Atlassian

atlassian.com.au

Technology

Security Score

89/100

Good security posture with minor improvements possible. Strong in: dns, tls, headers, files, general.

Scanned 3 days ago

Is this your business?

Claim this page to get detailed reports, request re-scans, and manage your profile.

CSP contains unsafe directives

MEDIUM

HEADERS

The CSP includes 'unsafe-inline' or 'unsafe-eval' which weakens protection.

Recommendation: Remove unsafe directives and use nonces or hashes instead.

Missing CAA records

LOW

DNS

No CAA records found. CAA records specify which CAs can issue certificates.

Recommendation: Add CAA records to restrict certificate issuance to trusted CAs.

Missing Referrer-Policy

LOW

HEADERS

No Referrer-Policy header found.

Recommendation: Add a Referrer-Policy header (e.g., strict-origin-when-cross-origin).

Missing Permissions-Policy

LOW

HEADERS

No Permissions-Policy header found.

Recommendation: Add a Permissions-Policy header to control browser features.

Email authentication configured

INFO

DNS

SPF, DMARC, and DKIM are all configured for this domain.

HSTS does not include subdomains

INFO

TLS

HSTS is not applied to subdomains.

Recommendation: Consider adding includeSubDomains to HSTS if applicable.

Excellent TLS configuration

INFO

TLS

Valid certificate, HSTS enabled, and TLS 1.3 supported.

Good security headers

INFO

HEADERS

Essential security headers (CSP, X-Frame-Options, X-Content-Type-Options) are configured.

No robots.txt found

INFO

FILES

No robots.txt file was found at the root.

Recommendation: Consider adding a robots.txt file to control crawler behavior.

security.txt present

INFO

FILES

A security.txt file exists, providing security contact information.