detected; 3 requests failed. SRI is not used for 26 third-party JavaScript and CSS files. Show details.
- No significant anti-scraping protections were detected. Show details.
- 4 DNS A records detected; DNSSEC signatures are present and fully validated. Show details.
