Security Headers

Grade your site's HTTP response headers. HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy, COOP/CORP. Copy-paste fixes for what's missing.