Deploying to gh-pages from @ d81bc0d 🚀

ministryofjustice · Mar 20, 2024 · 9a42951 · 9a42951
1 parent f0f9b80
commit 9a42951
Show file tree

Hide file tree

Showing 6 changed files with 34 additions and 34 deletions.
diff --git a/...ion-dev.hmpps.service.justice.gov.uk.html → zap-report/index.html b/...ion-dev.hmpps.service.justice.gov.uk.html → zap-report/index.html
@@ -5,19 +5,19 @@
 <meta name="viewport" content="width=device-width, initial-scale=1">
 <title>ZAP Scanning Report</title>
 <link
-	href="2024-03-20-ZAP-Report-manage-a-supervision-dev.hmpps.service.justice.gov.uk/normalize/normalize.css" rel="stylesheet">
+	href="index/normalize/normalize.css" rel="stylesheet">
 <link
-	href="2024-03-20-ZAP-Report-manage-a-supervision-dev.hmpps.service.justice.gov.uk/themes/original/main.css" rel="stylesheet">
+	href="index/themes/original/main.css" rel="stylesheet">
 <link
-	href="2024-03-20-ZAP-Report-manage-a-supervision-dev.hmpps.service.justice.gov.uk/themes/original/colors.css" rel="stylesheet">
+	href="index/themes/original/colors.css" rel="stylesheet">
 </head>
 <body>
 	<header>
 		<h1>ZAP Scanning Report</h1>
 		<p>
 			<span>Generated with</span> <a href="https://zaproxy.org"><img
-				src="2024-03-20-ZAP-Report-manage-a-supervision-dev.hmpps.service.justice.gov.uk/zap32x32.png" alt="The ZAP logo" class="zap-logo">ZAP</a>
-			<span>on Wed 20 Mar 2024, at 17:40:30</span>
+				src="index/zap32x32.png" alt="The ZAP logo" class="zap-logo">ZAP</a>
+			<span>on Wed 20 Mar 2024, at 17:52:27</span>
 		</p>
 		<p>ZAP Version: 2.14.0</p>
 	</header>
@@ -395,15 +395,15 @@ <h3>Alert counts by alert type</h3>
 							<th scope="row"><a
 								href="#alert-type-4">Session Management Response Identified</a></th>
 							<td class="risk-level">Informational</td>
-							<td><span>346</span><br> <span
-								class="additional-info-percentages">(5,766.7%)</span></td>
+							<td><span>308</span><br> <span
+								class="additional-info-percentages">(5,133.3%)</span></td>
 						</tr>
 						<tr>
 							<th scope="row"><a
 								href="#alert-type-5">User Agent Fuzzer</a></th>
 							<td class="risk-level">Informational</td>
-							<td><span>72</span><br> <span
-								class="additional-info-percentages">(1,200.0%)</span></td>
+							<td><span>60</span><br> <span
+								class="additional-info-percentages">(1,000.0%)</span></td>
 						</tr>
 					</tbody>
 					<tfoot>
@@ -499,7 +499,7 @@ <h5>
 				<summary>Status line and header section (410 bytes)</summary>
 
 				<pre><code>HTTP/1.1 200
-Date: Wed, 20 Mar 2024 17:39:13 GMT
+Date: Wed, 20 Mar 2024 17:51:18 GMT
 Content-Type: text/html;charset=UTF-8
 Connection: keep-alive
 X-Content-Type-Options: nosniff
@@ -865,7 +865,7 @@ <h5>
 				<summary>Status line and header section (410 bytes)</summary>
 
 				<pre><code>HTTP/1.1 200
-Date: Wed, 20 Mar 2024 17:39:13 GMT
+Date: Wed, 20 Mar 2024 17:51:18 GMT
 Content-Type: text/html;charset=UTF-8
 Connection: keep-alive
 X-Content-Type-Options: nosniff
@@ -1220,15 +1220,15 @@ <h5>
 	<tr>
 		<th scope="row">Response</th>
 		<td><details open="open">
-				<summary>Status line and header section (1404 bytes)</summary>
+				<summary>Status line and header section (1410 bytes)</summary>
 
 				<pre><code>HTTP/1.1 302 Found
-Date: Wed, 20 Mar 2024 17:39:53 GMT
+Date: Wed, 20 Mar 2024 17:51:56 GMT
 Content-Type: text/plain; charset=utf-8
 Content-Length: 30
 Connection: keep-alive
 request-context: appId=cid-v1:
-Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-9e80d66d5196a674fd48d1a547b1e4d8&#39;;style-src &#39;self&#39; &#39;nonce-9e80d66d5196a674fd48d1a547b1e4d8&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
+Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-92c97298125420ae1036b03e33161859&#39;;style-src &#39;self&#39; &#39;nonce-92c97298125420ae1036b03e33161859&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
 Cross-Origin-Embedder-Policy: require-corp
 Cross-Origin-Opener-Policy: same-origin
 Cross-Origin-Resource-Policy: same-origin
@@ -1241,13 +1241,13 @@ <h5>
 X-Frame-Options: SAMEORIGIN
 X-Permitted-Cross-Domain-Policies: none
 X-XSS-Protection: 0
-X-Request-Id: 1e43561e951801166df9a794fe98b6fd
+X-Request-Id: a94b9fe3bfa629692568d0666ac9cd61
 Surrogate-Control: no-store
 Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
 Expires: 0
 Location: /sign-in
 Vary: Accept, Accept-Encoding
-Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3AX9uzrCPS6F0bOWLp22GOUjjaHCpBwdxO.UWZtG20tCwbEWCnht6pnrTMcPRQTGIEgzQspT0U9cnM; Path=/; Expires=Wed, 20 Mar 2024 19:39:53 GMT; HttpOnly; Secure; SameSite=Lax
+Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3AqyUHqhRVTJZZd4nvcI9stALGgGDckQq6.A3%2BYToai%2F040XjSP3ow%2FkraBhtxJfigAH7r0lSSgBPg; Path=/; Expires=Wed, 20 Mar 2024 19:51:56 GMT; HttpOnly; Secure; SameSite=Lax
 
 </code></pre>
 
@@ -1366,7 +1366,7 @@ <h5>
 				<summary>Status line and header section (410 bytes)</summary>
 
 				<pre><code>HTTP/1.1 200
-Date: Wed, 20 Mar 2024 17:39:13 GMT
+Date: Wed, 20 Mar 2024 17:51:18 GMT
 Content-Type: text/html;charset=UTF-8
 Connection: keep-alive
 X-Content-Type-Options: nosniff
@@ -1645,7 +1645,7 @@ <h5>
 									<ol>
 										<li><details>
 												<summary>
-													<span class="request-method-n-url">GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/</span>
+													<span class="request-method-n-url">GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/case/X756510</span>
 												</summary>
 
 <table class="alerts-table">
@@ -1672,9 +1672,9 @@ <h5>
 	<tr>
 		<th scope="row">Request</th>
 		<td><details open="open">
-				<summary>Request line and header section (308 bytes)</summary>
+				<summary>Request line and header section (320 bytes)</summary>
 
-				<pre><code>GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/ HTTP/1.1
+				<pre><code>GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/case/X756510 HTTP/1.1
 host: manage-a-supervision-dev.hmpps.service.justice.gov.uk
 user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
 pragma: no-cache
@@ -1694,15 +1694,15 @@ <h5>
 	<tr>
 		<th scope="row">Response</th>
 		<td><details open="open">
-				<summary>Status line and header section (1404 bytes)</summary>
+				<summary>Status line and header section (1406 bytes)</summary>
 
 				<pre><code>HTTP/1.1 302 Found
-Date: Wed, 20 Mar 2024 17:39:12 GMT
+Date: Wed, 20 Mar 2024 17:51:17 GMT
 Content-Type: text/plain; charset=utf-8
 Content-Length: 30
 Connection: keep-alive
 request-context: appId=cid-v1:
-Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-43ec18df2d2ce00cdc04f7f4552be3a0&#39;;style-src &#39;self&#39; &#39;nonce-43ec18df2d2ce00cdc04f7f4552be3a0&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
+Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-d2ea2933af645f28b89759beae10fe95&#39;;style-src &#39;self&#39; &#39;nonce-d2ea2933af645f28b89759beae10fe95&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
 Cross-Origin-Embedder-Policy: require-corp
 Cross-Origin-Opener-Policy: same-origin
 Cross-Origin-Resource-Policy: same-origin
@@ -1715,13 +1715,13 @@ <h5>
 X-Frame-Options: SAMEORIGIN
 X-Permitted-Cross-Domain-Policies: none
 X-XSS-Protection: 0
-X-Request-Id: e92c915ae7401b8b5d7c19faa6a09764
+X-Request-Id: f3db462b800728ba49231e10102ae015
 Surrogate-Control: no-store
 Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
 Expires: 0
 Location: /sign-in
 Vary: Accept, Accept-Encoding
-Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3A4a3Djz1d8Me-7zptqzXIDuOkua9Jf0Ai.yab5xiQqYggIdvD9kRrj9yiqNkcpzxlIUsMv7S9EqLA; Path=/; Expires=Wed, 20 Mar 2024 19:39:12 GMT; HttpOnly; Secure; SameSite=Lax
+Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3AZ_O7cb20u5Wkn9xNHSWIIWKBoPgbTBzh.NcEzdX3wF474SPnPHUpGK%2F7TbZHcrVG3wiDVsKDKAhY; Path=/; Expires=Wed, 20 Mar 2024 19:51:17 GMT; HttpOnly; Secure; SameSite=Lax
 
 </code></pre>
 
@@ -1741,7 +1741,7 @@ <h5>
 
 	<tr>
 		<th scope="row">Evidence</th>
-		<td><pre><code>s%3A4a3Djz1d8Me-7zptqzXIDuOkua9Jf0Ai.yab5xiQqYggIdvD9kRrj9yiqNkcpzxlIUsMv7S9EqLA</code></pre></td>
+		<td><pre><code>s%3AZ_O7cb20u5Wkn9xNHSWIIWKBoPgbTBzh.NcEzdX3wF474SPnPHUpGK%2F7TbZHcrVG3wiDVsKDKAhY</code></pre></td>
 	</tr>
 	<tr>
 		<th scope="row">Solution</th>
@@ -1763,7 +1763,7 @@ <h5>
 									<ol>
 										<li><details>
 												<summary>
-													<span class="request-method-n-url">GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/</span>
+													<span class="request-method-n-url">GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/robots.txt</span>
 												</summary>
 
 <table class="alerts-table">
@@ -1785,9 +1785,9 @@ <h5>
 	<tr>
 		<th scope="row">Request</th>
 		<td><details open="open">
-				<summary>Request line and header section (247 bytes)</summary>
+				<summary>Request line and header section (257 bytes)</summary>
 
-				<pre><code>GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/ HTTP/1.1
+				<pre><code>GET https://manage-a-supervision-dev.hmpps.service.justice.gov.uk/robots.txt HTTP/1.1
 host: manage-a-supervision-dev.hmpps.service.justice.gov.uk
 user-agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)
 pragma: no-cache
@@ -1810,11 +1810,11 @@ <h5>
 				<summary>Status line and header section (1595 bytes)</summary>
 
 				<pre><code>HTTP/1.1 302 Found
-Date: Wed, 20 Mar 2024 17:39:56 GMT
+Date: Wed, 20 Mar 2024 17:51:59 GMT
 Content-Length: 0
 Connection: keep-alive
 request-context: appId=cid-v1:
-Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-f4bd3405b527935fb10022465c6e5e38&#39;;style-src &#39;self&#39; &#39;nonce-f4bd3405b527935fb10022465c6e5e38&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
+Content-Security-Policy: default-src &#39;self&#39;;script-src &#39;self&#39; &#39;nonce-7d2dc607fe598eb93e2abf60790d3e7a&#39;;style-src &#39;self&#39; &#39;nonce-7d2dc607fe598eb93e2abf60790d3e7a&#39;;font-src &#39;self&#39;;form-action &#39;self&#39; https://sign-in-dev.hmpps.service.justice.gov.uk/auth;base-uri &#39;self&#39;;frame-ancestors &#39;self&#39;;img-src &#39;self&#39; data:;object-src &#39;none&#39;;script-src-attr &#39;none&#39;;upgrade-insecure-requests
 Cross-Origin-Embedder-Policy: require-corp
 Cross-Origin-Opener-Policy: same-origin
 Cross-Origin-Resource-Policy: same-origin
@@ -1827,12 +1827,12 @@ <h5>
 X-Frame-Options: SAMEORIGIN
 X-Permitted-Cross-Domain-Policies: none
 X-XSS-Protection: 0
-X-Request-Id: 0ed4f76510f0227fd9ab0010eedc650b
+X-Request-Id: b9c29544f7291f2a7283b5cb8585b1d9
 Surrogate-Control: no-store
 Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
 Expires: 0
-Location: https://sign-in-dev.hmpps.service.justice.gov.uk/auth/oauth/authorize?response_type=code&amp;redirect_uri=https%3A%2F%2Fmanage-a-supervision-dev.hmpps.service.justice.gov.uk%2Fsign-in%2Fcallback&amp;state=KJ3rFVIwgaBCMCHKriGFNzzD&amp;client_id=hmpps-manage-a-supervision-ui-client-1
-Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3A1_wRSieldqewCaRvQDc8M2YgARzKXJ-U.ZPznLoe6EE974Sj01fbqEDuNx04DlFarc1%2BKI5IRjb8; Path=/; Expires=Wed, 20 Mar 2024 19:39:56 GMT; HttpOnly; Secure; SameSite=Lax
+Location: https://sign-in-dev.hmpps.service.justice.gov.uk/auth/oauth/authorize?response_type=code&amp;redirect_uri=https%3A%2F%2Fmanage-a-supervision-dev.hmpps.service.justice.gov.uk%2Fsign-in%2Fcallback&amp;state=zQQO2aY4l3zIlKMY2NOrtchY&amp;client_id=hmpps-manage-a-supervision-ui-client-1
+Set-Cookie: hmpps-manage-a-supervision-ui.session=s%3A3XKVGZwrWzOVnA7j7JJ8of1416-H1Q_n.TgNtL0RvkBWjb3hGWRGaDdgMxjgaRo3z8UpxHWE%2FV00; Path=/; Expires=Wed, 20 Mar 2024 19:51:59 GMT; HttpOnly; Secure; SameSite=Lax
 
 </code></pre>
 

diff --git a/...rvice.justice.gov.uk/normalize/LICENSE.md → zap-report/index/normalize/LICENSE.md b/...rvice.justice.gov.uk/normalize/LICENSE.md → zap-report/index/normalize/LICENSE.md
diff --git a/...ce.justice.gov.uk/normalize/normalize.css → zap-report/index/normalize/normalize.css b/...ce.justice.gov.uk/normalize/normalize.css → zap-report/index/normalize/normalize.css
diff --git a/...justice.gov.uk/themes/original/colors.css → zap-report/index/themes/original/colors.css b/...justice.gov.uk/themes/original/colors.css → zap-report/index/themes/original/colors.css
diff --git a/...e.justice.gov.uk/themes/original/main.css → zap-report/index/themes/original/main.css b/...e.justice.gov.uk/themes/original/main.css → zap-report/index/themes/original/main.css
diff --git a/...hmpps.service.justice.gov.uk/zap32x32.png → zap-report/index/zap32x32.png b/...hmpps.service.justice.gov.uk/zap32x32.png → zap-report/index/zap32x32.png