Agentic AI Atlasby a5c.ai
/
GitHubDocsDiscord
iiRecord
Agentic AI Atlas · CSP Header Audit
workflow:csp-header-audita5c.ai
II.
Workflow JSON

workflow:csp-header-audit

Structured · live

CSP Header Audit json

Inspect the normalized record payload exactly as the atlas UI reads it.

File · workflows/workflows/workflows-web-deep.yamlCluster · workflows
Record JSON
{
  "id": "workflow:csp-header-audit",
  "_kind": "Workflow",
  "_file": "workflows/workflows/workflows-web-deep.yaml",
  "_cluster": "workflows",
  "attributes": {
    "displayName": "CSP Header Audit",
    "workflowKind": "security",
    "triggerType": "scheduled",
    "typicalCadence": "quarterly",
    "complexity": "cross-team",
    "description": "Audits Content Security Policy headers across all web properties — scanning\nfor unsafe-inline and unsafe-eval directives, validating nonce/hash\nintegrity, analyzing CSP violation reports for false positives and real\nthreats, testing report-only policies before enforcement, and verifying\nthird-party script allowlists against the current vendor inventory. Excludes\ngeneral web application penetration testing.\n"
  },
  "outgoingEdges": [
    {
      "from": "workflow:csp-header-audit",
      "to": "role:security-reviewer",
      "kind": "involves_role",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "role:implementer",
      "kind": "involves_role",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "role:tech-lead",
      "kind": "involves_role",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "skill-area:webhook-verification",
      "kind": "requires_skill_area",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "skill-area:observability-pipeline",
      "kind": "requires_skill_area",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "domain:web-development",
      "kind": "applies_to_domain",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "domain:security",
      "kind": "applies_to_domain",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "responsibility:run-security-scans",
      "kind": "triggers_responsibility",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "responsibility:security-review",
      "kind": "triggers_responsibility",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "org-unit:application-security-team",
      "kind": "performed_by_org_unit",
      "attributes": {}
    },
    {
      "from": "workflow:csp-header-audit",
      "to": "org-unit:frontend-team",
      "kind": "performed_by_org_unit",
      "attributes": {}
    }
  ],
  "incomingEdges": []
}