ZAP Scan Baseline Report

- Site: [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
 	 **New Alerts** 
	- **Content Security Policy (CSP) Header Not Set** [10038] total: 2:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt) 
	- **Missing Anti-clickjacking Header** [10020] total: 1:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
	- **Cookie with SameSite Attribute None** [10054] total: 1:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
	- **Insufficient Site Isolation Against Spectre Vulnerability** [90004] total: 9:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/main-app-f9a1d4e8e65f8b84.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/main-app-f9a1d4e8e65f8b84.js) 
		- .. 
	- **Permissions Policy Header Not Set** [10063] total: 11:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js) 
		- .. 
	- **Server Leaks Information via "X-Powered-By" HTTP Response Header Field(s)** [10037] total: 3:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/sitemap.xml](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/sitemap.xml) 
	- **Strict-Transport-Security Header Not Set** [10035] total: 11:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js) 
		- .. 
	- **Timestamp Disclosure - Unix** [10096] total: 1:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
	- **X-Content-Type-Options Header Missing** [10021] total: 11:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js) 
		- .. 
	- **Information Disclosure - Suspicious Comments** [10027] total: 5:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/173-53c1a7732f508aec.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/23-c8a0919076542a94.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/fd9d1056-1ee4f99ab78204b3.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/fd9d1056-1ee4f99ab78204b3.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/polyfills-42372ed130431b0a.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/polyfills-42372ed130431b0a.js) 
	- **Non-Storable Content** [10049] total: 3:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/robots.txt) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/sitemap.xml](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/sitemap.xml) 
	- **Re-examine Cache-control Directives** [10015] total: 1:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
	- **Session Management Response Identified** [10112] total: 2:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca) 
	- **Storable and Cacheable Content** [10049] total: 7:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/292-7bd14255d61df660.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/748-863b8b7fc9391334.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/app/layout-746bda702fb0393c.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/main-app-f9a1d4e8e65f8b84.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/main-app-f9a1d4e8e65f8b84.js) 
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/webpack-eed706c1f622905c.js](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/_next/static/chunks/webpack-eed706c1f622905c.js) 
		- .. 
	- **Storable but Non-Cacheable Content** [10049] total: 1:  
		- [https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/favicon.ico](https://rsbc-dh-web-form-prod.apps.silver.devops.gov.bc.ca/favicon.ico) 



View the [following link](https://github.com/bcgov/RSBC-DataHub-API/actions/runs/15987572159) to download the report.
RunnerID:15987572159

---
ZAP is supported by the [Crash Override Open Source Fellowship](https://crashoverride.com/?zap=act)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ZAP Scan Baseline Report #362

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

ZAP Scan Baseline Report #362

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions