BENCHMARK — INDIVIDUAL ENTRY
Saskatoon
saskatoon.ca
SCORE
49/100
GRADE
F
STACK
Custom / non-WordPress
§ I — FINDINGS BY SEVERITY01 / 03
critical
0
high
1
medium
3
low
4
info
3
§ II — SUBJECT FILE02 / 03
- target.host
- saskatoon.ca
- tech
- Custom / non-WordPress
- tls
- HTTPS reachable
- hsts
- 1.0 years
- spf
- present
- dmarc
- p=none
- civic-data
- ESRI Hub @ opendata.saskatoon.ca
- civic-pages
- 7/7 categories present
- trackers
- 7 external origins (2 known, 5 unclassified)
- cookies
- 0/1 hardened
§ III — TOP FINDINGS03 / 03
- high
Session-replay scripts on a municipal site (Microsoft Clarity)
- medium
No Content-Security-Policy
- medium
SPF policy is permissive (~all)
- medium
DMARC published with p=none — monitoring only
- low
robots.txt names 2 sensitive paths
NEXT STEP