An error occurred while fetching this tab.
Prepare DAST for 2.0 release
- May 31, 2021
-
-
Cameron Swords authored
-
- May 26, 2021
-
-
Avielle Wolfe authoredThese ones work with RailsGoat
-
Avielle Wolfe authored
-
Avielle Wolfe authored
Will this fix Danger?
-
Avielle Wolfe authored
-
Avielle Wolfe authored
For a while, we've been plagued by vulnerabilities in the WebGoat full scan E2E spec that have unpredictable strings in their values. This commit excludes those rules from running, so we can have a more stable spec
-
Avielle Wolfe authored
This spec included expectations that were checking fields in the `site` section of the report, which has been removed in DAST 2.0
-
Avielle Wolfe authored
The domain validation feature has been removed in DAST 2.0
-
Avielle Wolfe authored
Because DAST 2.0 no longer resets the target to host by default, this scan finds many more pages and vulnerabilities. (On WebGoat, the host is a 404.)
-
Avielle Wolfe authored
The spec was using `DAST_AUTH_EXCLUDE_URLS`, which has been deprecated in favor of `DAST_EXCLUDE_URLS`
-
Avielle Wolfe authored
The only change in most E2E expect files with DAST 2.0 is the removal of the deprecated ZAP fields. This commit contains all of those changes.
-
Avielle Wolfe authored
-
