diff --git a/security-misconfiguration/hsts.yaml b/security-misconfiguration/missing-hsts.yaml similarity index 68% rename from security-misconfiguration/hsts.yaml rename to security-misconfiguration/missing-hsts.yaml index d0fb590882..1071f193e8 100644 --- a/security-misconfiguration/hsts.yaml +++ b/security-misconfiguration/missing-hsts.yaml @@ -2,9 +2,8 @@ id: missing-hsts info: name: Strict Tranposrt Security Not Enforced author: Dawid Czarnecki - severity: low - description: >- - Checks if the HSTS is enabled by looking for Strict Transport Security + severity: info + description: Checks if the HSTS is enabled by looking for Strict Transport Security response header. requests: - method: GET @@ -14,4 +13,4 @@ requests: matchers: - type: dsl dsl: - - '!contains(tolower(all_headers), ''strict-transport-security'')' + - '!contains(tolower(all_headers), ''strict-transport-security'')' \ No newline at end of file