Less secure website than we would expect at first sight!

Website is not malicious, but there are insecurities one would not like to see on a developer site…

Re: https://sritest.io/#report/3f63fe27-4d51-4635-a92c-783e476f2d1e meagre F-Status…
Certificate installed correctly, but BEAST vuln (well that is not such a big thing).

D+ F D X - status: https://observatory.mozilla.org/analyze.html?host=apiary.io

57 sources and 19 sinks: http://www.domxssscanner.com/scan?url=https%3A%2F%2Fstatic.apiary.io%2Fassets%2Fcommon-6fff144f.js

error in uploaded code when unpacked:

found JavaScript
error: line:38: SyntaxError: missing ) in parenthetical:
error: line:38: umentElement?(H=r,L=r.documentElement,n=r.defaultView,n&&n!==n.top&&(n.addEventListener?n.addEventListener(“unload”,Et,!1):n.attachEvent&&n.attachEvent(“onunload”,Et)),I=!T(r),x.attributes=i(function(t){return t.className=“i”,!t.getAttribute("classNam
error: line:38: …^
file: 43140c6fc114df34b0e08dc26deb90424778c9ac: 169177 bytes
braces problem…

Vuln. jQuery library: -https://apiary.io/
Detected libraries:
jquery - 2.1.4 : -https://static.apiary.io/assets/common-6fff144f.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
backbone.js - 1.2.3 : (active1) -https://apiary.io/
(active) - the library was also found to be active by running code
1 vulnerable library detected

Check for Stealth Name Servers
WARNING: Found stealth name servers:
-a8-67.akam.net.
All name servers returned by domain name servers should be listed at parent servers.

Domain wXw.apiary.io. resolves to:
United States 54.235.135.158
United States 54.221.218.81
United States 54.225.223.184
United States 75.101.145.225
United States 54.235.212.238
United States 54.243.91.166
United States 54.243.89.142
United States 54.243.154.49

polonus (volunteer website security analyst and website error-hunter)