%23%23%20Contexte%20%F0%9F%91%80%0A%0A%0A%2A77%25%20des%20citoyens%20sont%20motiv%C3%A9s%20%C3%A0%20changer%20leurs%20habitudes%20de%20consommation%20pour%20assurer%20l%E2%80%99avenir%20des%20g%C3%A9n%C3%A9rations%20futures.%2A%20%28Barom%C3%A8tre%20Greenflex%2C%20ADEME%20de%20la%20consommation%20responsable%2C%202023%29%0A%0AAnn%C3%A9e%20apr%C3%A8s%20ann%C3%A9e%2C%20les%20fran%C3%A7ais%20se%20d%C3%A9clarent%20de%20plus%20en%20plus%20nombreux%20%C3%A0%20vouloir%20agir%20en%20faveur%20de%20l%E2%80%99environnement.%20Et%20le%C2%A0%2A%2Atri%20et%20la%20consommation%20responsable%2A%2A%C2%A0sont%C2%A0%2A%2Aau%20c%C5%93ur%20des%20pr%C3%A9occupations%2A%2A%C2%A0%2A%2Aet%20des%20gestes%2A%2A%C2%A0que%20les%20citoyens%20peuvent%20mettre%20en%20place.%0A%0APour%20se%20d%C3%A9sencombrer%20et%20consommer%20de%20mani%C3%A8re%20plus%20responsable%2C%20les%20citoyens%20comme%20les%20professionnels%20du%20secteur%20ont%20besoin%20de%20conna%C3%AEtre%C2%A0%2A%2Al%E2%80%99ensemble%20des%20lieux%20o%C3%B9%20ils%20pourront%20r%C3%A9parer%2C%20partager%2C%20donner%20ou%20vendre%20ces%20objets%2A%2A.%0A%0ASi%20le%20tri%20des%20principaux%20emballages%20est%20d%C3%A9sormais%20bien%20connu%2C%20il%20est%20loin%20d%E2%80%99%C3%AAtre%20g%C3%A9n%C3%A9ralis%C3%A9%20pour%20tous%20les%20objets.%20De%20plus%2C%20les%20pratiques%20de%20r%C3%A9paration%20et%20de%20partage%20peinent%20%C3%A0%20s%E2%80%99inscrire%20de%20mani%C3%A8re%20p%C3%A9renne%20dans%20les%20pratiques%20de%20citoyens.%0A%0AParall%C3%A8lement%2C%20le%20dispositif%20des%20fili%C3%A8res%20de%C2%A0%2AResponsabilit%C3%A9%20%C3%A9largie%20du%20producteur%2A%C2%A0%28REP%29%20continue%20de%20s%E2%80%99%C3%A9largir%20et%20de%20nouvelles%20fili%C3%A8res%20REP%20s%E2%80%99appr%C3%AAtent%20%C3%A0%20%C3%AAtre%20lanc%C3%A9es.%0AInspir%C3%A9%20du%20principe%20%C2%AB%20pollueur-payeur%20%C2%BB%2C%20le%20dispositif%20de%20REP%20implique%20que%20les%C2%A0acteurs%20%C3%A9conomiques%C2%A0%28fabricants%2C%20distributeurs%2C%20importateurs%29%20sont%C2%A0responsables%20de%20l%E2%80%99ensemble%20du%20cycle%20de%20vie%20des%20produits%C2%A0qu%E2%80%99ils%20mettent%20sur%20le%20march%C3%A9%20%3A%20%C3%A9co-conception%20des%20produits%2C%20pr%C3%A9vention%20des%20d%C3%A9chets%2C%20allongement%20de%20la%20dur%C3%A9e%20d%E2%80%99usage%20et%20gestion%20de%20fin%20de%20vie.%0A%0A%23%23%20Solution%20%F0%9F%92%A1%0A%5BLongue%20vie%20aux%20objets%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%20accompagne%20les%20%2A%2Acitoyens%2A%2A%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2C%20gr%C3%A2ce%20%C3%A0%20%2A%2Ades%20bonnes%20pratiques%20et%20adresses%20autour%20de%20chez%20eux%2A%2A%2C%20pour%20%C3%A9viter%20l%27achat%20neuf%20et%20r%C3%A9duire%20les%20d%C3%A9chets.%0A%0APour%20les%20%2A%2Acollectivit%C3%A9s%2C%20associations%2C%20entreprises%20et%20m%C3%A9dias%2A%2A%2C%20Longue%20vie%20aux%20objets%20met%20%C3%A0%20disposition%20des%20%2A%2Aoutils%20num%C3%A9riques%20gratuits%20de%20sensibilisation%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2A%2A%20qui%20valorisent%20les%20acteurs%20de%20l%27%C3%A9conomie%20sur%20chaque%20territoire.%0A%0ADeux%20outils%20sont%20disponibles%20%3A%0A%2A%20%2A%2A%5BL%27assistant%20au%20tri%20%22Que%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%22%5D%28https%3A%2F%2Fquefairedemesdechets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20conseil%2A%2A%2C%20aide%20les%20citoyens%20%C3%A0%20%2A%2Acomprendre%20le%20cycle%20de%20vie%20des%20objets%2C%20pour%20cesser%20de%20les%20jeter%2A%2A.%20Les%20citoyens%20sont%20guid%C3%A9s%20pour%20se%20d%C3%A9sencombrer%20de%20fa%C3%A7on%20responsable.%0A%2A%20%2A%2A%5BLa%20carte%20des%20acteurs%20de%20l%27%C3%A9conomie%20circulaire%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Flacarte%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20g%C3%A9olocalis%C3%A9e%2A%2A%2C%20met%20en%20avant%20les%20%2A%2Asolutions%20locales%20pour%20prolonger%20la%20vie%20de%20ses%20objets%2A%2A.%20Les%20citoyens%20d%C3%A9couvrent%20de%20bonnes%20adresses%20autour%20de%20chez%20eux%20pour%20mieux%20consommer.%0A%0ANous%20allons%20rendre%20progressivement%20toutes%20nos%20%20%2A%2A%5Bdonn%C3%A9es%20accessibles%20en%20open-data%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Freutiliser-nos-donnees%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%20pour%20qu%27elles%20puissent%20%C3%AAtre%20r%C3%A9utilis%C3%A9es%20facilement.%0A%0ANous%20souhaitons%20devenir%20la%20%2A%2Ar%C3%A9f%C3%A9rence%20nationale%20des%20solutions%20de%20tri%20et%20de%20consommation%20responsable%2A%2A%2C%20en%20valorisant%20les%20acteurs%20de%20l%E2%80%99%C3%A9conomie%20circulaire%20et%20en%20diffusant%20nos%20outils%20gratuitement.%0A%0A%23%23%20Strat%C3%A9gie%20de%20diffusion%20%F0%9F%93%88%0A%0APour%20augmenter%20la%20diffusion%20de%20nos%20outils%20et%20d%C3%A9multiplier%20leur%20usage%2C%20nous%20nous%20appuyons%20sur%20une%20strat%C3%A9gie%20B2B2C%2C%20avec%20des%20%2A%2Arelais%20locaux%2C%20collectivit%C3%A9s%2C%20associations%2C%20%20entreprises%20et%20m%C3%A9dias%2A%2A.%0A%0ANos%20objectifs%20pour%20nos%20relais%20sont%20%3A%20%0A-%20%2A%2ACollectivit%C3%A9s%2A%2A%20%3A%20Communiquer%20facilement%20aupr%C3%A8s%20de%20leurs%20administr%C3%A9s%20sur%20les%20lieux%20de%20r%C3%A9paration%2C%20r%C3%A9emploi%20ou%20recyclage.%0A-%20%2A%2AM%C3%A9dias%2A%2A%20%3A%20Donner%20des%20pistes%20d%27action%20concr%C3%A8tes%20%C3%A0%20leurs%20lecteurs%20pour%20r%C3%A9duire%20leurs%20d%C3%A9chets%20en%20prolongeant%20la%20vie%20de%20leurs%20objets.%0A-%20%2A%2AAssociations%20et%20entreprises%2A%2A%20%3A%20Incarner%20leurs%20engagements%20en%20faveur%20du%20r%C3%A9emploi.%0A%0ALa%20carte%20a%20%C3%A9t%C3%A9%20mise%20en%20avant%20lors%20de%20la%20campagne%20de%20communication%20de%20l%E2%80%99ADEME%20%E2%80%9C%5BEpargnons%20nos%20ressources%5D%28https%3A%2F%2Fepargnonsnosressources.gouv.fr%2F%29%E2%80%9D%20lanc%C3%A9e%20en%20novembre%202023.%0A%0AComme%20point%20d%E2%80%99entr%C3%A9e%20unique%20pour%20les%20citoyens%2C%20l%27assistant%20au%20tri%20%E2%80%9CQue%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%E2%80%9D%20est%20connu%20depuis%2010%20ans%2C%20relay%C3%A9%20chaque%20ann%C3%A9e%20par%20les%20%5Bcampagnes%20minist%C3%A9rielles%20sur%20l%27Info-tri%5D%28https%3A%2F%2Fwww.ecologie.gouv.fr%2Finfo-tri%29%20et%20mentionn%C3%A9%20sur%20les%20%C3%A9tiquettes%20de%20nombreux%20objets%2C%20pour%20toucher%20le%20maximum%20de%20citoyens.%20%0A%0ANous%20pr%C3%A9voyons%20un%20d%C3%A9ploiement%20progressif%20de%20nos%20outils%20sur%20les%20sites%20des%20collectivit%C3%A9s%20pour%20toucher%20leurs%20usagers%2C%20en%20commen%C3%A7ant%20par%20les%20collectivit%C3%A9s%20de%20tailles%20petite%20et%20moyenne%2C%20n%E2%80%99ayant%20pas%20de%20solutions%20num%C3%A9riques%20ou%20incompl%C3%A8tes%20sur%20ce%20sujet.%0A%0A%0A%0A%23%23%20Impact%20%F0%9F%8C%8E%0A%0ALongue%20vie%20aux%20objets%20est%20un%20service%20num%C3%A9rique%20con%C3%A7u%20selon%20l%E2%80%99%2A%2Aapproche%20Startup%20d%E2%80%99%C3%89tat%20et%20pilot%C3%A9%20par%20l%E2%80%99impact%2A%2A.%0A%0APour%20mesurer%20l%27impact%20de%20nos%20outils%2C%20nous%20nous%20fixons%20des%20objectifs%20et%20des%20indicateurs.%0A%0ANos%203%20principaux%20objectifs%20sont%20%3A%0A%2A%20%2A%2AFiabiliser%20et%20enrichir%20les%20donn%C3%A9es%2A%2A%0A%2A%20%2A%2AD%C3%A9multiplier%20la%20r%C3%A9utilisation%20de%20nos%20outils%2A%2A%20%28avec%20un%20focus%20sur%20les%20collectivit%C3%A9s%20en%202024%29%0A%2A%20%2A%2AOrienter%20nos%20utilisateurs%20vers%20les%20pratiques%20les%20plus%20responsables%2A%2A%20%0A%0ANotre%20%2A%2Aindicateur%20principal%20%22%C3%A9toile%20du%20nord%22%2A%2A%20est%20le%20%2A%2Anombre%20de%20visiteurs%20orient%C3%A9s%20mensuellement%2A%2A%2C%20soit%20les%20visiteurs%20qui%20ont%20r%C3%A9ellement%20eu%20des%20interactions%20avec%20un%20de%20nos%20outils%20%28consultation%20d%27une%20fiche%20produit%20ou%20d%27un%20lieu%20sur%20la%20carte%29.%20%0A%0ATous%20nos%20indicateurs%20peuvent%20%C3%AAtre%20suivis%20sur%20le%20%5Bsite%20de%20notre%20startup%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Fstats%2F%29.%0A%0AAujourd%E2%80%99hui%2C%20nos%20m%C3%A9triques%20d%E2%80%99impact%20et%20d%27usage%20sont%20suivies%20gr%C3%A2ce%20aux%20outils%20Posthog%2C%20Matomo%20et%20Metabase.%0A%0AUn%20%2A%2Acomit%C3%A9%20d%E2%80%99investissement%2A%2A%2C%20instance%20de%20pilotage%20principal%20d%E2%80%99un%20service%20num%C3%A9rique%20dans%20le%20programme%20beta.gouv.fr%2C%20a%20lieu%20tous%20les%206%20mois%20pour%20faire%20le%20point%20sur%20l%E2%80%99impact%20obtenu%20par%20l%E2%80%99%C3%A9quipe%20et%20arbitrer%20sur%20les%20objectifs%20et%20les%20investissements%20consentis%20pour%20la%20poursuite%20du%20service.%0A

committee

Longue vie aux objets

investigation

construction

Diagnostics

Metrics

http

https

A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.

CAA Record

DNS SaaS Service Detection

Allowed Options Method

A template to detect HTML Forms in page response.


Form Detection

This template searches for missing HTTP security headers. The impact of these missing headers can vary.


HTTP Missing Security Headers

A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.


Sitemap Detection

WAF Detection

Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.


Detect SSL Certificate Issuer

Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.


SSL DNS Names

TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.
It is important to detect the TLS version in order to ensure secure communication between two computers or servers.


TLS Version - Detect

_pk_ses.82.b332

_pk_id.82.b332

csrftoken

sc-sticky-session

A modest JavaScript framework for the HTML you already have.

Stimulus

Turbo is a JavaScript framework for building fast web applications.

Turbo

Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.

Matomo Analytics

HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.

HSTS

Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.

Open Graph is a protocol that is used to integrate any web page into the social graph.

severity	service	vulnerability
info	http (port:80)
info	https (port:443)

Impact	Description	Documentation
-25	Content Security Policy (CSP) header not implemented	Implement one, see MDN's Content Security Policy (CSP) documentation.
-20	`X-Frame-Options` (XFO) header cannot be recognized.	Documentation for x-frame-options-sameorigin-or-deny

risk	name
Medium (High)	Content Security Policy (CSP) Header Not Set
Medium (Medium)	X-Frame-Options Setting Malformed
Low (Medium)	Cookie with SameSite Attribute None
Low (Medium)	Insufficient Site Isolation Against Spectre Vulnerability
Low (Medium)	Permissions Policy Header Not Set
Informational (High)	Sec-Fetch-Dest Header is Missing
Informational (High)	Sec-Fetch-Mode Header is Missing
Informational (High)	Sec-Fetch-Site Header is Missing
Informational (High)	Sec-Fetch-User Header is Missing
Informational (Medium)	Base64 Disclosure
Informational (Medium)	Modern Web Application
Informational (Medium)	Session Management Response Identified
Informational (Medium)	Storable and Cacheable Content
Informational (Low)	Re-examine Cache-control Directives

https://quefairedemesdechets.ademe.fr

Nmap

Mozilla HTTP observatory

SSL

Expiration : 28/06/2025

Alertes Dependabot incubateur-ademe/quefairedemesdechets

Scan OWASPenviron 2 heures

Nucleienviron 2 heures

Séverité	Name	Matcher
info	CAA Record	caa-fingerprint
info	DNS SaaS Service Detection	dns-saas-service-detection
info	Allowed Options Method	options-method
info	Form Detection	form-detection
info	HTTP Missing Security Headers	x-permitted-cross-domain-policies
info	HTTP Missing Security Headers	clear-site-data
info	HTTP Missing Security Headers	cross-origin-embedder-policy
info	HTTP Missing Security Headers	cross-origin-resource-policy
info	HTTP Missing Security Headers	content-security-policy
info	HTTP Missing Security Headers	permissions-policy
info	Sitemap Detection	sitemap-detect
info	WAF Detection	apachegeneric
info	Detect SSL Certificate Issuer	ssl-issuer
info	SSL DNS Names	ssl-dns-names
info	TLS Version - Detect	tls-version
info	TLS Version - Detect	tls-version