Quickly and easily assess the security of your HTTP response headers using securityheaders.com.
A simple example:
on:
deployment_status
jobs:
security-headers-check:
name: Analyse HTTP response headers
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
repository: marcuslindblom/security-headers
- uses: marcuslindblom/security-headers@main
with:
url: ${{ secrets.SECURITY_HEADERS_URL }}
followRedirects: true # This is optional
grade: AExample output:
