OWASP Zap Security Review of https://exchangerate.host/

I used a well known tool called [ZAP (Zed Attack Proxy)](https://www.zaproxy.org/) to do a security review of your site. Addressing these issues will allow usage of your site from certain mainstream platforms that require this type of review. For example, you are not setting a [`Content-Security-Policy` Response Header](https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP) which is considered a security best practice.

As of now I am unsure if addressing these are a requirement for my project in particular.

Thanks, I love the platform!

[2023-09-20-ZAP-Report-exchangerate_host.pdf](https://github.com/Formicka/exchangerate.host/files/12678303/2023-09-20-ZAP-Report-exchangerate_host.pdf)
![Screenshot 2023-09-20 at 4 41 39 PM](https://github.com/Formicka/exchangerate.host/assets/24709135/b8ae50c1-fe51-4e6a-9e2d-f02e0e3be237)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

OWASP Zap Security Review of https://exchangerate.host/ #235

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

OWASP Zap Security Review of https://exchangerate.host/ #235

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions