Document use of environment_url.txt in API Fuzzing (!41523) · Merge requests · GitLab.org / GitLab

Michael Eddington requested to merge 241206-environmenturl-api-fuzzing-docs into master Sep 03, 2020

What does this MR do?

Documents using an environment_url.txt file instead of providing a FUZZAPI_TARGET_URL for the API Fuzzing security analyzer.

Relates to #241206 (closed)

Depends on !42031 (merged)

Does this MR meet the acceptance criteria?

Conformity

Availability and Testing

[-] Review and add/update tests for this feature/bug. Consider all test levels. See the Test Planning Process.
[-] Tested in all supported browsers
[-] Informed Infrastructure department of a default or new setting change, if applicable per definition of done

Security

If this MR contains changes to processing or storing of credentials or tokens, authorization and authentication methods and other items described in the security review guidelines:

[-] Label as security and @ mention @gitlab-com/gl-security/appsec
[-] The MR includes necessary changes to maintain consistency between UI, API, email, or other methods
[-] Security reports checked/validated by a reviewer from the AppSec team

Edited Sep 10, 2020 by Michael Eddington

Document use of environment_url.txt in API Fuzzing

What does this MR do?

Does this MR meet the acceptance criteria?

Conformity

Availability and Testing

Security

Merge request reports