Open nofxx opened 9 years ago
Great call. This came up in https://github.com/benbalter/site-inspector/pull/24#issuecomment-94214663 and is definately something I'd like to see eventually baked in.
Cool. Enable the wiki, I'll gladly start adding some info. Also to link related gems, eg https://github.com/twitter/secureheaders
@nofxx I realized, we documented the test descriptions in the readme. Would that be sufficient? How would you envision expanding them?
@benbalter What's in the readme goes to inline in the cli, and the wiki will contain a page for each key subject. That way is easier for ppl to contribute with the pages, no need to fork.
Example pages: HSTS, HTTPS, XSS,... key points. Each one will have a extended info, shoulds/should nots, how to implement/fix, related gems, et al. In other words: a curated list for that security issue site-inspector is telling me.
Before all, thanks for the great gem! Let me suggest 'suggestions'. Kinda lika in rubocop:
For each
test
a more humanedescription
, and alink
(only for the test) in the project's wiki page. Could be a flag in the bin/site-inspector to show descriptions fortrues
too.