Update the SQL Injection check tests using the DAST CWE specifications

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Problem

Running timing attacks sequentially has increased the API Security scan times by 4x for some customers. One way to lower the time is to optimize the injections that are performed. Vulnerability research has defined a specification for testing SQL Injection for DAST that may have significantly fewer injections.

Proposal

Update the SQL Injection injections list using the DAST CWE specifications (CWE 89).