New Website Security Checks

I added in a few new checks to Opti, mostly around security items. The full list of items that are checked is here: Website Checklist

HTTPS Redirect Check

Ensures that all HTTP traffic is automatically redirected to HTTPS, preventing users from accidentally accessing the site over an unencrypted connection and reducing exposure to man-in-the-middle attacks.

HTTP Strict Transport Security (HSTS)

Verifies that the server instructs browsers to only communicate over HTTPS, protecting against protocol downgrade attacks and cookie hijacking even after the initial secure connection is established.

MySQL Port Check

Detects whether MySQL database ports (typically 3306) are publicly accessible, as an exposed database port is a significant security risk that can invite brute-force attacks, unauthorized access, and potential data breaches.