BENCHMARK — INDIVIDUAL ENTRY
Vancouver
vancouver.ca
SCORE
58/100
GRADE
F
STACK
Custom / non-WordPress
§ I — FINDINGS BY SEVERITY01 / 03
critical
0
high
0
medium
3
low
6
info
3
§ II — SUBJECT FILE02 / 03
- target.host
- vancouver.ca
- server
- cloudflare
- tech
- Custom / non-WordPress
- tls
- HTTPS reachable
- hsts
- not set
- spf
- strict
- dmarc
- p=reject
- civic-data
- OpenDataSoft @ opendata.vancouver.ca/pages/home, OpenDataSoft @ opendata.vancouver.ca/pages/home
- civic-pages
- 5/7 categories present
- trackers
- 12 external origins (0 known, 12 unclassified)
- cookies
- 0/1 hardened
§ III — TOP FINDINGS03 / 03
- medium
No HSTS — HTTPS is not enforced for returning visitors
- medium
No Content-Security-Policy
- medium
No published privacy policy on standard paths
- low
No X-Content-Type-Options: nosniff
- low
No X-Frame-Options or CSP frame-ancestors
NEXT STEP