HTTP security headers
security_headersAnalyzes a domain's HTTP security headers, scores implementation of HSTS, CSP, and more, and provides actionable recommendations to improve security posture.
Instructions
Fetches HTTP response headers and scores security headers (HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy) with recommendations.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| domain | Yes | Domain name to analyze, e.g. "example.com" (protocol, www. and paths are stripped automatically) |