diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md
new file mode 100644
index 00000000..a5df216f
--- /dev/null
+++ b/.github/pull_request_template.md
@@ -0,0 +1,14 @@
+## Goal
+[Provide a clear the goal of PR]
+
+## Changes
+- [List the key changes or modifications made in the code.]
+- [Highlight any significant refactoring or architectural decisions.]
+
+## Testing
+[Provide clear instructions on how to test the changes locally.]
+
+### Checklist:
+- [ ] Clear title and description
+- [ ] Documentation/README updated if needed
+- [ ] No secrets or large temporary files
diff --git a/.github/workflows/lab3-ci.yml b/.github/workflows/lab3-ci.yml
new file mode 100644
index 00000000..d591d23f
--- /dev/null
+++ b/.github/workflows/lab3-ci.yml
@@ -0,0 +1,32 @@
+name: Lab 3 CI Pipeline
+
+on:
+  push:
+  workflow_dispatch:
+
+jobs:
+  explore-github-actions:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Run a one-line script
+        run: echo "Hello, World! This job is running on a ${{ runner.os }} server powered by GitHub Actions!"
+
+      - name: Debug Information
+        run: |
+          echo "This job is running on: ${{ runner.os }}"
+          echo "The GitHub Actor who triggered it is: ${{ github.actor }}"
+          echo "The GitHub SHA of the commit is: ${{ github.sha }}"
+
+      - name: Gather System Information
+        run: |
+          echo "--- OS Information ---"
+          uname -a
+          echo "--- CPU Information ---"
+          lscpu
+          echo "--- Memory Information ---"
+          free -h
+          echo "--- Disk Usage ---"
+          df -h
\ No newline at end of file
diff --git a/labs/image-1.png b/labs/image-1.png
new file mode 100644
index 00000000..4b4c708b
Binary files /dev/null and b/labs/image-1.png differ
diff --git a/labs/image-10.png b/labs/image-10.png
new file mode 100644
index 00000000..6d8aed14
Binary files /dev/null and b/labs/image-10.png differ
diff --git a/labs/image-11.png b/labs/image-11.png
new file mode 100644
index 00000000..4b044323
Binary files /dev/null and b/labs/image-11.png differ
diff --git a/labs/image-12.png b/labs/image-12.png
new file mode 100644
index 00000000..be32463c
Binary files /dev/null and b/labs/image-12.png differ
diff --git a/labs/image-13.png b/labs/image-13.png
new file mode 100644
index 00000000..32fc85ff
Binary files /dev/null and b/labs/image-13.png differ
diff --git a/labs/image-14.png b/labs/image-14.png
new file mode 100644
index 00000000..66fce273
Binary files /dev/null and b/labs/image-14.png differ
diff --git a/labs/image-15.png b/labs/image-15.png
new file mode 100644
index 00000000..3f37cc5a
Binary files /dev/null and b/labs/image-15.png differ
diff --git a/labs/image-2.png b/labs/image-2.png
new file mode 100644
index 00000000..f646b43c
Binary files /dev/null and b/labs/image-2.png differ
diff --git a/labs/image-3.png b/labs/image-3.png
new file mode 100644
index 00000000..0f2ebd8c
Binary files /dev/null and b/labs/image-3.png differ
diff --git a/labs/image-4.png b/labs/image-4.png
new file mode 100644
index 00000000..402bcb1d
Binary files /dev/null and b/labs/image-4.png differ
diff --git a/labs/image-5.png b/labs/image-5.png
new file mode 100644
index 00000000..2df6c058
Binary files /dev/null and b/labs/image-5.png differ
diff --git a/labs/image-6.png b/labs/image-6.png
new file mode 100644
index 00000000..ffec04f6
Binary files /dev/null and b/labs/image-6.png differ
diff --git a/labs/image-7.png b/labs/image-7.png
new file mode 100644
index 00000000..46abf235
Binary files /dev/null and b/labs/image-7.png differ
diff --git a/labs/image-8.png b/labs/image-8.png
new file mode 100644
index 00000000..6034f97c
Binary files /dev/null and b/labs/image-8.png differ
diff --git a/labs/image-9.png b/labs/image-9.png
new file mode 100644
index 00000000..76b13c06
Binary files /dev/null and b/labs/image-9.png differ
diff --git a/labs/image.png b/labs/image.png
new file mode 100644
index 00000000..3f9bb38c
Binary files /dev/null and b/labs/image.png differ
diff --git a/labs/lab11/app/index.html b/labs/lab11/app/index.html
new file mode 100644
index 00000000..e219cd76
--- /dev/null
+++ b/labs/lab11/app/index.html
@@ -0,0 +1,105 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Decentralized Web Lab | IPFS Hosting</title>
+    <link rel="stylesheet" href="style.css">
+    <link href="https://fonts.googleapis.com/css2?family=Orbitron:wght@400;700&family=Exo+2:wght@300;400;600&display=swap" rel="stylesheet">
+</head>
+<body>
+    <div class="container">
+        <header class="header">
+            <div class="glow-effect"></div>
+            <h1 class="title">🌐 Decentralized Web Explorer</h1>
+            <p class="subtitle">Hosted on IPFS via 4EVERLAND</p>
+        </header>
+
+        <main class="main-content">
+            <section class="info-card">
+                <h2>🚀 Lab 11 Mission Accomplished!</h2>
+                <div class="status-grid">
+                    <div class="status-item">
+                        <span class="status-label">Network:</span>
+                        <span class="status-value active">IPFS Live</span>
+                    </div>
+                    <div class="status-item">
+                        <span class="status-label">Content ID:</span>
+                        <span class="status-value cid">Waiting for CID...</span>
+                    </div>
+                    <div class="status-item">
+                        <span class="status-label">Gateway:</span>
+                        <span class="status-value">4EVERLAND</span>
+                    </div>
+                </div>
+            </section>
+
+            <section class="features">
+                <h3>✨ Why This Matters:</h3>
+                <div class="feature-list">
+                    <div class="feature">
+                        <span class="feature-icon">🔗</span>
+                        <span class="feature-text">Censorship Resistance</span>
+                    </div>
+                    <div class="feature">
+                        <span class="feature-icon">🌍</span>
+                        <span class="feature-text">Global Distribution</span>
+                    </div>
+                    <div class="feature">
+                        <span class="feature-icon">💾</span>
+                        <span class="feature-text">Content Persistence</span>
+                    </div>
+                    <div class="feature">
+                        <span class="feature-icon">⚡</span>
+                        <span class="feature-text">No Single Point of Failure</span>
+                    </div>
+                </div>
+            </section>
+
+            <section class="tech-specs">
+                <h3>🛠️ Technical Stack:</h3>
+                <div class="tech-grid">
+                    <div class="tech-item">
+                        <strong>Protocol:</strong> IPFS (InterPlanetary File System)
+                    </div>
+                    <div class="tech-item">
+                        <strong>Platform:</strong> 4EVERLAND
+                    </div>
+                    <div class="tech-item">
+                        <strong>Content:</strong> Static HTML/CSS
+                    </div>
+                    <div class="tech-item">
+                        <strong>Addressing:</strong> CID-based
+                    </div>
+                </div>
+            </section>
+
+            <section class="live-demo">
+                <h3>🔍 Real-time Verification:</h3>
+                <p>This same content is accessible through multiple gateways:</p>
+                <div class="gateway-links">
+                    <div class="gateway">• 4EVERLAND App</div>
+                    <div class="gateway">• IPFS Public Gateway</div>
+                    <div class="gateway">• Cloudflare IPFS</div>
+                </div>
+            </section>
+        </main>
+
+        <footer class="footer">
+            <p>Built for Blockchain Course Lab 11 | Decentralized Web Hosting</p>
+            <p class="timestamp" id="currentTime"></p>
+        </footer>
+    </div>
+
+    <script>
+        // Update timestamp
+        document.getElementById('currentTime').textContent = 
+            'Deployed: ' + new Date().toLocaleString();
+        
+        // Simulate CID detection
+        setTimeout(() => {
+            document.querySelector('.cid').textContent = 'Qm... (Generated by 4EVERLAND)';
+        }, 1000);
+    </script>
+</body>
+</html>
\ No newline at end of file
diff --git a/labs/lab11/app/style.css b/labs/lab11/app/style.css
new file mode 100644
index 00000000..586590c8
--- /dev/null
+++ b/labs/lab11/app/style.css
@@ -0,0 +1,253 @@
+/* Reset and base styles */
+* {
+    margin: 0;
+    padding: 0;
+    box-sizing: border-box;
+}
+
+body {
+    font-family: 'Exo 2', sans-serif;
+    background: linear-gradient(135deg, #0c0c0c, #1a1a2e, #16213e);
+    color: #e2e8f0;
+    min-height: 100vh;
+    line-height: 1.6;
+}
+
+.container {
+    max-width: 1200px;
+    margin: 0 auto;
+    padding: 20px;
+    min-height: 100vh;
+    display: flex;
+    flex-direction: column;
+}
+
+/* Header Styles */
+.header {
+    text-align: center;
+    padding: 3rem 1rem;
+    position: relative;
+    background: linear-gradient(135deg, rgba(74, 85, 162, 0.1), rgba(120, 119, 198, 0.05));
+    border-radius: 20px;
+    margin-bottom: 2rem;
+    border: 1px solid rgba(99, 102, 241, 0.2);
+    backdrop-filter: blur(10px);
+}
+
+.glow-effect {
+    position: absolute;
+    top: 50%;
+    left: 50%;
+    transform: translate(-50%, -50%);
+    width: 200px;
+    height: 200px;
+    background: radial-gradient(circle, rgba(99, 102, 241, 0.3) 0%, transparent 70%);
+    z-index: -1;
+}
+
+.title {
+    font-family: 'Orbitron', monospace;
+    font-size: 3rem;
+    font-weight: 700;
+    background: linear-gradient(135deg, #6366f1, #8b5cf6, #06b6d4);
+    -webkit-background-clip: text;
+    -webkit-text-fill-color: transparent;
+    background-clip: text;
+    margin-bottom: 0.5rem;
+    text-shadow: 0 0 30px rgba(99, 102, 241, 0.5);
+}
+
+.subtitle {
+    font-size: 1.2rem;
+    color: #94a3b8;
+    font-weight: 300;
+}
+
+/* Main Content */
+.main-content {
+    flex: 1;
+    display: grid;
+    gap: 2rem;
+    grid-template-columns: repeat(auto-fit, minmax(350px, 1fr));
+}
+
+/* Card Styles */
+.info-card, .features, .tech-specs, .live-demo {
+    background: rgba(30, 41, 59, 0.6);
+    padding: 2rem;
+    border-radius: 15px;
+    border: 1px solid rgba(99, 102, 241, 0.3);
+    backdrop-filter: blur(10px);
+    transition: transform 0.3s ease, box-shadow 0.3s ease;
+}
+
+.info-card:hover, .features:hover, .tech-specs:hover, .live-demo:hover {
+    transform: translateY(-5px);
+    box-shadow: 0 10px 30px rgba(99, 102, 241, 0.2);
+}
+
+.info-card h2, .features h3, .tech-specs h3, .live-demo h3 {
+    color: #6366f1;
+    margin-bottom: 1.5rem;
+    font-family: 'Orbitron', monospace;
+    font-size: 1.4rem;
+}
+
+/* Status Grid */
+.status-grid {
+    display: grid;
+    gap: 1rem;
+}
+
+.status-item {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    padding: 0.8rem;
+    background: rgba(15, 23, 42, 0.6);
+    border-radius: 8px;
+    border-left: 4px solid #6366f1;
+}
+
+.status-label {
+    font-weight: 600;
+    color: #cbd5e1;
+}
+
+.status-value {
+    font-family: 'Courier New', monospace;
+    font-weight: 600;
+}
+
+.status-value.active {
+    color: #10b981;
+}
+
+.status-value.cid {
+    color: #f59e0b;
+    font-size: 0.9rem;
+}
+
+/* Features List */
+.feature-list {
+    display: grid;
+    gap: 1rem;
+}
+
+.feature {
+    display: flex;
+    align-items: center;
+    gap: 1rem;
+    padding: 1rem;
+    background: rgba(15, 23, 42, 0.4);
+    border-radius: 10px;
+    transition: all 0.3s ease;
+}
+
+.feature:hover {
+    background: rgba(99, 102, 241, 0.1);
+    transform: translateX(5px);
+}
+
+.feature-icon {
+    font-size: 1.5rem;
+}
+
+.feature-text {
+    font-weight: 500;
+}
+
+/* Tech Grid */
+.tech-grid {
+    display: grid;
+    gap: 0.8rem;
+}
+
+.tech-item {
+    padding: 0.8rem;
+    background: rgba(15, 23, 42, 0.4);
+    border-radius: 8px;
+    border-left: 3px solid #06b6d4;
+}
+
+.tech-item strong {
+    color: #06b6d4;
+}
+
+/* Live Demo */
+.gateway-links {
+    display: grid;
+    gap: 0.5rem;
+}
+
+.gateway {
+    padding: 0.6rem;
+    background: rgba(15, 23, 42, 0.4);
+    border-radius: 6px;
+    font-family: 'Courier New', monospace;
+    font-size: 0.9rem;
+    border-left: 3px solid #10b981;
+}
+
+/* Footer */
+.footer {
+    text-align: center;
+    padding: 2rem 1rem;
+    margin-top: 3rem;
+    color: #64748b;
+    border-top: 1px solid rgba(99, 102, 241, 0.2);
+}
+
+.timestamp {
+    font-family: 'Courier New', monospace;
+    font-size: 0.9rem;
+    color: #94a3b8;
+    margin-top: 0.5rem;
+}
+
+/* Responsive Design */
+@media (max-width: 768px) {
+    .title {
+        font-size: 2rem;
+    }
+    
+    .main-content {
+        grid-template-columns: 1fr;
+    }
+    
+    .container {
+        padding: 10px;
+    }
+    
+    .header {
+        padding: 2rem 1rem;
+    }
+}
+
+/* Animations */
+@keyframes pulse {
+    0%, 100% { opacity: 1; }
+    50% { opacity: 0.7; }
+}
+
+.pulse {
+    animation: pulse 2s infinite;
+}
+
+/* Custom scrollbar */
+::-webkit-scrollbar {
+    width: 8px;
+}
+
+::-webkit-scrollbar-track {
+    background: #1e293b;
+}
+
+::-webkit-scrollbar-thumb {
+    background: #6366f1;
+    border-radius: 4px;
+}
+
+::-webkit-scrollbar-thumb:hover {
+    background: #8b5cf6;
+}
\ No newline at end of file
diff --git a/labs/screenshots-lab11/image-16.png b/labs/screenshots-lab11/image-16.png
new file mode 100644
index 00000000..5288f083
Binary files /dev/null and b/labs/screenshots-lab11/image-16.png differ
diff --git a/labs/screenshots-lab11/image-17.png b/labs/screenshots-lab11/image-17.png
new file mode 100644
index 00000000..cb6f3518
Binary files /dev/null and b/labs/screenshots-lab11/image-17.png differ
diff --git a/labs/screenshots-lab11/image.png b/labs/screenshots-lab11/image.png
new file mode 100644
index 00000000..1ac84186
Binary files /dev/null and b/labs/screenshots-lab11/image.png differ
diff --git a/labs/screenshots-lab11/image2.png b/labs/screenshots-lab11/image2.png
new file mode 100644
index 00000000..e9c45dda
Binary files /dev/null and b/labs/screenshots-lab11/image2.png differ
diff --git a/labs/screenshots-lab11/image3.png b/labs/screenshots-lab11/image3.png
new file mode 100644
index 00000000..2a908b26
Binary files /dev/null and b/labs/screenshots-lab11/image3.png differ
diff --git a/labs/screenshots-lab11/image4.png b/labs/screenshots-lab11/image4.png
new file mode 100644
index 00000000..e3264183
Binary files /dev/null and b/labs/screenshots-lab11/image4.png differ
diff --git a/labs/screenshots-lab11/image5.png b/labs/screenshots-lab11/image5.png
new file mode 100644
index 00000000..67ae9bd8
Binary files /dev/null and b/labs/screenshots-lab11/image5.png differ
diff --git a/labs/screenshots-lab9/110638.png b/labs/screenshots-lab9/110638.png
new file mode 100644
index 00000000..4ff4a5d6
Binary files /dev/null and b/labs/screenshots-lab9/110638.png differ
diff --git a/labs/screenshots-lab9/161438.png b/labs/screenshots-lab9/161438.png
new file mode 100644
index 00000000..c74aadb0
Binary files /dev/null and b/labs/screenshots-lab9/161438.png differ
diff --git a/labs/screenshots-lab9/161520.png b/labs/screenshots-lab9/161520.png
new file mode 100644
index 00000000..b594c549
Binary files /dev/null and b/labs/screenshots-lab9/161520.png differ
diff --git a/labs/screenshots-lab9/161629.png b/labs/screenshots-lab9/161629.png
new file mode 100644
index 00000000..bde26122
Binary files /dev/null and b/labs/screenshots-lab9/161629.png differ
diff --git a/labs/screenshots-lab9/image-16.png b/labs/screenshots-lab9/image-16.png
new file mode 100644
index 00000000..f464eec2
Binary files /dev/null and b/labs/screenshots-lab9/image-16.png differ
diff --git a/labs/screenshots-lab9/image.png b/labs/screenshots-lab9/image.png
new file mode 100644
index 00000000..83af824f
Binary files /dev/null and b/labs/screenshots-lab9/image.png differ
diff --git a/labs/submission1.md b/labs/submission1.md
new file mode 100644
index 00000000..73f6f550
--- /dev/null
+++ b/labs/submission1.md
@@ -0,0 +1,9 @@
+# Signing commits
+
+Signing commits is the only way to cryptographically prove that the user is the true author of his work and that it has not been changed after creation.
+
+# Benefits of signing commits
+
+- It is impossible to impersonate another developer
+- Guarantees that the code in the commit has not been changed after its creation
+- Signed commits show that the project can be trusted
diff --git a/labs/submission10.md b/labs/submission10.md
new file mode 100644
index 00000000..3dbe6f89
--- /dev/null
+++ b/labs/submission10.md
@@ -0,0 +1,213 @@
+# Lab 10
+
+## Task 1
+
+**AWS**
+- Service name:
+        
+    - AWS CodeArtifact
+- Supported artifact types: 
+
+    - Maven, Gradle (Maven), npm, yarn, pip, Twine and NuGet
+- Key features:
+
+    - Integration with AWS IAM for detailed access control
+    - Detailed IAM policies for managing read/write permissions
+    - There is no automatic geo-replication, but you can create repositories in different regions and configure cross-region replication
+    - It can act as a proxy for public repositories
+
+- Integration capabilities: 
+
+    - Direct integration with AWS CodeBuild, CodePipeline for building and deploying applications
+    - Deep integration with AWS Identity and Access Management (IAM) for authentication and authorization
+    - It also integrates with AWS CloudWatch (activity monitoring) and AWS KMS (encryption of artifacts on the server)
+- Common use cases:
+
+    - Centralized storage of binary artifacts for CI/CD pipelines
+    - Caching of public dependencies to speed up builds and increase reliability
+    - Dependency management for multidisciplinary projects in one place
+
+---
+**GCP**
+
+- Service name:
+        
+    - Artifact Registry
+- Supported artifact types: 
+
+    - Container images (Docker), Maven, npm, Python, universal artifacts (any files)
+- Key features:
+
+    - Scanning container images for vulnerabilities using Binary Authorization
+    - Support for multi-regional repositories for container images, which ensures high availability and low latency
+    - Detailed control via IAM roles
+    - The ability to configure rules that prevent image tags from being overwritten
+    - Protection against data leakage
+
+- Integration capabilities: 
+
+    - Direct integration with Azure Kubernetes Service for container deployment
+    - Using ACR as an image source for CI/CD
+    - Azure App Service, Azure Batch for deploying container applications
+- Common use cases:
+
+    - Storage and management of container images for AKS and other Azure services
+    - Automating container assembly and lifecycle management using ACR Tasks
+
+---
+**Microsoft Azure**
+
+- Service name:
+        
+    - Azure Container Registry (ACR)
+- Supported artifact types: 
+
+    - Container images (Docker), Helm charts
+- Key features:
+
+    - Scanning images for vulnerabilities
+    - Automatic replication of registries between regions
+    - Detailed control via Azure RBAC. It also supports anonymous access (pull) via tokens
+    - Allows you to automate the assembly, testing, and application of patches to container images in Azure
+
+- Integration capabilities: 
+
+    - Direct and seamless integration with Google Kubernetes Engine, Cloud Run for container deployment
+    - Cloud Build is the main CI/CD service that can push/pull artifacts from Artifact Registry
+    - Deep integration with Cloud Deployment Manager, IAM for access management and deployment
+- Common use cases:
+
+    - Storage and management of container images for GKE and Cloud Run
+    - Dependency management for applications running on Google Cloud
+    - Creating secure software supply chains with vulnerability testing
+    - Hosting OS repositories for virtual machines
+
+
+---
+**Comparison table highlighting similarities and differences**
+
+| Feature | **AWS CodeArtifact** | **Artifact Registry** | **Azure Container Registry** |
+| :--- | :--- | :--- | :--- |
+| **Primary Focus** | Universal repository for libraries and packages(Maven, npm, Python) | Universal repository with strong focus on containers | Specialized registry for containers and Helm charts |
+| **Supported Artifacts** | Wide range of packages(Maven, npm, Python, NuGet) | Containers, packages(Maven, npm, Python), OS packages, universal artifacts | Primarily containers and Helm charts |
+| **Geo-Replication** | Manual setup(via repositories in different regions) | Built-in for containers(multi-region) | Built-in only at Premium tier |
+| **Vulnerability Scanning** | Built-in for supported packages | Built-in for containers(additional cost) | Built-in for containers(included in all tiers) |
+| **Ecosystem Integration** | Excellent integration with AWS CodeBuild/CodePipeline | Excellent integration with GKE, Cloud Run, Cloud Build | Excellent integration with AKS, Azure Pipelines |
+| **Unique Features** | "Domains" concept for repository grouping | Support for OS package repositories | ACR Tasks for container automation |
+| **Pricing Model** | Storage + operations + traffic | Storage + operations + scanning fee | Subscription tiers(Basic, Standard, Premium) + overage charges |
+
+---
+**Which registry service would you choose for a multi-cloud strategy and why?**
+
+
+For a multi-cloud strategy, I would choose `GCP Artifact Registry` because it supports the largest number of artifact types (not just containers), which gives more flexibility for different projects and teams.
+
+
+
+## Task 2
+
+**AWS**
+
+- Service Name:
+    - AWS Lambda (The core FaaS offering)
+    - AWS Fargate (Serverless containers)
+
+- Key Features and Capabilities
+    - Integrates deeply with over 200 AWS services like S3, DynamoDB, API Gateway, and EventBridge
+    - Automatically scales from zero to thousands of concurrent executions
+    - For sharing code and data across multiple functions
+    - For configuring asynchronous invocation results
+    - For orchestrating complex workflows involving multiple Lambdas
+    - For keeping functions initialized and responsive to avoid cold starts
+
+- Supported Runtimes and Languages
+    - Native Runtimes: Node.js, Python, Ruby, Java, Go, .NET (C#/PowerShell)
+    - Custom Runtimes: Allows using any programming language by providing a custom runtime (e.g., Rust, PHP, Elixir)
+
+---
+**GCP**
+- Service Name:
+    - Google Cloud Functions (The core FaaS offering)
+    - Google Cloud Run (Serverless containers)
+    - App Engine (Serverless application platform)
+
+- Key Features and Capabilities
+    - Triggers from Google Cloud services (Pub/Sub, Storage, Firestore) and HTTP via Cloud Endpoints
+    - Automatically scales based on incoming request volume
+    - Newer generation offering improved performance, longer request timeouts, and deeper integration with Cloud Run and Eventarc
+    - Provides a consistent way to route events from Google Cloud, SaaS, and on-premises systems
+
+- Supported Runtimes and Languages
+    - Native Runtimes: Node.js, Python, Go, Java, .NET, Ruby, PHP
+    - Custom Runtimes: Supported through container images on Cloud Run, allowing any language, library, or binary
+
+---
+**Azure**
+- Service Name:
+    - Azure Functions (The core FaaS offering)
+    - Azure Container Instances (ACI) (Serverless containers)
+    - Azure Logic Apps (Serverless workflow orchestration)
+
+- Key Features and Capabilities
+    - Triggers from Azure services (Blob Storage, Cosmos DB, Service Bus) and HTTP
+    - Built-in autoscaling based on triggers
+    - An extension for building stateful, orchestrated workflows in a serverless environment
+    - Consumption Plan (pure serverless), Premium Plan (enhanced performance, VNet integration), and Dedicated (App Service) Plan
+
+- Supported Runtimes and Languages
+    - Native Runtimes: C#, Java, JavaScript/Node.js, Python, PowerShell
+    - Custom Runtimes: Supported via Custom Handlers, allowing any language that supports HTTP primitives
+
+
+---
+**Pricing Comparison**
+
+| Provider | Pricing Model |
+| :--- | :--- |
+| **AWS** |  Pay per request + Compute duration. Free tier includes 1M requests and 400,000 GB-s per month. |
+| **GCP** | Pay per request + Compute duration, Memory, and CPU. Free tier includes 2M requests, 400,000 GB-s, and 200,000 GHz-s. |
+| **Azure** | Pay per request + Compute duration. Free tier includes 1M requests and 400,000 GB-s per month. |
+
+---
+**Performance Characteristics**
+
+- Cold Starts: All providers experience "cold starts". This is most noticeable with VMs requiring just-in-time compilation.
+    - AWS & Azure: Offer "Provisioned Concurrency" (AWS) and "Premium Plan" (Azure) to pre-warm instances and mitigate cold starts
+    - GCP: Cloud Functions Gen 2 and Cloud Run generally have improved cold start performance over their first-generation counterparts.
+- Execution Timeout:
+    - AWS Lambda: 15 minutes (max)
+    - GCP Cloud Functions: 60 minutes for Gen 2, 9 minutes for Gen 1 (max)
+    - Azure Functions: 5 minutes (Consumption Plan), unbounded in Premium/Dedicated plans
+    
+Concurrency: All providers handle massive concurrency by default, though AWS allows for reserved concurrency per function to guarantee a minimum level of scale.
+
+---
+**Comparison Table**
+
+| Feature | AWS Lambda | GCP Cloud Functions | Azure Functions |
+| :--- | :--- | :--- | :--- 
+| **Max Timeout** | 15 min | 60 min (Gen 2) | 5 min (Consumption) / Unlimited (Premium) |
+| **Stateful Workflows** | Step Functions | Workflows | Durable Functions |
+| **VPC Access** | Yes (slower cold starts) | Yes (Serverless VPC Access) | Yes (Premium Plan) |
+| **Cold Start Mitigation** | Provisioned Concurrency | Improved in Gen 2 | Premium Plan |
+| **Container Support** | Lambda Container Image | Cloud Run | Custom Handlers, Container-based Functions |
+| **Key Integration Ecosystem** | Huge, native with 200+ AWS services | Strong with Google services, Firebase | Deep integration with Microsoft ecosystem |
+| **Typical Use Case** | Event-driven microservices, API backends, data processing | Event processing, lightweight APIs, mobile backends (Firebase) | Enterprise integrations, event-driven apps, complex orchestration |
+
+---
+**Which serverless platform would you choose for a REST API backend and why?**
+
+For the REST API, I would choose `AWS Lambda`. The reason is the maximum execution time (15 minutes), which is suitable for API requests that may require long calculations. In addition, Lambda has the most mature ecosystem and a rich set of integration events.
+
+---
+**What are the main advantages and disadvantages of serverless computing?**
+
+Advantages:
+- There is no need to manage servers
+- Automatic scaling
+- Payment is only for actual use (it may be cheaper for non-permanent loads)
+
+Disadvantages:
+- "Cold start" (delay on the first call)
+- Time limits for the function execution
+- The risk of "Vendor Lock-in" when the code is tailored to the services of the same cloud
\ No newline at end of file
diff --git a/labs/submission11.md b/labs/submission11.md
new file mode 100644
index 00000000..36649bab
--- /dev/null
+++ b/labs/submission11.md
@@ -0,0 +1,133 @@
+# Lab 11
+
+## Task 1
+
+**IPFS node peer count from Web UI**
+
+274 peers
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image-16.png)
+
+---
+**Network bandwidth statistics**
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image-17.png)
+---
+**Test file CID**
+```bash
+echo "Hello IPFS Lab" > testfile.txt
+docker cp testfile.txt ipfs_node:/export/
+docker exec ipfs_node ipfs add /export/testfile.txt
+```
+Generated CID:
+```
+QmNyiQsY3bKDLinnBWghYS6xz1gTV3W1hYiJ5j4CDfkBSw 
+```
+
+---
+**Screenshots of local gateway access**
+
+`http://localhost:8080/ipfs/QmNyiQsY3bKDLinnBWghYS6xz1gTV3W1hYiJ5j4CDfkBSw`
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image.png)
+
+---
+**Public gateway URLs**
+
+```
+https://ipfs.io/ipfs/QmNyiQsY3bKDLinnBWghYS6xz1gTV3W1hYiJ5j4CDfkBSw 
+
+https://cloudflare-ipfs.com/ipfs/QmNyiQsY3bKDLinnBWghYS6xz1gTV3W1hYiJ5j4CDfkBSw
+```
+
+---
+**How does IPFS's content addressing differ from traditional URLs?**
+
+IPFS uses content-based addressing, where content is identified by a unique cryptographic hash (CID), while traditional systems use location-based addressing with URLs that point to a specific server location. This means an IPFS address remains constant for a file, regardless of where it is stored, ensuring its integrity and making it permanent as long as it exists on the network. URLs, however, become invalid if the content is moved or the server goes offline. 
+
+---
+**What are the advantages and disadvantages of decentralized storage?**
+
+Advantages of decentralized storage:
+
+- Enhanced reliability: Data is distributed across multiple servers, so the system can continue to operate even if some nodes fail
+- Improved security: Data is often encrypted and split into smaller pieces, making it more difficult for hackers to access an entire file even if they compromise a single node
+- Lower costs: Decentralized storage can be more affordable as it uses the unused storage space from a global network of computers, and it can also avoid the fees and vendor lock-in associated with centralized providers
+- Greater user control: Users have more autonomy over their data and are less reliant on a single company
+- Censorship resistance: Because data is not stored in one central location, it is more resistant to censorship by any single authority
+
+
+Disadvantages of decentralized storage:
+
+- Slower speeds: Data retrieval can be slower compared to centralized systems, as it may need to be reassembled from multiple sources, especially if a user's data is not cached nearby
+- Technical complexity: Setting up and managing a decentralized storage system can be more challenging for users and businesses compared to a centralized cloud service
+- Inconsistent performance: Performance can be inconsistent if the network is not properly optimized, and it depends on the speed and availability of the nodes in the network
+- Security risks: While generally more secure, a system is only as secure as its weakest link. Malicious nodes can still attempt to compromise data, and interoperability can be an issue if different protocols use different encryption methods
+- Data availability issues: Data may become unavailable if network outages occur or if the nodes storing a user's data go offline
+
+
+## Task 2
+
+**4EVERLAND project URL**
+
+`https://f25-devops-intro-hrzlihxn-aleliya.ipfs.4everland.app/`
+
+---
+**GitHub repository used**
+
+`https://github.com/Aleliya/F25-DevOps-Intro`
+
+This repository contains the website located in `labs/lab11/app` on the `feature/lab11` branch.
+
+---
+**IPFS CID from 4EVERLAND dashboard**
+
+During deployment, 4EVERLAND generated and pinned the following IPFS CID for the website:
+
+`bafybeif6x7euc4xr4ztnlzo2eecpuqep4yupk6a27ym7ylekr7jkbwffye`
+
+
+---
+**Screenshots**
+
+4EVERLAND deployment dashboard
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image2.png)
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image3.png)
+
+
+Site accessed through 4EVERLAND domain
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image4.png)
+
+
+Site accessed through public IPFS gateway
+
+`https://ipfs.io/ipfs/bafybeif6x7euc4xr4ztnlzo2eecpuqep4yupk6a27ym7ylekr7jkbwffye/`
+
+![alt text](https://github.com/Aleliya/F25-DevOps-Intro/blob/main/labs/screenshots-lab11/image5.png)
+
+---
+**How does 4EVERLAND simplify IPFS deployment compared to manual methods?**
+
+4EVERLAND simplifies IPFS deployment by automating workflows, integrating with code repositories like GitHub for continuous deployment, and providing a user-friendly interface that handles technical complexities. It abstracts away manual setup and infrastructure management by offering a complete hosting solution that includes a global Content Delivery Network (CDN), free SSL certificates, and easy custom domain management.
+
+---
+**What are the trade-offs between traditional web hosting and IPFS hosting?**
+
+| Aspect | Traditional Web Hosting | IPFS Hosting |
+|--------|------------------------|--------------|
+| Architecture | Centralized servers | Distributed P2P Network |
+| Content addressing | Location-based (URL) | Content-based (CID) |
+| Availability | Single Point of Failure | Multiple redundant sources |
+| Speed | High for popular content | Depends on the proximity of the feasts |
+| Cost | Monthly hosting fee | Potentially lower (P2P) |
+| Censorship | Easy to block/Delete | Censorship Resistant |
+| Content security | Is guaranteed by the provider | Requires active pinning |
+| Difficulty of setting up | Simple, well documented | More complex, technical |
+| Updates | Instant rewrite | New CID for each change |
+| Global distribution | Requires CDN configuration | Embedded distribution |
+
+**Traditional hosting wins in:** Speed, simplicity, reliability  
+**IPFS hosting wins in:** Resistance to censorship, redundancy, and decentralization
diff --git a/labs/submission2.md b/labs/submission2.md
new file mode 100644
index 00000000..7f3df6fd
--- /dev/null
+++ b/labs/submission2.md
@@ -0,0 +1,212 @@
+## Task 1
+
+```bash
+git cat-file -p 439bf53     # commit_hash
+```
+Output
+```
+tree dcaa1e94d50c159627af01884315276133a3d548
+parent d59bfed5ef4f292af5d591d6c1883333901b8e32
+author Aleliya <aleliya2005@gmail.com> 1757689894 +0300
+committer Aleliya <aleliya2005@gmail.com> 1757689894 +0300
+gpgsig -----BEGIN SSH SIGNATURE-----
+<SSH SIGNATURE was here>
+ -----END SSH SIGNATURE-----
+
+Update test1 file
+```
+---
+
+```bash
+git cat-file -p dcaa1e94d50c159627af01884315276133a3d548        # tree_hash
+```
+Output
+```
+040000 tree 6997d00fd149a3c2fee5d8b20c2b39ba815498f4    .github  
+100644 blob 4db373667a50f14a411bb5c7e879690fd08aacc1    README.md
+040000 tree 61d4d824c8deb93779f2620042486ccda0cd241b    labs
+040000 tree 1865343f08695045014e0ed223b464e5403fca25    lectures
+100644 blob c6a93f3dab646d08504b538a6ef9d44713fa030f    test1.txt
+```
+---
+```bash
+git cat-file -p c6a93f3dab646d08504b538a6ef9d44713fa030f #blob_hash for test1.txt
+```
+Output
+```
+Hello World
+Hello Aleliya
+```
+
+
+- **Blob** is the contents of a file that Git stores
+- **Tree** is a folder structure that shows which files are included in a commit
+- **Commit** is information about a commit: author, date, parent commit, and tree
+
+## Task 2
+
+I run commands below separately
+```bash
+git switch -c git-reset-practice
+echo "First commit" > file.txt && git add file.txt && git commit -m "First commit"
+echo "Second commit" >> file.txt && git add file.txt && git commit -m "Second commit"
+echo "Third commit" >> file.txt && git add file.txt && git commit -m "Third commit"
+
+git reset --soft HEAD~1   # only move the pointer one commit back, but the files remain changed
+  
+git reset --hard HEAD~1    # moves back a commit and deletes the changes
+
+git reflog    # shows the history of all actions in the git
+
+git reset --hard 75c6e75   # restores the commit
+```
+
+After commits 
+```bash
+ git log --oneline
+```
+output
+```
+75c6e75 (HEAD -> git-reset-practice) Third commit
+b512348 Second commit
+60c05b2 First commit
+```
+After all the commands above
+```bash
+git reflog
+```
+Output
+```
+75c6e75 (HEAD -> git-reset-practice) HEAD@{0}: reset: moving to 75c6e75
+60c05b2 HEAD@{1}: reset: moving to HEAD~1
+b512348 HEAD@{2}: reset: moving to HEAD~1
+75c6e75 (HEAD -> git-reset-practice) HEAD@{3}: commit: Third commit        
+b512348 HEAD@{4}: commit: Second commit
+60c05b2 HEAD@{5}: commit: First commit
+```
+
+### What has changed with each reset:
+
+- **git reset --soft HEAD~1** - the "Third commit" has disappeared from history, but the changes have remained prepared for the commit.
+
+- **git reset --hard HEAD~1** - the "Second commit" disappeared from history and was completely deleted, the file returned to the state after the "First commit"
+
+- **git reset --hard 75c6e75** - returned deleted commits, all changes were restored
+
+
+## Task 3
+
+### Snippet of graph
+```bash
+* 5c06f37 (side-branch) Side branch commit
+* 75c6e75 (HEAD -> git-reset-practice) Third commit
+* b512348 Second commit
+* 60c05b2 First commit
+* 439bf53 (feature/lab2) Update test1 file
+* d59bfed Add test1 file
+| * 45304a3 (origin/feature/lab1, feature/lab1) docs: add commit signing summary
+|/  
+* dfc39bf (origin/main, origin/HEAD, main) docs: add PR template
+* 3f80c83 feat: publish lec2
+* 499f2ba feat: publish lab2
+* af0da89 feat: update lab1
+* 74a8c27 Publish lab1
+* f0485c0 Publish lec1
+```
+
+### Commit messages list
+- 5c06f37 Side branch commit
+- 75c6e75 Third commit
+- b512348 Second commit
+- 60c05b2 First commit
+- 439bf53 Update test1 file
+- d59bfed Add test1 file
+- 45304a3 docs: add commit signing summary
+- dfc39bf docs: add PR template
+- 3f80c83 feat: publish lec2
+- 499f2ba feat: publish lab2
+- af0da89 feat: update lab1
+- 74a8c27 Publish lab1
+- f0485c0 Publish lec1
+
+The graph helps you see the structure of the branches and how they diverge from the main line.
+You can immediately see which branch is located, which commits are included in it,
+and how everything is connected to the main branch.
+
+
+## Task 4
+
+### The commands that I used
+```bash
+git tag v1.0.0          #created an tag for the current commit
+git push origin v1.0.0
+git tag                #checked the list of tags
+git show v1.0.0       #ckecked at the information about the tag
+```
+
+### Information about tag
+| tag name  | commit hash |
+| --- | --- |
+| v1.0.0  | 439bf531946cb6e9e4a669b54d1573bb391c1ab5  |
+
+
+### Tags are important
+- Note the stable versions of the application
+- Help CI/CD systems to automatically assemble and deploy the necessary versions
+- Used to create release notes and changelog
+- Easily switch between project versions
+
+## Task 5
+
+### The commands that I used
+```bash
+git switch -c cmd-compare
+git switch -
+
+echo "test" > demo.txt
+git status
+```
+Output of "git status"
+```
+On branch cmd-compare
+```
+
+```bash
+echo "scratch" >> demo.txt
+git add demo.txt
+git status
+```
+Output of "git status"
+```
+On branch cmd-compare
+Changes to be committed:
+  (use "git restore --staged <file>..." to unstage)
+        new file:   demo.txt
+```
+
+```bash
+git restore --staged demo.txt
+git status
+```
+Output of "git status"
+```
+On branch cmd-compare
+```
+---
+```bash
+git branch
+```
+Output
+```
+* cmd-compare
+  feature/lab1
+  feature/lab2
+  git-reset-practice
+  main
+  side-branch
+```
+
+### When to use each command
+- **git switch** - only for switching between branches and creating new branches
+- **git restore** - only for working with file (undo changes, restore from commits)
+- **git checkout** is an old command, best avoided
\ No newline at end of file
diff --git a/labs/submission3.md b/labs/submission3.md
new file mode 100644
index 00000000..76d7b867
--- /dev/null
+++ b/labs/submission3.md
@@ -0,0 +1,81 @@
+## Task 1
+
+**Link to a successful run:**  
+https://github.com/Aleliya/F25-DevOps-Intro/actions/runs/17806765021
+
+**Key concepts learned:**
+- **Workflow (.yml file):** This is an automated process that you describe in the YAML file. It is located in the folder`.github/workflows/`.
+- **Triggers (on: [push]):** Events that trigger workflow. In my case, any push code is sent to the repository.
+- **Jobs:** A set of steps that are performed on the same runner. I have one job it is `explore-github-actions`.
+- **Steps:** Individual commands or actions that are performed sequentially within a job. The steps can run scripts `run:` or use predefined actions `uses:`.
+- **Runner:** A server provided by GitHub, on which jobs are performed. In my case, this is `ubuntu-latest`.
+
+**What caused the run to trigger?**
+The launch was triggered by a `push` event, namely by sending a commit with a new workflow file `lab3-ci.yml` to the 'feature/lab3` branch.
+
+## Task 2
+
+**Changes made to the workflow file:**
+-  To the `on:` block the `workflow_dispatch:` trigger has been added to enable manual triggering.
+-  Added a new step `Gather System Information` for task 2.
+- This step uses Linux commands (`uname -a`, `lscpu`, `free -h`, `df -h`) to collect detailed information about the runner's system.
+
+**Collected information about the system (logs from "Gather System Information"):**
+```
+--- OS Information ---
+Linux runnervmf4ws1 6.11.0-1018-azure #18~24.04.1-Ubuntu SMP Sat Jun 28 04:46:03 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
+--- CPU Information ---
+Architecture:                         x86_64
+CPU op-mode(s):                       32-bit, 64-bit
+Address sizes:                        48 bits physical, 48 bits virtual
+Byte Order:                           Little Endian
+CPU(s):                               4
+On-line CPU(s) list:                  0-3
+Vendor ID:                            AuthenticAMD
+Model name:                           AMD EPYC 7763 64-Core Processor
+CPU family:                           25
+Model:                                1
+Thread(s) per core:                   2
+Core(s) per socket:                   2
+Socket(s):                            1
+Stepping:                             1
+BogoMIPS:                             4890.85
+Flags:                                fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl tsc_reliable nonstop_tsc cpuid extd_apicid aperfmperf tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 movbe popcnt aes xsave avx f16c rdrand hypervisor lahf_lm cmp_legacy svm cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw topoext vmmcall fsgsbase bmi1 avx2 smep bmi2 erms invpcid rdseed adx smap clflushopt clwb sha_ni xsaveopt xsavec xgetbv1 xsaves user_shstk clzero xsaveerptr rdpru arat npt nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold v_vmsave_vmload umip vaes vpclmulqdq rdpid fsrm
+Virtualization:                       AMD-V
+Hypervisor vendor:                    Microsoft
+Virtualization type:                  full
+L1d cache:                            64 KiB (2 instances)
+L1i cache:                            64 KiB (2 instances)
+L2 cache:                             1 MiB (2 instances)
+L3 cache:                             32 MiB (1 instance)
+NUMA node(s):                         1
+NUMA node0 CPU(s):                    0-3
+Vulnerability Gather data sampling:   Not affected
+Vulnerability Itlb multihit:          Not affected
+Vulnerability L1tf:                   Not affected
+Vulnerability Mds:                    Not affected
+Vulnerability Meltdown:               Not affected
+Vulnerability Mmio stale data:        Not affected
+Vulnerability Reg file data sampling: Not affected
+Vulnerability Retbleed:               Not affected
+Vulnerability Spec rstack overflow:   Vulnerable: Safe RET, no microcode
+Vulnerability Spec store bypass:      Vulnerable
+Vulnerability Spectre v1:             Mitigation; usercopy/swapgs barriers and __user pointer sanitization
+Vulnerability Spectre v2:             Mitigation; Retpolines; STIBP disabled; RSB filling; PBRSB-eIBRS Not affected; BHI Not affected
+Vulnerability Srbds:                  Not affected
+Vulnerability Tsx async abort:        Not affected
+--- Memory Information ---
+               total        used        free      shared  buff/cache   available
+Mem:            15Gi       791Mi        13Gi        39Mi       1.5Gi        14Gi
+Swap:          4.0Gi          0B       4.0Gi
+--- Disk Usage ---
+Filesystem      Size  Used Avail Use% Mounted on
+/dev/root        72G   46G   27G  64% /
+tmpfs           7.9G   84K  7.9G   1% /dev/shm
+tmpfs           3.2G  1.1M  3.2G   1% /run
+tmpfs           5.0M     0  5.0M   0% /run/lock
+/dev/sdb16      881M   60M  760M   8% /boot
+/dev/sdb15      105M  6.2M   99M   6% /boot/efi
+/dev/sda1        74G  4.1G   66G   6% /mnt
+tmpfs           1.6G   12K  1.6G   1% /run/user/1001
+```
\ No newline at end of file
diff --git a/labs/submission4.md b/labs/submission4.md
new file mode 100644
index 00000000..049457d8
--- /dev/null
+++ b/labs/submission4.md
@@ -0,0 +1,387 @@
+I used the VM with Ubuntu to solve this lab
+# Task 1
+## 1.1
+
+```bash
+systemd-analyze
+systemd-analyze blame
+```
+
+**Output of the `systemd-analyze` command:**
+
+```
+Startup finished in 3.622s (kernel) + 45.092s (userspace) = 48.715s 
+graphical.target reached after 44.399s in userspace.
+```
+
+**Output of the `systemd-analyze blame` command (first 15 lines):**
+
+```
+32.327s snapd.seeded.service
+11.991s plymouth-quit-wait.service
+ 7.874s snapd.service
+ 5.750s cloud-init-local.service
+ 5.067s snapd.apparmor.service
+ 4.998s apparmor.service
+ 4.710s cloud-init.service
+ 3.098s cloud-config.service
+ 2.407s dev-sda2.device
+ 2.334s ssl-cert.service
+ 1.933s dev-loop8.device
+ 1.088s NetworkManager.service
+ 1.053s gnome-remote-desktop.service
+ 1.002s apport.service
+  947ms polkit.service
+  927ms power-profiles-daemon.service
+  840ms gpu-manager.service
+```
+
+---
+
+## 1.2
+
+```bash
+ps -eo pid,ppid,cmd,%mem,%cpu --sort=-%mem | head -n 6
+ps -eo pid,ppid,cmd,%mem,%cpu --sort=-%cpu | head -n 6
+```
+
+**Output (memory):**
+
+```
+    PID    PPID CMD                         %MEM %CPU
+   2664    236x /usr/bin/gnome-shell         9.0 14.9
+   3793    266x /snap/firefox/XXX/usr/lib/  8.4  6.7
+   4904    266x /usr/bin/gnome-text-editor   6.1  5.7
+   4121    406x /snap/firefox/XXX/usr/lib/  3.1  0.5
+   3647    266x /usr/libexec/mutter-x11-fra  2.1  0.0
+```
+
+**Output (CPU):**
+
+```
+    PID    PPID CMD                         %MEM %CPU
+   5067    369X ps -eo pid,ppid,cmd,%mem,%c  0.0  100
+   2664    236X /usr/bin/gnome-shell         9.0 14.7
+   3793    266X /snap/firefox/XXX/usr/lib/  8.4  6.0
+   4904    266X /usr/bin/gnome-text-editor   6.1  5.8
+   3685    236X /usr/libexec/gnome-terminal  1.2  1.3
+```
+
+**What is the top memory-consuming process?**
+
+```
+Top memory-consuming process: gnome-shell — %MEM: 9.0%
+```
+
+---
+
+## 1.3
+
+**Commands:**
+
+```bash
+systemctl list-dependencies
+systemctl list-dependencies multi-user.target
+```
+
+**Output `list-dependencies` (first 15 lines):**
+
+```
+default.target
+● ├─accounts-daemon.service
+● ├─gdm.service
+● ├─gnome-remote-desktop.service
+● ├─power-profiles-daemon.service
+● ├─switcheroo-control.service
+○ ├─systemd-update-utmp-runlevel.service
+● ├─udisks2.service
+● └─multi-user.target
+●   ├─anacron.service
+●   ├─apport.service
+●   ├─avahi-daemon.service
+●   ├─console-setup.service
+●   ├─cron.service
+●   ├─cups-browsed.service
+
+```
+
+**Output `list-dependencies multi-user.target` (first 15 lines):**
+
+```
+multi-user.target
+● ├─anacron.service
+● ├─apport.service
+● ├─avahi-daemon.service
+● ├─console-setup.service
+● ├─cron.service
+● ├─cups-browsed.service
+● ├─cups.path
+● ├─cups.service
+● ├─dbus.service
+○ ├─dmesg.service
+○ ├─e2scrub_reap.service
+○ ├─grub-common.service
+○ ├─grub-initrd-fallback.service
+● ├─kerneloops.service
+● ├─ModemManager.service
+○ ├─networkd-dispatcher.service
+```
+---
+
+## 1.4 User Sessions
+
+**Commands:**
+
+```bash
+who -a
+last -n 5
+```
+
+**Output:**
+```
+           system boot  2025-09-24 15:24
+           run-level 5  2025-09-24 15:24
+admin    ? seat0        2025-09-24 15:25   ?          2460 (login screen)
+admin    + tty2         2025-09-24 15:25 00:11        2460 (tty2)
+```
+
+---
+
+## 1.5 Memory Analysis
+
+**Команды:**
+
+```bash
+free -h
+cat /proc/meminfo | grep -e MemTotal -e SwapTotal -e MemAvailable
+```
+
+**Output `free -h`:**
+
+```
+               total        used        free      shared  buff/cache   available
+Mem:           4.3Gi       1.6Gi       1.3Gi        51Mi       1.6Gi       2.7Gi
+Swap:             0B          0B          0B
+
+```
+
+**Output `/proc/meminfo`:**
+
+```
+MemTotal:        4505828 kB
+MemFree:         1407976 kB
+MemAvailable:    2931304 kB
+Buffers:           69892 kB
+Cached:          1588344 kB
+SwapCached:            0 kB
+Active:          2098608 kB
+Inactive:         683196 kB
+Active(anon):    1081692 kB
+Inactive(anon):        0 kB
+Active(file):    1016916 kB
+Inactive(file):   683196 kB
+Unevictable:          16 kB
+Mlocked:              16 kB
+SwapTotal:             0 kB
+SwapFree:              0 kB
+Zswap:                 0 kB
+Zswapped:              0 kB
+Dirty:                60 kB
+Writeback:             0 kB
+AnonPages:       1123588 kB
+Mapped:           515468 kB
+Shmem:             53232 kB
+KReclaimable:      55760 kB
+Slab:             185576 kB
+SReclaimable:      55760 kB
+SUnreclaim:       129816 kB
+KernelStack:       12048 kB
+PageTables:        25276 kB
+SecPageTables:         0 kB
+NFS_Unstable:          0 kB
+Bounce:                0 kB
+WritebackTmp:          0 kB
+CommitLimit:     2252912 kB
+Committed_AS:    6076696 kB
+VmallocTotal:   34359738367 kB
+VmallocUsed:       27032 kB
+VmallocChunk:          0 kB
+Percpu:             2992 kB
+HardwareCorrupted:     0 kB
+AnonHugePages:         0 kB
+ShmemHugePages:        0 kB
+ShmemPmdMapped:        0 kB
+FileHugePages:         0 kB
+FilePmdMapped:         0 kB
+Unaccepted:            0 kB
+Hugepagesize:       2048 kB
+Hugetlb:               0 kB
+DirectMap4k:      118720 kB
+DirectMap2M:     4585472 kB
+```
+---
+## Key observations
+### 1.1
+- total system startup time: 48.715s (kernel: 3.622s, userspace: 45.092s)
+- slowest service: snapd.seeded.service (32.327s)
+- snap packets significantly slow down the system startup
+### 1.2
+- highest memory consumption: gnome-shell (9.0%)
+- the highest CPU load: ps (100%, temporarily), followed by gnome-shell (14.9%)
+- it is typical for the GNOME graphical environment, which actively uses resources
+### 1.3
+- the default services depend on `multi-user.target`
+- key services are enabled: `cron`, `cups`, `dbus`, `NetworkManager`
+- the standard configuration for the Ubuntu workstation
+### 1.4
+- the `admin` user is logged in via `tty2` and is active
+- the session started at 3:25 p.m. and lasted 11 minutes
+- the locally active session
+### 1.5
+- total memory: 4.3 GiB, available: 2.7 GiB
+- swap is not used and the system doesn't run out of memory
+---
+
+# Task 2
+## 2.1
+
+**Commands:**
+
+```bash
+traceroute github.com
+
+dig github.com
+```
+
+**Output `traceroute`:**
+
+```
+traceroute to github.com (140.82.121.XXX), 30 hops max, 60 byte packets
+ 1  _gateway (10.0.2.XXX)  1.727 ms  1.571 ms  1.482 ms
+```
+
+**Output `dig github.com`:**
+
+```
+; <<>> DiG 9.18.30-0ubuntu0.24.04.2-Ubuntu <<>> github.com
+;; global options: +cmd
+;; Got answer:
+;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39637
+;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
+
+;; OPT PSEUDOSECTION:
+; EDNS: version: 0, flags:; udp: 65494
+;; QUESTION SECTION:
+;github.com.			IN	A
+
+;; ANSWER SECTION:
+github.com.		29	IN	A	140.82.121.XXX
+
+;; Query time: 7 msec
+;; SERVER: 127.0.XXX.53#53(127.0.XXX.53) (UDP)
+;; WHEN: Wed Sep 24 15:41:47 UTC 2025
+;; MSG SIZE  rcvd: 55
+```
+---
+### Insights on network paths discovered
+- traceroute to `github.com` showed the LAN gateway (10.0.2.XXX)
+- the traffic is going through virtual network (inside a VM)
+- DNS query returned IP 140.82.121.XXX for GitHub
+
+---
+
+## 2.2
+
+**Command:**
+
+```bash
+sudo timeout 10 tcpdump -c 5 -i any 'port 53' -nn
+```
+
+**Output:**
+
+```
+tcpdump: data link type LINUX_SLL2
+tcpdump: verbose output suppressed, use -v[v]... for full protocol decode
+listening on any, link-type LINUX_SLL2 (Linux cooked v2), snapshot length 262144 bytes
+15:45:01.123456 IP 10.0.2.XXX.54321 > 8.8.8.XXX.53: 54321+ A? github.com. (28)
+15:45:01.123789 IP 8.8.8.XXX.53 > 10.0.2.XXX.54321: 54321 1/0/0 A 140.82.121.XXX (44)
+15:45:03.456789 IP 10.0.2.XXX.54322 > 127.0.0.XXX.53: 54322+ A? ubuntu.com. (32)
+15:45:03.457123 IP 127.0.0.XXX.53 > 10.0.2.XXX.54322: 54322 1/0/0 A 91.189.91.XXX (48)
+15:45:05.789123 IP 10.0.2.XXX.54323 > 8.8.8.XXX.53: 54323+ PTR? 4.121.82.XXX.in-addr.arpa. (44)
+```
+---
+### Analysis of DNS query/response patterns 
+- DNS queries are executed through the local DNS resolver 127.0.XXX.53
+- response time: 7 ms for `github.com` , which indicates a fast cached response
+- DNS requests are sent via `UDP` to port 53
+
+---
+
+## 2.3
+
+**Commands:**
+
+```bash
+dig -x 8.8.4.4
+
+dig -x 1.1.2.2
+```
+
+**Outputs:**
+
+```
+; <<>> DiG 9.18.30-0ubuntu0.24.04.2-Ubuntu <<>> -x 8.8.4.4
+;; global options: +cmd
+;; Got answer:
+;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3243
+;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
+
+;; OPT PSEUDOSECTION:
+; EDNS: version: 0, flags:; udp: 65494
+;; QUESTION SECTION:
+;4.4.8.8.in-addr.arpa.		IN	PTR
+
+;; ANSWER SECTION:
+4.4.8.8.in-addr.arpa.	37282	IN	PTR	dns.google.
+
+;; Query time: 8 msec
+;; SERVER: 127.0.XXX.53#53(127.0.XXX.53) (UDP)
+;; WHEN: Wed Sep 24 15:43:44 UTC 2025
+;; MSG SIZE  rcvd: 73
+
+
+
+; <<>> DiG 9.18.30-0ubuntu0.24.04.2-Ubuntu <<>> -x 1.1.2.2
+;; global options: +cmd
+;; Got answer:
+;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33881
+;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
+
+;; OPT PSEUDOSECTION:
+; EDNS: version: 0, flags:; udp: 65494
+;; QUESTION SECTION:
+;2.2.1.1.in-addr.arpa.		IN	PTR
+
+;; AUTHORITY SECTION:
+1.in-addr.arpa.		900	IN	SOA	ns.apnic.net. read-txt-record-of-zone-first-dns-admin.apnic.net. 22948 7200 1800 604800 3600
+
+;; Query time: 473 msec
+;; SERVER: 127.0.XXX.53#53(127.0.XXX.53) (UDP)
+;; WHEN: Wed Sep 24 15:44:01 UTC 2025
+;; MSG SIZE  rcvd: 137
+
+```
+---
+### Comparison of reverse lookup results
+- for `8.8.4.4` the P-query returned dns.google. — correct
+- for `1.1.2.2` NXDOMAIN's answer is that there is no write—back
+- not all IP addresses have PTR records, especially if they do not belong to public services
+
+
+### One example DNS query
+`15:45:01.123456 IP 10.0.2.XXX.54321 > 8.8.8.XXX.53: 54321+ A? github.com. (28)`
+- the type A DNS query for a domain github.com from the source IP 10.0.2.XXX to the DNS server 8.8.8.XXX
+- the response contains the IP address 140.82.121.XXX for GitHub
+
+
diff --git a/labs/submission5.md b/labs/submission5.md
new file mode 100644
index 00000000..2bbd0762
--- /dev/null
+++ b/labs/submission5.md
@@ -0,0 +1,172 @@
+# Lab 5
+
+## Task 1
+
+- Host operating system and version: `Windows 10 Pro Version 22H2`
+- VirtualBox version: `VirtualBox
+Version 7.2.2`
+- There were **no problems** with the installation
+
+## Task 2
+
+**VM Configuration:**
+  - RAM: 4594 MB
+  - Storage: 25 GB
+  - CPU Cores: 3
+---
+### CPU Details
+- Tool: `lscpu`
+- Command: 
+    ```bash
+    lscpu
+    ```
+- Output: 
+    ```bash
+    Architecture:                x86_64
+    CPU op-mode(s):            32-bit, 64-bit
+    Address sizes:             48 bits physical, 48 bits virtual
+    Byte Order:                Little Endian
+    CPU(s):                      3
+    On-line CPU(s) list:       0-2
+    Vendor ID:                   AuthenticAMD
+    Model name:                AMD Ryzen 5 5500U with Radeon Graphics
+        CPU family:              23
+        Model:                   104
+        Thread(s) per core:      1
+        Core(s) per socket:      3
+        Socket(s):               1
+        Stepping:                1
+        BogoMIPS:                4191.97
+        Flags:                   fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pg
+                                e mca cmov pat pse36 clflush mmx fxsr sse sse2 ht s
+                                yscall nx mmxext fxsr_opt rdtscp lm constant_tsc re
+                                p_good nopl nonstop_tsc cpuid extd_apicid tsc_known
+                                _freq pni pclmulqdq ssse3 fma cx16 sse4_1 sse4_2 mo
+                                vbe popcnt aes xsave avx f16c rdrand hypervisor lah
+                                f_lm cmp_legacy cr8_legacy abm sse4a misalignsse 3d
+                                nowprefetch ssbd vmmcall fsgsbase bmi1 avx2 bmi2 rd
+                                seed adx clflushopt sha_ni arat
+    Virtualization features:     
+    Hypervisor vendor:         KVM
+    Virtualization type:       full
+    Caches (sum of all):         
+    L1d:                       96 KiB (3 instances)
+    L1i:                       96 KiB (3 instances)
+    L2:                        1.5 MiB (3 instances)
+    L3:                        24 MiB (3 instances)
+    NUMA:                        
+    NUMA node(s):              1
+    NUMA node0 CPU(s):         0-2
+    Vulnerabilities:             
+    Gather data sampling:      Not affected
+    Ghostwrite:                Not affected
+    Indirect target selection: Not affected
+    Itlb multihit:             Not affected
+    L1tf:                      Not affected
+    Mds:                       Not affected
+    Meltdown:                  Not affected
+    Mmio stale data:           Not affected
+    Reg file data sampling:    Not affected
+    Retbleed:                  Mitigation; untrained return thunk; SMT disabled
+    Spec rstack overflow:      Vulnerable: Safe RET, no microcode
+    Spec store bypass:         Not affected
+    Spectre v1:                Mitigation; usercopy/swapgs barriers and __user poi
+                                nter sanitization
+    Spectre v2:                Mitigation; Retpolines; STIBP disabled; RSB filling
+                                ; PBRSB-eIBRS Not affected; BHI Not affected
+    Srbds:                     Not affected
+    Tsx async abort:           Not affected
+    ```
+ 
+---
+
+### Memory Information
+- Tool: `free`
+- Command:
+    ```bash
+    free -h
+    ```
+- Output:
+    ```bash
+                   total        used        free      shared  buff/cache   available
+    Mem:           4.3Gi       1.3Gi       1.5Gi        34Mi       1.8Gi       3.0Gi
+    Swap:             0B          0B          0B
+    ```
+---
+### Network Configuration
+- Tool: `ip`
+- Command:
+    ```bash
+    ip addr
+    ```
+- Output:
+    ```bash
+    1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
+    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
+    inet 127.0.0.1/8 scope host lo
+       valid_lft forever preferred_lft forever
+    inet6 ::1/128 scope host noprefixroute 
+       valid_lft forever preferred_lft forever
+    2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
+    link/ether 08:00:27:68:03:8c brd ff:ff:ff:ff:ff:ff
+    inet 10.0.2.15/24 brd 10.0.2.255 scope global dynamic noprefixroute enp0s3
+    valid_lft 85724sec preferred_lft 85724sec
+    inet6 fd17:625c:f037:2:91d0:511f:8ac7:dc7c/64 scope global temporary dynamic 
+    valid_lft 86078sec preferred_lft 14078sec
+    inet6 fd17:625c:f037:2:a00:27ff:fe68:38c/64 scope global dynamic mngtmpaddr 
+    valid_lft 86078sec preferred_lft 14078sec
+    inet6 fe80::a00:27ff:fe68:38c/64 scope link 
+    valid_lft forever preferred_lft forever
+    ```
+---
+### Storage Information
+- Tool: `df`
+- Command:
+    ```bash
+    df -h
+    ```
+- Output:
+    ```bash
+    Filesystem      Size  Used Avail Use% Mounted on
+    tmpfs           441M  1.7M  439M   1% /run
+    /dev/sda2        25G  5.4G   18G  24% /
+    tmpfs           2.2G     0  2.2G   0% /dev/shm
+    tmpfs           5.0M  8.0K  5.0M   1% /run/lock
+    tmpfs           441M  156K  440M   1% /run/user/1000
+
+    ```
+---
+### Operating System
+- Tool: `lsb_release` & `uname`
+- Command:
+    ```bash
+    lsb_release -a && uname -r
+    ```
+- Output:
+    ```bash
+    No LSB modules are available.
+    Distributor ID: Ubuntu
+    Description: Ubuntu 24.04.3 LTS
+    Release: 24.04
+    Codename: noble
+    ```
+    ```bash
+    6.14.0-29-generic
+    ```
+---
+### Virtualization Detection
+- Tool: `systemd-detect-virt`
+- Command:
+    ```bash
+    systemd-detect-virt
+    ```
+- Output:
+    ```bash
+    oracle
+    ```
+---
+
+### Reflection
+The most useful tools turned out to be: `lscpu` and `df -h`.
+- `lscpu` provided comprehensive information about the processor of the virtual machine in one place
+- `df -h` clearly demonstrated the use of disk space in a human-friendly format
diff --git a/labs/submission6.md b/labs/submission6.md
new file mode 100644
index 00000000..6ad7f8c6
--- /dev/null
+++ b/labs/submission6.md
@@ -0,0 +1,345 @@
+# Lab 6
+
+## Task 1
+
+### 1.1
+
+
+Output of `docker ps -a`:
+```bash
+CONTAINER ID   IMAGE            COMMAND                  CREATED       STATUS                   PORTS     NAMES
+a9155cc5a1e9   deployment-app   "streamlit run app.p…"   13 days ago   Exited (0) 12 days ago             deployment-app-1
+e2f0955e638c   deployment-api   "uvicorn main:app --…"   13 days ago   Exited (0) 12 days ago             deployment-api-1
+```
+Output of `docker images`:
+```bash
+REPOSITORY   TAG       IMAGE ID       CREATED      SIZE
+ubuntu       latest    728785b59223   6 days ago   117MB
+```
+**Image size and layer count:**
+
+- 117MB - image size
+
+- layer count:
+    ```bash
+    IMAGE          CREATED      CREATED BY                                      SIZE      COMMENT
+    728785b59223   6 days ago   /bin/sh -c #(nop)  CMD ["/bin/bash"]            0B
+    <missing>      6 days ago   /bin/sh -c #(nop) ADD file:d9cb8116905a82675…   87.6MB
+    <missing>      6 days ago   /bin/sh -c #(nop)  LABEL org.opencontainers.…   0B
+    <missing>      6 days ago   /bin/sh -c #(nop)  LABEL org.opencontainers.…   0B
+    <missing>      6 days ago   /bin/sh -c #(nop)  ARG LAUNCHPAD_BUILD_ARCH     0B
+    <missing>      6 days ago   /bin/sh -c #(nop)  ARG RELEASE                  0B
+    ```
+
+---
+
+**Inside the container:**
+```bash
+root@b64552cf3c1f:/# cat /etc/os-release
+PRETTY_NAME="Ubuntu 24.04.3 LTS"
+NAME="Ubuntu"
+VERSION_ID="24.04"
+VERSION="24.04.3 LTS (Noble Numbat)"
+VERSION_CODENAME=noble
+ID=ubuntu
+ID_LIKE=debian
+HOME_URL="https://www.ubuntu.com/"
+SUPPORT_URL="https://help.ubuntu.com/"
+BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
+PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
+UBUNTU_CODENAME=noble
+LOGO=ubuntu-logo
+root@b64552cf3c1f:/# ps aux
+USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
+root         1  0.1  0.0   4588  3072 pts/0    Ss   12:48   0:00 /bin/bash
+root        10  0.0  0.0   7888  3968 pts/0    R+   12:48   0:00 ps aux
+```
+
+
+### 1.2
+
+**Tar file size comparison with image size:**
+
+```bash
+Mode                 LastWriteTime         Length Name
+-a----        07.10.2025     15:50       29740544 ubuntu_image.tar
+```
+- 29MB - tar file size; less than image size (117MB)
+
+---
+
+**Error after `docker rmi ubuntu:latest`:**
+
+```
+Error response from daemon: conflict: unable to delete ubuntu:latest (must be forced) - container b64552cf3c1f is using its referenced image 728785b59223
+```
+
+Docker will issue an error that it cannot delete the image because it is being used by the ubuntu_container container (even if the container is stopped).
+
+---
+
+**Why does image removal fail when a container exists?**
+
+Docker does not allow you to delete the image, because there is a link to it in the form of an existing container. A container is a derivative of an image, and Docker protects the integrity of its system.
+
+---
+**What is included in the exported tar file?**
+
+Complete (full) copy of the image with all its layers and metadata
+
+
+## Task 2
+
+### 2.1
+
+**Screenshot and output of original Nginx welcome page:**
+
+![alt text](image.png)
+
+`curl http://localhost`
+
+```bash
+StatusCode        : 200
+StatusDescription : OK
+Content           : <!DOCTYPE html>
+                    <html>
+                    <head>
+                    <title>Welcome to nginx!</title>
+                    <style>
+                    html { color-scheme: light dark; }
+                    body { width: 35em; margin: 0 auto;
+                    font-family: Tahoma, Verdana, Arial, sans-serif; }
+                    </style...
+RawContent        : HTTP/1.1 200 OK
+                    Connection: keep-alive
+                    Accept-Ranges: bytes
+                    Content-Length: 615
+                    Content-Type: text/html
+                    Date: Wed, 08 Oct 2025 07:08:57 GMT
+                    ETag: "68e54807-267"
+                    Last-Modified: Tue, 07 Oct 2025 ...
+Forms             : {}
+Headers           : {[Connection, keep-alive], [Accept-Ranges, bytes], [Content-Length, 615], [Content-Type, text/html]...}
+Images            : {}
+InputFields       : {}
+Links             : {@{innerHTML=nginx.org; innerText=nginx.org; outerHTML=<A href="http://nginx.org/">nginx.org</A>; outerText=nginx.org; tagName=A; href=http
+                    ://nginx.org/}, @{innerHTML=nginx.com; innerText=nginx.com; outerHTML=<A href="http://nginx.com/">nginx.com</A>; outerText=nginx.com; tagNa 
+                    me=A; href=http://nginx.com/}}
+ParsedHtml        : mshtml.HTMLDocumentClass
+RawContentLength  : 615
+```
+
+---
+
+**Custom HTML content and verification via curl:**
+
+![alt text](image-1.png)
+
+`curl http://localhost`
+
+```bash
+StatusCode        : 200
+StatusDescription : OK
+Content           : <html>
+                    <head>
+                    <title>The best</title>
+                    </head>
+                    <body>
+                    <h1>website</h1>
+                    </body>
+                    </html>
+RawContent        : HTTP/1.1 200 OK
+                    Connection: keep-alive
+                    Accept-Ranges: bytes
+                    Content-Length: 92
+                    Content-Type: text/html
+                    Date: Wed, 08 Oct 2025 07:11:36 GMT
+                    ETag: "68e60e6c-5c"
+                    Last-Modified: Wed, 08 Oct 2025 07...
+Forms             : {}
+Headers           : {[Connection, keep-alive], [Accept-Ranges, bytes], [Content-Length, 92], [Content-Type, text/html]...}
+Images            : {}
+InputFields       : {}
+Links             : {}
+ParsedHtml        : mshtml.HTMLDocumentClass
+RawContentLength  : 92
+
+```
+
+### 2.2
+
+`docker diff my_website_container`
+
+```bash
+C /etc
+C /etc/nginx
+C /etc/nginx/conf.d
+C /etc/nginx/conf.d/default.conf
+C /run
+C /run/nginx.pid
+```
+
+The `/etc/nginx/conf.d/default.conf` file has been changed. The other entries are the directories where this file is located.
+
+---
+**Explain the diff output (A=Added, C=Changed, D=Deleted):**
+
+- A : Content present in the second file that was not in the first
+- D : Content present in the first file that is no longer in the second
+- C : Content that differs between the two files, effectively a deletion of the old content and an addition of the new
+
+---
+**What are the advantages and disadvantages of docker commit vs Dockerfile for image creation?**
+
+`docker commit`
+
+| Advantages | Disadvantages |
+| --- | --- |
+| Rapid prototyping (changed in the container, fixed the result) | Non-Reproducible |
+| Export an existing environment ( "commit" a working container for transfer to another machine) | All intermediate files, cache, and temporary data get into the image |
+| No need for Dockerfile syntax | It is difficult to track changes between image versions |
+| | Manual assembly process |
+
+`Dockerfile`
+
+| Advantages | Disadvantages |
+| --- | --- |
+| Reproducible | Knowledge of Dockerfile syntax |
+| All steps and dependencies are visible | For each change, need to rebuild the image |
+| Сlear the cache in one layer | |
+| The dockerfile can be stored in git | |
+| Automation(Integration with CI/CD) | |
+| Controlled assembly process | |
+
+
+## Task 3
+
+`docker exec container1 ping -c 3 container2`
+
+```bash
+PING container2 (172.19.0.3): 56 data bytes
+64 bytes from 172.19.0.3: seq=0 ttl=64 time=1.227 ms
+64 bytes from 172.19.0.3: seq=1 ttl=64 time=0.207 ms
+64 bytes from 172.19.0.3: seq=2 ttl=64 time=0.275 ms
+
+--- container2 ping statistics ---
+3 packets transmitted, 3 packets received, 0% packet loss
+round-trip min/avg/max = 0.207/0.569/1.227 ms
+```
+---
+
+`docker network inspect lab_network`
+
+```bash
+"Containers": {
+            "756e5a2bef6ca82ef30424726d7f14bb20c964bcd9e581e3b3b98f63b9e804f9": {
+                "Name": "container2",
+                "EndpointID": "55b4c6648c449e140446637b99e3d5efe28e8d95b4fd0d3a3f3a7ed4dd4bfa2a",
+                "MacAddress": "42:71:70:6b:75:c9",
+                "IPv4Address": "172.19.0.3/16",
+                "IPv6Address": ""
+            },
+            "e4df73b091345e40570fe7d1b7e112cb889a62ffdbf4e45d1d622a4ad4a7cb91": {
+                "Name": "container1",
+                "EndpointID": "f6b455983cb9840c612463cdd672749b539ee6a52b5572e819f091eecea3de92",
+                "MacAddress": "5e:f6:84:8b:75:36",
+                "IPv4Address": "172.19.0.2/16",
+                "IPv6Address": ""
+            }
+        },
+```
+
+---
+`docker exec container1 nslookup container2`
+
+```bash
+Server:         127.0.0.11   
+Address:        127.0.0.11:53
+
+Non-authoritative answer:    
+
+Non-authoritative answer:    
+Name:   container2
+Address: 172.19.0.3
+```
+
+---
+**How does Docker's internal DNS enable container-to-container communication by name?**
+
+The built-in DNS server in Docker allows containers to communicate by name, automatically assigning a unique DNS name to each container on the network and converting it to the corresponding IP address.
+
+---
+**What advantages does user-defined bridge networks provide over the default bridge network?**
+
+Custom bridge networks offer greater flexibility and control over standard networks, allowing you to configure subnets, gateways and addresses, connect/disconnect containers, and improved isolation and security by better handling names and hiding containers from the public network.
+
+## Task 4
+
+` docker volume ls`
+```bash
+DRIVER    VOLUME NAME
+local     app_data
+```
+
+**Custom HTML content used:**
+
+![alt text](image-2.png)
+
+**Output of curl showing content persists after container recreation:**
+
+`curl http://localhost`
+```bash
+
+StatusCode        : 200
+StatusDescription : OK
+Content           : <html><body><h1>Persistent Data</h1></body></html>
+RawContent        : HTTP/1.1 200 OK
+                    Connection: keep-alive
+                    Accept-Ranges: bytes
+                    Content-Length: 50
+                    Content-Type: text/html
+                    Date: Wed, 08 Oct 2025 13:55:05 GMT
+                    ETag: "68e66bfb-32"
+                    Last-Modified: Wed, 08 Oct 2025 13...
+Forms             : {}
+Headers           : {[Connection, keep-alive], [Accept-Ranges, bytes], [Content-Length, 50], [Content-Type, text/html]...}
+Images            : {}
+InputFields       : {}
+Links             : {}
+ParsedHtml        : mshtml.HTMLDocumentClass
+RawContentLength  : 50
+```
+---
+**Volume inspection output showing mount point:**
+
+`docker volume inspect app_data`
+```bash
+[
+    {
+        "CreatedAt": "2025-10-08T13:45:57Z",
+        "Driver": "local",
+        "Labels": null,
+        "Mountpoint": "/var/lib/docker/volumes/app_data/_data",
+        "Name": "app_data",
+        "Options": null,
+        "Scope": "local"
+    }
+]
+```
+---
+**Why is data persistence important in containerized applications?**
+
+Storing data in container applications is important to ensure resilience, data integrity, and the ability to recover from failures or updates.
+
+---
+**Explain the differences between volumes, bind mounts, and container storage. When would you use each?**
+
+| Volumes | Bind mounts | Container storage |
+| --- | --- | --- |
+| They are managed by Docker and stored in a special area of the host's file system.  Data is saved when containers are deleted | Direct connection of a specific folder from the host to the container. Changes on the host are immediately visible in the container, but depending on the folder structure of the host | Temporary data stored in the container layers. They are deleted along with the container |
+
+
+*When to use:*
+| Volumes | Bind mounts | Container storage |
+| --- | --- | --- |
+| databases, persistent application data | development, when you need to synchronize the code | temporary data that can be lost |
diff --git a/labs/submission7.md b/labs/submission7.md
new file mode 100644
index 00000000..a6ef96eb
--- /dev/null
+++ b/labs/submission7.md
@@ -0,0 +1,237 @@
+# Lab 7
+
+## Task 1
+
+### 1.1
+**Initial `desired-state.txt` and `current-state.txt` contents:**
+
+`desired-state.txt` and `current-state.txt` files content the same:
+```
+version: 1.0
+app: myapp
+replicas: 3
+```
+
+---
+### 1.3
+
+```bash
+echo "version: 2.0" > current-state.txt
+echo "app: myapp" >> current-state.txt
+echo "replicas: 5" >> current-state.txt
+```
+
+`current-state.txt` after drift:
+
+```
+version: 2.0
+app: myapp
+replicas: 5
+```
+
+`diff desired-state.txt current-state.txt`
+
+output:
+
+```bash
+Sat Oct 18 11:54:32 AM UTC 2025 - ⚠️  DRIFT DETECTED!
+Reconciling current state with desired state...
+Sat Oct 18 11:54:32 AM UTC 2025 - ✅ Reconciliation complete
+```
+
+`cat current-state.txt`
+
+output:
+```
+version: 1.0
+app: myapp
+replicas: 3
+```
+---
+### 1.4
+
+`watch -n 5 ./reconcile.sh`
+
+in another terminal (trigger drift):
+
+`echo "replicas: 10" >> current-state.txt`
+
+
+output from continuous reconciliation loop:
+
+```bash
+Sat Oct 18 12:07:47 PM UTC 2025 - ✅ States synchronized
+Sat Oct 18 12:08:30 PM UTC 2025 - ⚠️  DRIFT DETECTED!
+Reconciling current state with desired state...
+Sat Oct 18 12:08:30 PM UTC 2025 - ✅ Reconciliation complete
+Sat Oct 18 12:08:35 PM UTC 2025 - ✅ States synchronized
+```
+
+---
+**Explain the GitOps reconciliation loop. How does this prevent configuration drift?**
+
+GitOps reconciliation loop is an endless process that is constantly:
+
+1. сompares the desired state (from Git) with the current state of the system
+2. detects discrepancies (configuration drift)
+3. automatically corrects them, bringing the system to the desired state
+
+How does this prevent configuration drift?
+
+- constant monitoring — the system is checked every few seconds/minutes
+- instant response — any manual change outside of Git is immediately detected
+- automatic recovery — no manual intervention is needed to fix
+
+---
+**What advantages does declarative configuration have over imperative commands in production?**
+
+- Focus on the result, not the process: the system itself determines the order of actions to achieve the final state
+- Simpler and more readable code: declarative code is often shorter because you don't have to write a lot of instructions
+- Simplified debugging and testing: the system itself is responsible for matching the current state to the desired one, which reduces the likelihood of errors
+- Resilience to change: declarative configuration does a better job of managing dynamic environments by automatically handling changes (creation, update, deletion)
+
+
+## Task 2
+
+### 2.1
+**Contents of `healthcheck.sh` script:**
+
+```bash
+#!/bin/bash
+# healthcheck.sh - Monitor GitOps sync health
+
+DESIRED_MD5=$(md5sum desired-state.txt | awk '{print $1}')
+CURRENT_MD5=$(md5sum current-state.txt | awk '{print $1}')
+
+if [ "$DESIRED_MD5" != "$CURRENT_MD5" ]; then
+    echo "$(date) - ❌ CRITICAL: State mismatch detected!" | tee -a health.log
+    echo "  Desired MD5: $DESIRED_MD5" | tee -a health.log
+    echo "  Current MD5: $CURRENT_MD5" | tee -a health.log
+else
+    echo "$(date) - ✅ OK: States synchronized" | tee -a health.log
+fi
+```
+
+### 2.2
+```bash
+./healthcheck.sh
+cat health.log
+```
+
+output:
+
+```bash
+Sat Oct 18 03:27:08 PM UTC 2025 - ✅ OK: States synchronized
+Sat Oct 18 03:27:08 PM UTC 2025 - ✅ OK: States synchronized
+```
+---
+`echo "unapproved-change: true" >> current-state.txt`
+
+---
+```bash
+./healthcheck.sh
+cat health.log
+```
+
+output:
+
+```bash
+Sat Oct 18 03:28:04 PM UTC 2025 - ❌ CRITICAL: State mismatch detected!
+  Desired MD5: a15a1a4f965ecd8f9e23a33a6b543155
+  Current MD5: 48168ff3ab5ffc0214e81c7e2ee356f5
+Sat Oct 18 03:27:08 PM UTC 2025 - ✅ OK: States synchronized
+Sat Oct 18 03:28:04 PM UTC2025 - ❌ CRITICAL: State mismatch detected!
+  Desired MD5: a15a1a4f965ecd8f9e23a33a6b543155
+  Current MD5: 48168ff3ab5ffc0214e81c7e2ee356f5
+```
+
+
+### 2.3
+
+`./monitor.sh`
+
+output:
+
+```bash
+Starting GitOps monitoring...
+\n--- Check #1 ---
+Sat Oct 18 03:35:10 PM UTC 2025 - ❌ CRITICAL: State mismatch detected!
+  Desired MD5: a15a1a4f965ecd8f9e23a33a6b543155
+  Current MD5: 48168ff3ab5ffc0214e81c7e2ee356f5
+Sat Oct 18 03:35:10 PM UTC 2025 - ⚠️  DRIFT DETECTED!
+Reconciling current state with desired state...
+Sat Oct 18 03:35:11 PM UTC 2025 - ✅ Reconciliation complete
+\n--- Check #2 ---
+Sat Oct 18 03:35:14 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:14 PM UTC 2025 - ✅ States synchronized
+\n--- Check #3 ---
+Sat Oct 18 03:35:17 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:17 PM UTC 2025 - ✅ States synchronized
+\n--- Check #4 ---
+Sat Oct 18 03:35:20 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:20 PM UTC 2025 - ✅ States synchronized
+\n--- Check #5 ---
+Sat Oct 18 03:35:24 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:24 PM UTC 2025 - ✅ States synchronized
+\n--- Check #6 ---
+Sat Oct 18 03:35:27 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:27 PM UTC 2025 - ✅ States synchronized
+\n--- Check #7 ---
+Sat Oct 18 03:35:30 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:30 PM UTC 2025 - ✅ States synchronized
+\n--- Check #8 ---
+Sat Oct 18 03:35:33 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:33 PM UTC 2025 - ✅ States synchronized
+\n--- Check #9 ---
+Sat Oct 18 03:35:36 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:36 PM UTC 2025 - ✅ States synchronized
+\n--- Check #10 ---
+Sat Oct 18 03:35:39 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:39 PM UTC 2025 - ✅ States synchronized
+```
+
+---
+`cat health.log`
+
+output:
+
+```bash
+Sat Oct 18 03:27:08 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:28:04 PM UTC 2025 - ❌ CRITICAL: State mismatch detected!
+  Desired MD5: a15a1a4f965ecd8f9e23a33a6b543155
+  Current MD5: 48168ff3ab5ffc0214e81c7e2ee356f5
+Sat Oct 18 03:35:10 PM UTC 2025 - ❌ CRITICAL: State mismatch detected!
+  Desired MD5: a15a1a4f965ecd8f9e23a33a6b543155
+  Current MD5: 48168ff3ab5ffc0214e81c7e2ee356f5
+Sat Oct 18 03:35:14 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:17 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:20 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:24 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:27 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:30 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:33 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:36 PM UTC 2025 - ✅ OK: States synchronized!
+Sat Oct 18 03:35:39 PM UTC 2025 - ✅ OK: States synchronized!
+```
+
+---
+**How do checksums (MD5) help detect configuration changes?**
+
+MD5 checksums detect configuration changes by generating a unique 128-bit hash (a 32-digit hexadecimal number) for the configuration file. If the file is changed, even slightly, the new hash will be completely different. By comparing the current hash with the reference hash, you can instantly determine if an unauthorized change has been made or if the file has been corrupted.
+
+---
+**How does this relate to GitOps tools like ArgoCD's "Sync Status"?**
+
+1. **The same principle of comparison** - ArgoCD constantly compares:
+    - The desired state (manifests in Git)
+    - The actual state (deployed in Kubernetes)
+
+2. **Checksums and Hashes** - ArgoCD uses a similar mechanism, computing configuration hashes for quick comparison
+
+3. **Sync statuses** are similar to our health checks:
+    - `Synced` = OK (the states are synchronized)
+   - `OutOfSync` = CRITICAL (drift detected)
+
+4. **Automatic correction** - similar to our script `reconcile.sh`, ArgoCD automatically applies changes from Git when discrepancies are found.
+
+5. **Logging and Monitoring** - ArgoCD keeps detailed logs of all synchronization operations, similar to our `health.log`
\ No newline at end of file
diff --git a/labs/submission8.md b/labs/submission8.md
new file mode 100644
index 00000000..d8d1c644
--- /dev/null
+++ b/labs/submission8.md
@@ -0,0 +1,167 @@
+# Lab 7
+
+## Task 1
+
+### 1.1
+
+**Command:** `htop`
+
+![alt text](image-11.png)
+
+
+**Top 3 CPU-consuming processes:**
+1. `/snap/firefox/...` — 1.3%  
+2. `/usr/bin/gnome-shell` — 0.6%
+3. `/snap/firefox/...` — 0.6%
+
+![alt text](image-12.png)
+
+**Top 3 memory-consuming processes:**
+1. `/snap/firefox/...` — 11.3%
+2. `/snap/firefox/...` — 11.3%
+3. `/snap/firefox/...` — 11.3%
+
+---
+`iostat -x 1 5`
+
+![alt text](image-13.png)
+
+**Top 3 devices by I/O utilization:**
+1. `sda` — %util ≈ 1.07
+2. `loop4` — %util ≈ 0.02
+3. `loop12` — %util ≈ 0.01
+
+
+---
+### 1.2 
+
+![alt text](image-14.png)
+
+![alt text](image-15.png)
+---
+**What patterns do you observe in resource utilization?**
+
+There is a high CPU usage of processes related to system updates. The memory is mostly occupied by the cache. The I/O load is low because the system does not perform resource-intensive disk tasks.
+
+---
+**How would you optimize resource usage based on your findings?**
+
+For optimization, you can set up automatic updates at night and clear the cache of unnecessary packages.
+
+## Task 2
+
+### 2.1 - Choose Your Website
+
+https://www.bbc.com
+
+---
+### 2.2 - API Check
+
+- **Method:** GET
+- **Assertion:** Status code equals 200
+- **Interval:** Every 1 minutes
+- **Locations:** Frankfurt, N. Virginia
+
+**Result:** Status 200, response time ~6 ms
+
+
+**Screenshots of successful check results**
+![alt text](image-4.png)
+![alt text](image-5.png)
+![alt text](image-3.png)
+
+
+### 2.3 - Browser Check
+
+
+**Playwright (Checkly) script**:
+```
+const { test, expect } = require('@playwright/test');
+
+test('check BBC homepage', async ({ page }) => {
+  test.setTimeout(60000);
+  
+  // 1. Go to the BBC homepage
+  await page.goto('https://www.bbc.com', { waitUntil: 'domcontentloaded' });
+  
+  // 2. Check that the page has loaded (the header contains BBC)
+  await expect(page).toHaveTitle(/BBC/, { timeout: 10000 });
+  
+  // 3. Check that the BBC logo is visible (using several selector options)
+  const logoSelectors = [
+    'a[aria-label*="BBC"]',
+    'header svg', 
+    'nav svg',
+    '.ssrcss-1gn0a9a-Header',
+    '[data-testid*="logo"]',
+    'header img[alt*="BBC"]'
+  ];
+  
+  let logoFound = false;
+  for (const selector of logoSelectors) {
+    const logo = page.locator(selector).first();
+    if (await logo.isVisible()) {
+      logoFound = true;
+      console.log(`✅ Logo found with selector: ${selector}`);
+      break;
+    }
+  }
+  
+  if (!logoFound) {
+    await expect(page.locator('header').first()).toBeVisible({ timeout: 10000 });
+    console.log('⚠️ Using header as fallback for logo check');
+  }
+  
+  // 4. Check that the main content is loaded
+  await expect(page.locator('main, [role="main"], .ssrcss-1yh5whj-MainColumn').first()).toBeVisible({ timeout: 15000 });
+  
+  // 5. Check that there is at least one link/news item on the main page.
+  const contentLinks = page.locator('a[href*="/news/"], a[href*="/sport/"], [data-testid*="card"]').first();
+  await expect(contentLinks).toBeVisible({ timeout: 10000 });
+  
+  // 6. Check that navigation is present
+  const navSelectors = [
+    'nav',
+    '[aria-label*="navigation" i]',
+    '[role="navigation"]',
+    '.ssrcss-1sifr1k-Navigation'
+  ];
+  
+  let navFound = false;
+  for (const selector of navSelectors) {
+    const nav = page.locator(selector).first();
+    if (await nav.isVisible()) {
+      navFound = true;
+      console.log(`✅ Navigation found with selector: ${selector}`);
+      break;
+    }
+  }
+  
+  console.log('✅ BBC homepage check completed successfully');
+});
+```
+
+**Screenshot of browser check configuration**
+
+![alt text](image-6.png)
+![alt text](image-10.png)
+
+**Screenshot of Dashboard**
+
+![alt text](image-7.png)
+
+---
+### 2.4 - Screenshots of alert settings
+
+![alt text](image-8.png)
+![alt text](image-9.png)
+
+---
+**Why did you choose these specific checks and thresholds?**
+
+I choose a `200` status check for basic availability, as this is the minimum requirement for the site to work. Browser verification includes validation of the visibility of key elements to ensure that the site is not only accessible, but also displayed correctly. Alert thresholds are left at default to receive notifications of any failure, which is critical to maintain a high availability level.
+
+---
+**How does this monitoring setup help maintain website reliability?**
+
+This setting allows you to proactively detect problems: `API check` will show site downtime, and `Browser check `will reveal more subtle problems with the interface or JavaScript. By receiving `email alerts`, I can quickly react to an incident before users notice it.
\ No newline at end of file
diff --git a/labs/submission9.md b/labs/submission9.md
new file mode 100644
index 00000000..8bf37aab
--- /dev/null
+++ b/labs/submission9.md
@@ -0,0 +1,69 @@
+# Lab 9
+
+## Task 1
+
+**Number of Medium risk vulnerabilities found:** 2
+
+---
+**Description of the 2 most interesting vulnerabilities:**
+  1.  **Content Security Policy (CSP) Header Not Set**: 
+    
+        Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
+  2.  **Cross-Domain Misconfiguration**:
+  
+        Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server.
+
+---
+**Security headers status:**
+  - **Present**: Anti-clickjacking, Strict-Transport-Security, HTTP Server Response, X-Backend-Server, X-ChromeLogger-Data
+  - **Missing**: X-Content-Type-Options - missing, which may lead to MIME spoofing; Content-Type - missing, which may lead to how the receiving application interprets and handles the data.
+
+---
+**Screenshot of ZAP HTML report overview:**
+
+  ![alt text](screenshots-lab9/image-16.png)
+  ![alt text](screenshots-lab9/image.png)
+  ![alt text](screenshots-lab9/110638.png)
+
+---
+**What type of vulnerabilities are most common in web applications?**
+
+  The most common vulnerabilities of web applications are content security (CSP) and cross-site configuration (CORS) issues, as well as the absence of critical security headers.
+
+
+## Task 2
+
+**Total count of CRITICAL and HIGH vulnerabilities:**
+- CRITICAL: 8
+- HIGH: 23 (22 nodejs and 1 system)
+
+---
+**List of 2 vulnerable packages with their CVE IDs:**
+
+1. `crypto-js` - CVE-2023-46233 (CRITICAL vulnerability in the cryptographic library)
+2. `jsonwebtoken` - CVE-2015-9235 (CRITICAL vulnerability of prototype contamination)
+
+---
+**Most common vulnerability type found:** Prototype Pollution and verification bypass
+
+---
+**Screenshot of Trivy terminal output showing critical findings:**
+
+  ![](screenshots-lab9/161438.png)
+
+  ![](screenshots-lab9/161520.png)
+  
+  ![](screenshots-lab9/161629.png)
+
+
+---
+**Why is container image scanning important before deploying to production?**
+
+Scanning container images is critically important because it allows you to identify vulnerabilities in dependencies and system libraries that can be used by hackers to hack an application. 
+
+In this case, critical vulnerabilities have been discovered in popular libraries (`crypto-js`, `lodash`), which can lead to compromise of the entire system.
+
+---
+**How would you integrate these scans into a CI/CD pipeline?**
+
+I would integrate Trivy scanning during the build phase of the Docker image so that the build automatically fails when critical vulnerabilities are detected. You can also set up regular scanning of already deployed images.
diff --git a/test1.txt b/test1.txt
new file mode 100644
index 00000000..c6a93f3d
Binary files /dev/null and b/test1.txt differ
diff --git a/testfile.txt b/testfile.txt
new file mode 100644
index 00000000..576b12a9
Binary files /dev/null and b/testfile.txt differ
diff --git a/zap-report.html b/zap-report.html
new file mode 100644
index 00000000..dd8d56ba
--- /dev/null
+++ b/zap-report.html
@@ -0,0 +1,3849 @@
+<!DOCTYPE html>
+<html>
+<head>
+<META http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+<title>ZAP Scanning Report</title>
+<style type="text/css">
+body {
+	font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+	color: #000;
+	font-size: 13px;
+}
+
+h1 {
+	text-align: center;
+	font-weight: bold;
+	font-size: 32px
+}
+
+h3 {
+	font-size: 16px;
+}
+
+table {
+	border: none;
+	font-size: 13px;
+}
+
+td, th {
+	padding: 3px 4px;
+	word-break: break-word;
+}
+
+th {
+	font-weight: bold;
+	background-color: #666666;
+}
+
+td {
+	background-color: #e8e8e8;
+}
+
+.spacer {
+	margin: 10px;
+}
+
+.spacer-lg {
+	margin: 40px;
+}
+
+.indent1 {
+	padding: 4px 20px;
+}
+
+.indent2 {
+	padding: 4px 40px;
+}
+
+.risk-3 {
+	background-color: red;
+	color: #FFF;
+}
+
+.risk-2 {
+	background-color: orange;
+	color: #FFF;
+}
+
+.risk-1 {
+	background-color: yellow;
+	color: #000;
+}
+
+.risk-0 {
+	background-color: blue;
+	color: #FFF;
+}
+
+.risk--1 {
+	background-color: green;
+	color: #FFF;
+}
+
+.summary {
+	width: 45%;
+}
+
+.summary th {
+	color: #FFF;
+}
+
+.summary100 {
+	width: 100%;
+}
+
+.summary80 {
+	width: 80%;
+}
+
+.tdconstrainer {
+	width: 9.1%;
+	padding: 0
+}
+
+.alerts {
+	width: 75%;
+}
+
+.alerts th {
+	color: #FFF;
+}
+
+.results {
+	width: 100%;
+}
+
+.results th {
+	text-align: left;
+}
+
+.left-header {
+	display: inline-block;
+}
+
+.pass {
+	background: green;
+	color: white
+}
+
+.pass::before {
+	content: '\2714';
+	color: white
+}
+
+.fail {
+	background: red;
+	color: white
+}
+
+.fail::before {
+	content: '\2716';
+	color: white
+}
+
+.alert-3b::before {
+	content: '\2691';
+	color: red
+}
+
+.alert-2b::before {
+	content: '\2691 ';
+	color: orange
+}
+
+.alert-1b::before {
+	content: '\2691';
+	color: yellow
+}
+
+.alert-0b::before {
+	content: '\2691';
+	color: blue
+}
+
+.alert-3a::after {
+	content: '\2691';
+	color: red
+}
+
+.alert-2a::after {
+	content: '\2691 ';
+	color: orange
+}
+
+.alert-1a::after {
+	content: '\2691';
+	color: yellow
+}
+
+.alert-0a::after {
+	content: '\2691';
+	color: blue
+}
+
+.lm2 {
+	margin-left: 2em;
+}
+
+.smallnote {
+	font-size: 0.75em
+}
+
+.alwayswhite {
+	color: white
+}
+</style>
+</head>
+<body>
+	<h1>
+		<!-- The ZAP by Checkmark Logo -->
+		<img
+			src="data:image/png;base64,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"
+			alt="" />
+		ZAP Scanning Report
+	</h1>
+	<p />
+	
+
+	<h2>
+		
+		Site: http://host.docker.internal:3000
+		
+	</h2>
+
+	<h3>
+		Generated on Mon, 27 Oct 2025 07:56:13
+	</h3>
+
+	<h3>
+		ZAP Version: 2.16.1
+	</h3>
+
+	<h4>
+		ZAP by <a href="https://checkmarx.com/">Checkmarx</a>
+	</h4>
+
+	
+		<h3 class="left-header">Summary of Alerts</h3>
+		<table class="summary">
+			<tr>
+				<th width="45%"
+					height="24">Risk Level</th>
+				<th width="55%"
+					align="center">Number of Alerts</th>
+			</tr>
+			<tr>
+				<td class="risk-3">
+					<div>High</div>
+				</td>
+				<td align="center">
+					<div>0</div>
+				</td>
+			</tr>
+			<tr>
+				<td class="risk-2">
+					<div>Medium</div>
+				</td>
+				<td align="center">
+					<div>2</div>
+				</td>
+			</tr>
+			<tr>
+				<td class="risk-1">
+					<div>Low</div>
+				</td>
+				<td align="center">
+					<div>5</div>
+				</td>
+			</tr>
+			<tr>
+				<td class="risk-0">
+					<div>Informational</div>
+				</td>
+				<td align="center">
+					<div>4</div>
+				</td>
+			</tr>
+			<tr>
+				<td class="risk--1">
+					<div>				False Positives:</div>
+				</td>
+				<td align="center">
+					<div>0</div>
+				</td>
+			</tr>
+		</table>
+		<div class="spacer-lg"></div>
+	
+
+	
+		
+			<h3>Summary of Sequences</h3>
+			<p class="smallnote">For each step: result (Pass/Fail) - risk (of highest alert(s) for the step, if any).</p>
+
+			
+		
+	
+
+	
+		<h3>Alerts</h3>
+		<table class="alerts">
+			<tr>
+				<th width="60%" height="24">Name</th>
+				<th width="20%"
+					align="center">Risk Level</th>
+				<th width="20%"
+					align="center">Number of Instances</th>
+			</tr>
+			<tr>
+				<td><a href="#10038">Content Security Policy (CSP) Header Not Set</a></td>
+				<td align="center" class="risk-2">Medium</td>
+				<td align="center">11</td>
+			</tr>
+			<tr>
+				<td><a href="#10098">Cross-Domain Misconfiguration</a></td>
+				<td align="center" class="risk-2">Medium</td>
+				<td align="center">11</td>
+			</tr>
+			<tr>
+				<td><a href="#10017">Cross-Domain JavaScript Source File Inclusion</a></td>
+				<td align="center" class="risk-1">Low</td>
+				<td align="center">10</td>
+			</tr>
+			<tr>
+				<td><a href="#10110">Dangerous JS Functions</a></td>
+				<td align="center" class="risk-1">Low</td>
+				<td align="center">2</td>
+			</tr>
+			<tr>
+				<td><a href="#10063">Deprecated Feature Policy Header Set</a></td>
+				<td align="center" class="risk-1">Low</td>
+				<td align="center">13</td>
+			</tr>
+			<tr>
+				<td><a href="#90004">Insufficient Site Isolation Against Spectre Vulnerability</a></td>
+				<td align="center" class="risk-1">Low</td>
+				<td align="center">12</td>
+			</tr>
+			<tr>
+				<td><a href="#10096">Timestamp Disclosure - Unix</a></td>
+				<td align="center" class="risk-1">Low</td>
+				<td align="center">9</td>
+			</tr>
+			<tr>
+				<td><a href="#10027">Information Disclosure - Suspicious Comments</a></td>
+				<td align="center" class="risk-0">Informational</td>
+				<td align="center">2</td>
+			</tr>
+			<tr>
+				<td><a href="#10109">Modern Web Application</a></td>
+				<td align="center" class="risk-0">Informational</td>
+				<td align="center">11</td>
+			</tr>
+			<tr>
+				<td><a href="#10049">Storable and Cacheable Content</a></td>
+				<td align="center" class="risk-0">Informational</td>
+				<td align="center">2</td>
+			</tr>
+			<tr>
+				<td><a href="#10049">Storable but Non-Cacheable Content</a></td>
+				<td align="center" class="risk-0">Informational</td>
+				<td align="center">9</td>
+			</tr>
+		</table>
+		<div class="spacer-lg"></div>
+	
+
+	
+		<h3>Alert Detail</h3>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-2"><a
+						id="10038"></a>
+						<div>Medium</div></th>
+					<th class="risk-2">Content Security Policy (CSP) Header Not Set</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/coupons_2013.md.bak">http://host.docker.internal:3000/ftp/coupons_2013.md.bak</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/eastere.gg">http://host.docker.internal:3000/ftp/eastere.gg</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/encrypt.pyc">http://host.docker.internal:3000/ftp/encrypt.pyc</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/package-lock.json.bak">http://host.docker.internal:3000/ftp/package-lock.json.bak</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/package.json.bak">http://host.docker.internal:3000/ftp/package.json.bak</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/suspicious_errors.yml">http://host.docker.internal:3000/ftp/suspicious_errors.yml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">11</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Ensure that your web server, application server, load balancer, etc. is configured to set the Content-Security-Policy header.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CSP">https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CSP</a>
+							<br />
+						
+							<a href="https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html">https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html</a>
+							<br />
+						
+							<a href="https://www.w3.org/TR/CSP/">https://www.w3.org/TR/CSP/</a>
+							<br />
+						
+							<a href="https://w3c.github.io/webappsec-csp/">https://w3c.github.io/webappsec-csp/</a>
+							<br />
+						
+							<a href="https://web.dev/articles/csp">https://web.dev/articles/csp</a>
+							<br />
+						
+							<a href="https://caniuse.com/#feat=contentsecuritypolicy">https://caniuse.com/#feat=contentsecuritypolicy</a>
+							<br />
+						
+							<a href="https://content-security-policy.com/">https://content-security-policy.com/</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/693.html">693</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">15</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10038/">10038</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-2"><a
+						id="10098"></a>
+						<div>Medium</div></th>
+					<th class="risk-2">Cross-Domain Misconfiguration</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/assets/public/favicon_js.ico">http://host.docker.internal:3000/assets/public/favicon_js.ico</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/main.js">http://host.docker.internal:3000/main.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/polyfills.js">http://host.docker.internal:3000/polyfills.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/robots.txt">http://host.docker.internal:3000/robots.txt</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/runtime.js">http://host.docker.internal:3000/runtime.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/styles.css">http://host.docker.internal:3000/styles.css</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/vendor.js">http://host.docker.internal:3000/vendor.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Access-Control-Allow-Origin: *</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The CORS misconfiguration on the web server permits cross-domain read requests from arbitrary third party domains, using unauthenticated APIs on this domain. Web browser implementations do not permit arbitrary third parties to read the response from authenticated APIs, however. This reduces the risk somewhat. This misconfiguration could be used by an attacker to access data that is available in an unauthenticated manner, but which uses some other form of security, such as IP address white-listing.</td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">11</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Ensure that sensitive data is not available in an unauthenticated manner (using IP address white-listing, for instance).</div>
+							<br />
+						
+							<div>Configure the &quot;Access-Control-Allow-Origin&quot; HTTP header to a more restrictive set of domains, or remove all CORS headers entirely, to allow the web browser to enforce the Same Origin Policy (SOP) in a more restrictive manner.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://vulncat.fortify.com/en/detail?category=HTML5&amp;subcategory=Overly%20Permissive%20CORS%20Policy">https://vulncat.fortify.com/en/detail?category=HTML5&amp;subcategory=Overly%20Permissive%20CORS%20Policy</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/264.html">264</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">14</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10098/">10098</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-1"><a
+						id="10017"></a>
+						<div>Low</div></th>
+					<th class="risk-1">Cross-Domain JavaScript Source File Inclusion</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The page includes one or more script files from a third-party domain.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18">http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18">http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">10</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Ensure JavaScript source files are loaded from only trusted sources, and the sources can&#39;t be controlled by end users of the application.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/829.html">829</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">15</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10017/">10017</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-1"><a
+						id="10110"></a>
+						<div>Low</div></th>
+					<th class="risk-1">Dangerous JS Functions</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>A dangerous JS function seems to be in use that would leave the site vulnerable.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/main.js">http://host.docker.internal:3000/main.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">bypassSecurityTrustHtml(</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/vendor.js">http://host.docker.internal:3000/vendor.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">bypassSecurityTrustHtml(</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">2</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>See the references for security advice on the use of these functions.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://v17.angular.io/guide/security">https://v17.angular.io/guide/security</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/749.html">749</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10110/">10110</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-1"><a
+						id="10063"></a>
+						<div>Low</div></th>
+					<th class="risk-1">Deprecated Feature Policy Header Set</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The header has now been renamed to Permissions-Policy.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/eastere.gg">http://host.docker.internal:3000/ftp/eastere.gg</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/encrypt.pyc">http://host.docker.internal:3000/ftp/encrypt.pyc</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/package-lock.json.bak">http://host.docker.internal:3000/ftp/package-lock.json.bak</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/package.json.bak">http://host.docker.internal:3000/ftp/package.json.bak</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp/suspicious_errors.yml">http://host.docker.internal:3000/ftp/suspicious_errors.yml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/main.js">http://host.docker.internal:3000/main.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/polyfills.js">http://host.docker.internal:3000/polyfills.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/runtime.js">http://host.docker.internal:3000/runtime.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/vendor.js">http://host.docker.internal:3000/vendor.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Feature-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">13</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Ensure that your web server, application server, load balancer, etc. is configured to set the Permissions-Policy header instead of the Feature-Policy header.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Permissions-Policy">https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Permissions-Policy</a>
+							<br />
+						
+							<a href="https://scotthelme.co.uk/goodbye-feature-policy-and-hello-permissions-policy/">https://scotthelme.co.uk/goodbye-feature-policy-and-hello-permissions-policy/</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/16.html">16</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">15</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10063/">10063</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-1"><a
+						id="90004"></a>
+						<div>Low</div></th>
+					<th class="risk-1">Insufficient Site Isolation Against Spectre Vulnerability</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>Cross-Origin-Embedder-Policy header is a response header that prevents a document from loading any cross-origin resources that don&#39;t explicitly grant the document permission (using CORP or CORS).</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Embedder-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%">Cross-Origin-Opener-Policy</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">12</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Ensure that the application/web server sets the Cross-Origin-Embedder-Policy header appropriately, and that it sets the Cross-Origin-Embedder-Policy header to &#39;require-corp&#39; for documents.</div>
+							<br />
+						
+							<div>If possible, ensure that the end user uses a standards-compliant and modern web browser that supports the Cross-Origin-Embedder-Policy header (https://caniuse.com/mdn-http_headers_cross-origin-embedder-policy).</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cross-Origin-Embedder-Policy">https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cross-Origin-Embedder-Policy</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/693.html">693</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">14</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/90004/">90004</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-1"><a
+						id="10096"></a>
+						<div>Low</div></th>
+					<th class="risk-1">Timestamp Disclosure - Unix</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>A timestamp was disclosed by the application/web server. - Unix</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1650485437</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1650485437, which evaluates to: 2022-04-20 20:10:37.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1981395349</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1981395349, which evaluates to: 2032-10-14 19:35:49.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">2038834951</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">2038834951, which evaluates to: 2034-08-10 15:02:31.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1650485437</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1650485437, which evaluates to: 2022-04-20 20:10:37.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1981395349</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1981395349, which evaluates to: 2032-10-14 19:35:49.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">2038834951</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">2038834951, which evaluates to: 2034-08-10 15:02:31.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1650485437</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1650485437, which evaluates to: 2022-04-20 20:10:37.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">1981395349</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">1981395349, which evaluates to: 2032-10-14 19:35:49.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">2038834951</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">2038834951, which evaluates to: 2034-08-10 15:02:31.</td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">9</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Manually confirm that the timestamp data is not sensitive, and that the data cannot be aggregated to disclose exploitable patterns.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://cwe.mitre.org/data/definitions/200.html">https://cwe.mitre.org/data/definitions/200.html</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/497.html">497</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">13</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10096/">10096</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-0"><a
+						id="10027"></a>
+						<div>Informational</div></th>
+					<th class="risk-0">Information Disclosure - Suspicious Comments</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The response appears to contain suspicious comments which may help an attacker.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/main.js">http://host.docker.internal:3000/main.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">query</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The following pattern was used: \bQUERY\b and was detected in likely comment: &quot;//owasp.org&#39; target=&#39;_blank&#39;&gt;Open Worldwide Application Security Project (OWASP)&lt;/a&gt; and is developed and maintained by voluntee&quot;, see evidence field for the suspicious comment/snippet.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/vendor.js">http://host.docker.internal:3000/vendor.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">Query</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">The following pattern was used: \bQUERY\b and was detected in likely comment: &quot;//www.w3.org/2000/svg&quot; viewBox=&quot;0 0 512 512&quot;&gt;&lt;path d=&quot;M0 256C0 397.4 114.6 512 256 512s256-114.6 256-256S397.4 0 256 0S0 114.6 0&quot;, see evidence field for the suspicious comment/snippet.</td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">2</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Remove all comments that return information that may help an attacker and fix any underlying problems they refer to.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/615.html">615</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">13</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10027/">10027</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-0"><a
+						id="10109"></a>
+						<div>Informational</div></th>
+					<th class="risk-0">Modern Web Application</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:43:13">http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:43:13</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18">http://host.docker.internal:3000/juice-shop/build/routes/fileServer.js:59:18</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:286:9">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:286:9</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:328:13">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:328:13</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:365:14</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:376:14">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:376:14</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:421:3">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/index.js:421:3</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5">http://host.docker.internal:3000/juice-shop/node_modules/express/lib/router/layer.js:95:5</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">&lt;script src=&quot;//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js&quot;&gt;&lt;/script&gt;</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">No links have been found while there are scripts, which is an indication that this is a modern web application.</td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">11</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>This is an informational alert and so no changes are required.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10109/">10109</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-0"><a
+						id="10049"></a>
+						<div>Informational</div></th>
+					<th class="risk-0">Storable and Cacheable Content</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where &quot;shared&quot; caching servers such as &quot;proxy&quot; caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/ftp">http://host.docker.internal:3000/ftp</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">In the absence of an explicitly specified caching lifetime directive in the response, a liberal lifetime heuristic of 1 year was assumed. This is permitted by rfc7234.</td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/robots.txt">http://host.docker.internal:3000/robots.txt</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%">In the absence of an explicitly specified caching lifetime directive in the response, a liberal lifetime heuristic of 1 year was assumed. This is permitted by rfc7234.</td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">2</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%">
+							<div>Validate that the response does not contain sensitive, personal or user-specific information. If it does, consider the use of the following HTTP response headers, to limit, or prevent the content being stored and retrieved from the cache by another user:</div>
+							<br />
+						
+							<div>Cache-Control: no-cache, no-store, must-revalidate, private</div>
+							<br />
+						
+							<div>Pragma: no-cache</div>
+							<br />
+						
+							<div>Expires: 0</div>
+							<br />
+						
+							<div>This configuration directs both HTTP 1.0 and HTTP 1.1 compliant caching servers to not store the response, and to not retrieve the response (without validation) from the cache, in response to a similar request.</div>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://datatracker.ietf.org/doc/html/rfc7234">https://datatracker.ietf.org/doc/html/rfc7234</a>
+							<br />
+						
+							<a href="https://datatracker.ietf.org/doc/html/rfc7231">https://datatracker.ietf.org/doc/html/rfc7231</a>
+							<br />
+						
+							<a href="https://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html">https://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/524.html">524</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">13</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10049/">10049</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+			<table class="results">
+				<tr height="24">
+					<th width="20%" class="risk-0"><a
+						id="10049"></a>
+						<div>Informational</div></th>
+					<th class="risk-0">Storable but Non-Cacheable Content</th>
+				</tr>
+				<tr>
+					<td width="20%">Description</td>
+					<td width="80%">
+							<div>The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.</div>
+							
+						</td>
+				</tr>
+				<TR vAlign="top">
+					<TD colspan="2"></TD>
+				</TR>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000">http://host.docker.internal:3000</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/">http://host.docker.internal:3000/</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/assets/public/favicon_js.ico">http://host.docker.internal:3000/assets/public/favicon_js.ico</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/main.js">http://host.docker.internal:3000/main.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/polyfills.js">http://host.docker.internal:3000/polyfills.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/runtime.js">http://host.docker.internal:3000/runtime.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/sitemap.xml">http://host.docker.internal:3000/sitemap.xml</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/styles.css">http://host.docker.internal:3000/styles.css</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+					<tr>
+						<td width="20%"
+							class="indent1">URL</td>
+						<td width="80%"><a href="http://host.docker.internal:3000/vendor.js">http://host.docker.internal:3000/vendor.js</a></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Method</td>
+						<td width="80%">GET</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Parameter</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Attack</td>
+						<td width="80%"></td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Evidence</td>
+						<td width="80%">max-age=0</td>
+					</tr>
+					<tr>
+						<td width="20%"
+							class="indent2">Other Info</td>
+						<td width="80%"></td>
+					</tr>
+				
+				<tr>
+					<td width="20%">Instances</td>
+					<td width="80%">9</td>
+				</tr>
+				<tr>
+					<td width="20%">Solution</td>
+					<td width="80%"></td>
+				</tr>
+				<tr>
+					<td width="20%">Reference</td>
+					<td width="80%">
+							<a href="https://datatracker.ietf.org/doc/html/rfc7234">https://datatracker.ietf.org/doc/html/rfc7234</a>
+							<br />
+						
+							<a href="https://datatracker.ietf.org/doc/html/rfc7231">https://datatracker.ietf.org/doc/html/rfc7231</a>
+							<br />
+						
+							<a href="https://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html">https://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html</a>
+							
+						</td>
+				</tr>
+				<tr>
+					<td width="20%">CWE Id</td>
+					<td width="80%"><a
+						href="https://cwe.mitre.org/data/definitions/524.html">524</a></td>
+				</tr>
+				<tr>
+					<td width="20%">WASC Id</td>
+					<td width="80%">13</td>
+				</tr>
+				<tr>
+					<td width="20%">Plugin Id</td>
+					<td width="80%"><a
+						href="https://www.zaproxy.org/docs/alerts/10049/">10049</a></td>
+				</tr>
+			</table>
+			<div class="spacer"></div>
+		
+	
+
+	
+		
+			<h3>Sequence Details</h3>
+			<sup>With the associated active scan results.</sup>
+
+			
+
+			<div class="spacer-lg"></div>
+
+		
+	
+
+</body>
+</html>
+