added PermissionsPolicy and ReferrerPolicy security checks

Author: Kubik2000

src/security/PermissionsPolicy.ts

@@ -0,0 +1,30 @@
+import Test from '../Test';
+
+/**
+ *
+ * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Feature-Policy
+ */
+class PermissionsPolicy extends Test {
+  protected request: IRequest;
+
+  protected logger: ILogger;
+
+  constructor(request: IRequest, logger: ILogger) {
+    super();
+    this.request = request;
+    this.logger = logger;
+  }
+
+  public async run(url: string): Promise<IResult> {
+    this.logger.info('Starting Permissions-Policy test...');
+    const result = await this.request.get(url);
+
+    if (!result.response.headers.hasOwnProperty('permissions-policy')) {
+      return this.getResult('permissions-policy', 'UNSUCCESSFUL');
+    }
+
+    return this.getResult('Permissions-Policy', 'SUCCESSFUL');
+  }
+}
+
+export default PermissionsPolicy;

src/security/ReferrerPolicy.ts

@@ -0,0 +1,30 @@
+import Test from '../Test';
+
+/**
+ *
+ * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
+ */
+class ReferrerPolicy extends Test {
+  protected request: IRequest;
+
+  protected logger: ILogger;
+
+  constructor(request: IRequest, logger: ILogger) {
+    super();
+    this.request = request;
+    this.logger = logger;
+  }
+
+  public async run(url: string): Promise<IResult> {
+    this.logger.info('Starting Referrer-Policy test...');
+    const result = await this.request.get(url);
+
+    if (!result.response.headers.hasOwnProperty('referrer-policy')) {
+      return this.getResult('referrer-policy', 'UNSUCCESSFUL');
+    }
+
+    return this.getResult('Referrer-Policy', 'SUCCESSFUL');
+  }
+}
+
+export default ReferrerPolicy;

src/security/Security.ts

@@ -4,6 +4,8 @@ import Cookies from './Cookies';
 import FingerPrint from './FingerPrint';
 import HSTS from './HSTS';
 import HTTPS from './HTTPS';
+import PermissionsPolicy from './PermissionsPolicy';
+import ReferrerPolicy from './ReferrerPolicy';
 import XFrameOptions from './XFrameOptions';
 import XXSSProtection from './XXSSProtection';
 
@@ -21,6 +23,8 @@ class Security extends Test {
 
     const results = [
       await this.runTest('https', new HTTPS(request, logger), url),
+      await this.runTest('PermissionsPolicy', new PermissionsPolicy(request, logger), url),
+      await this.runTest('ReferrerPolicy', new ReferrerPolicy(request, logger), url),
       await this.runTest('XFrameOptions', new XFrameOptions(request, logger), url),
       await this.runTest('XXSSProtection', new XXSSProtection(request, logger), url),
       await this.runTest('hsts', new HSTS(request, logger), url),