search

koenbuyens / securityheaders

Check any website (or set of websites) for insecure security headers.
Apache License 2.0
232 stars 47 forks source link

Parse headers separated by comma #3

Closed upils closed 5 years ago

upils commented 5 years ago

As stated in the RFC 2616, header values should be separated by comma and not semicolon.

Even if the majority of values appears to be separated by semicolon, it's not always the case thus these values are considered unknown.

upils commented 5 years ago

Fix in https://github.com/koenbuyens/securityheaders/pull/4

koenbuyens commented 5 years ago

accepted.

upils commented 5 years ago

Would you be interested in setting up automatic tests via CI ?