Changes
- The report field
vulnerabilities[].evidence.summaryis truncated to 20,000 characters (!432) - Remove all references to WASC from the DAST report (!442)
- Browserker scans no longer ping the target as part of the scan (!443)
- Redact
DAST_PASSWORDfrom Selenium logs when debug mode is enabled (!431) - Disable
https://www.zaproxy.org/docs/alerts/10109for all scans (!446) - Add
DAST_API_OPENAPIconfiguration variable (!441)