CX Missing_HSTS_Header @ app/bootstrap1.php [master]

**Missing_HSTS_Header** issue exists @ **app/bootstrap1.php** in branch **master**

*The web-application does not define an HSTS header, leaving it vulnerable to attack.*

Severity: Medium

CWE:346

[Vulnerability details and guidance](https://cwe.mitre.org/data/definitions/346.html)

[Internal Guidance](https://checkmarx.atlassian.net/wiki/spaces/AS/pages/79462432/Remediation+Guidance)

[Checkmarx](https://cxprivatecloud.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1001911&projectid=574&pathid=1)

[Recommended Fix](https://cxprivatecloud.checkmarx.net/CxWebClient/ScanQueryDescription.aspx?queryID=5437&queryVersionCode=119183642&queryTitle=Missing_HSTS_Header)

Lines: [1](https://github.com/imatlin/demo-php/blob/master/app/bootstrap1.php#L1) 

---
[Code (Line #1):](https://github.com/imatlin/demo-php/blob/master/app/bootstrap1.php#L1)
```
<?php
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Missing_HSTS_Header @ app/bootstrap1.php [master] #8

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX Missing_HSTS_Header @ app/bootstrap1.php [master] #8

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions