Cross-Origin Isolation Headers
Phase 2config mgmtWSTG-CONF
Description
Checks for Cross-Origin-Embedder-Policy (COEP), Cross-Origin-Opener-Policy (COOP), and Cross-Origin-Resource-Policy (CORP) response headers.
Security Impact
Missing COOP allows other windows to retain a reference to your window object, enabling Spectre-class exploits. COEP + COOP together unlock secure use of SharedArrayBuffer.
Automated Detection & AI Remediation
DygDog automatically detects Cross-Origin Isolation Headers using its continuous, passive scanning engine. When discovered, DygDog provides infrastructure-specific, copy-paste ready code snippets generated by frontier AI models to help you remediate the issue instantly without generic advice.
Start Free Scan