https://openjdk.org/install/

Scan ID:
ccf5f7bd-c42d-4576-8fc3-25302940ce70Finished
Submitted URL:
https://openjdk.org/install/
Report Finished:

Risks · 0 found

Practices that may pose security risks

  • No classification

Security Headers · 3 found

HTTP response headers that can harden the security of a web application

NameValueSupportInfo
Strict-Transport-SecurityGood
X-Frame-OptionsSAMEORIGINGood
X-Content-Type-OptionsnosniffGood
Content-Security-PolicyGood
Referrer-PolicyGood
Clear-Site-DataGood
X-Permitted-Cross-Domain-PoliciesGood
Permissions-PolicyNew
Cross-Origin-Embedder-PolicyNew
Cross-Origin-Opener-PolicyNew
Cross-Origin-Resource-PolicyNew
X-XSS-Protection1; mode=blockDeprecated
Feature-PolicyDeprecated
Expect-CTDeprecated
Public-Key-PinsDeprecated

Security Violations · 2 found

Requests or resources offending security policies

ViolationTypeInfo
Resource
https://openjdk.org/install/
Description
[Report Only] Refused to load the script 'https://cdn.usefathom.com/script.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval' feeds.feedburner.com *.statcounter.com statcounter.com". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
Content Security Policy
Resource
https://openjdk.org/install/
Description
[Report Only] Refused to load the image 'https://cdn.usefathom.com/?h=https%3A%2F%2Fopenjdk.org&p=%2Finstall%2F&r=&sid=KCYJJPZX&qs=%7B%7D&cid=38876813' because it violates the following Content Security Policy directive: "img-src 'self' data: *.statcounter.com *.openjdk.java.net feedburner.google.com".
Content Security Policy

Certificates · 2 found

SSL/TLS Certificates enable websites to encrypt transactions between the client and the server and provide server identity verification

SubjectIssue dateExpiry date
bugs.openjdk.orgJan 3, 2024, 00:00:00Jan 2, 2025, 23:59:59
cdn.usefathom.comOct 1, 2024, 08:23:16Dec 30, 2024, 08:23:15