Enable 598.2 passive check
What does this MR do?
- Replace ZAP rule 10024 with 598.2 in browser based scan (!586 (merged))
- Upgrade Browserker to version
0.0.71(!586 (merged))- Enable
598.2passive check browserker!553 - Upgrade vulnerability checks to version
1.0.10browserker!553- Add
598.3Use of GET request method with sensitive query strings (Authorization header details) dast-cwe-checks!86 - Convert
598.2to implementer defined check dast-cwe-checks!87
- Add
- Enable
What are the relevant issue numbers?
CWE-598: Use of GET Request Method With Sensitive Query Strings
GitLab Docs MR
Edited by Philip Cunningham