gitlab-org/security-products/dast v3.0.64

on GitLab

Changes

• Upgrade browserker to version 0.0.141 (!732)
  • Improve active check logs to aid debugging browserker!1036
  • Fix rounding error causing clicks to click outside the intended HTML element browserker!1038
• Enable browser-based attacks with feature flag DAST_FF_ENABLE_BROWSER_BASED_ATTACKS (!721)
• Add mutual TLS for browser-based active scans (!729)
• Upgrade browserker to version 0.0.140 (!730)
  • Add support for ClientCertificate and ClientCertificatePassword in the TOML configuration for active check mutual TLS browserker!1033
  • Release Browserker as a multi-architecture Docker image supporting linux/arm64 and linux/amd64 browserker!1028
  • Upgrade vulnerability checks to version 1.0.55 browserker!1023
    • Add request_body as injection location in 74.1 dast-cwe-checks!203
    • Remove duplicate injection location in 611.1 dast-cwe-checks!203
    • Update capitalization of URL in 22.1 description dast-cwe-checks!202
    • Update YAML to address markdown linting issues dast-cwe-checks!201

Docker Images

• registry.gitlab.com/security-products/dast:3.0.64