security-headers

Audit HTTP security headers for any website — checks HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, COOP, CORP, and XSS-Protection. Grades sites A-F. Detects server info leakage (Server, X-Powered-By). Use when asked to check website security, audit headers, find missing security headers, or grade a site's HTTP security posture. Zero dependencies.

作者: admin | 来源: ClawHub

源自

ClawHub

版本

V 1.0.0

安全检测

已通过

73
下载量

0
收藏

概述

安装方式

版本历史

security-headers

# security-headers 🔒 HTTP security headers auditor with grading and info leak detection. ## Commands ```bash # Check one or more sites (auto-adds https://) python3 scripts/headers.py github.com example.com # JSON output python3 scripts/headers.py --json example.com ``` ## Checks (9 headers) - 🔴 **High**: Strict-Transport-Security (HSTS), Content-Security-Policy (CSP) - 🟡 **Medium**: X-Content-Type-Options, X-Frame-Options, Referrer-Policy - 🟢 **Low**: Permissions-Policy, X-XSS-Protection, COOP, CORP ## Grading - **A** (≥78%): 7+ headers present - **B** (≥56%): 5-6 headers - **C** (≥33%): 3-4 headers - **D** (≥11%): 1-2 headers - **F** (0%): No security headers ## Info Leak Detection Flags Server, X-Powered-By, X-AspNet-Version, X-Generator headers that reveal technology stack.

通过对话安装

该技能支持在以下平台通过对话安装：

OpenClaw WorkBuddy QClaw Kimi Claude

方式一：安装 SkillHub 和技能

帮我安装 SkillHub 和 headers-1775973497 技能

方式二：设置 SkillHub 为优先技能安装源

设置 SkillHub 为我的优先技能安装源，然后帮我安装 headers-1775973497 技能

通过命令行安装

skillhub install headers-1775973497

下载 Zip 包

⬇ 下载 security-headers v1.0.0

文件大小: 4.3 KB | 发布时间: 2026-4-13 10:32

v1.0.0 最新 2026-4-13 10:32

Initial release of security-headers skill.

- Audits HTTP security headers for any website and grades security posture A–F.
- Checks 9 essential headers including HSTS, CSP, and X-Frame-Options.
- Detects server information leakage via headers like Server and X-Powered-By.
- Provides command-line usage for single or multiple sites, with optional JSON output.
- Zero external dependencies.