security_headers_check
Test API endpoints for missing or misconfigured security headers using specified HTTP methods to ensure compliance and prevent vulnerabilities.
Input Schema
Name | Required | Description | Default |
---|---|---|---|
endpoint | Yes | API endpoint to test | |
http_method | No | HTTP method to use | GET |
use_auth | No | Whether to use current authentication if available |
Input Schema (JSON Schema)
{
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"endpoint": {
"description": "API endpoint to test",
"format": "uri",
"type": "string"
},
"http_method": {
"default": "GET",
"description": "HTTP method to use",
"enum": [
"GET",
"HEAD",
"OPTIONS"
],
"type": "string"
},
"use_auth": {
"default": true,
"description": "Whether to use current authentication if available",
"type": "boolean"
}
},
"required": [
"endpoint"
],
"type": "object"
}