Changes
- The report field
vulnerabilities[].evidence.summary
is truncated to 20,000 characters (!432) - Remove all references to WASC from the DAST report (!442)
- Browserker scans no longer ping the target as part of the scan (!443)
- Redact
DAST_PASSWORD
from Selenium logs when debug mode is enabled (!431) - Disable
https://www.zaproxy.org/docs/alerts/10109
for all scans (!446) - Add
DAST_API_OPENAPI
configuration variable (!441)