isitready.dev
Start free scan

Security

HSTS header

HSTS header is one of the public readiness signals included in isitready.dev reports.

Why it matters

Strict transport policy prevents insecure downgrade paths after a browser has seen the site.

How to improve it

  • Expose the signal on the canonical public origin.
  • Link it from discovery surfaces such as robots.txt, sitemap.xml, HTML head metadata, or HTTP Link headers where appropriate.
  • Re-run the scan and confirm the evidence row now reports a passing or informational status.