May 14, 20200 mins read
We are excited to announce the security integration with WebPageTest!
We at Snyk know that web developers have many cross-cutting concerns they need to handle — for example, performance, accessibility, and security — and we set out to help address one of those concerns with the help of a super popular tool — WebPageTest.
If you ever worked on improving your website’s speed, chances are you’ve used WebPageTest. It’s a great tool with detailed metrics on website performance tests. However, it lacked access to security insights. But don’t worry—with the Snyk integration, this issue is solved.
How do I start testing for website security?
Head over to https://webpagetest.org and type in a website address to scan.
In the screenshot below we used the Snyk websites to get performance and security insights.
When you’re done click
START TEST to begin the scan:
Once testing is complete, WebPageTest presents the following page with the test results.
You’ll now notice the addition of a new top-level score:
The https://snyk.io website got a score of
But what does this score represent??
Click on the
A score to open the detailed security insights page:
The results provide:
the security grade with a link that explains how we calculate an overall score,
a list of HTTP security headers that the website responds with, and a list of those that are missing.
We are fully transparent about how we calculate the overall score and grade for a website. If you are curious to learn more about calculating the website security score, we have a blog post about website security score explained, head over to our blog post: website security score explained.
If you don’t have a Snyk account yet, it is free to sign up for both open source projects and private repositories. With Snyk, you’ll find those 3rd-party library vulnerabilities long before you deploy to production, and once you deploy Snyk will monitor them closely and alert you, if new vulnerabilities have been discovered.