Changes
- Upgrade browserker to version
0.0.87
(!617) - Fetch all headers for HTTP responses that are redirects browserker!668
- Update the evidence on the
601.1
check to be the request that contains a redirect parameter browserker!668 - Enable
16.10
passive check browserker!670 - Replace ZAP rule 10038 with:
- Replace ZAP rule 10055 with:
- Upgrade browserker to version
0.0.88
(!620)- Users can configure feature flags browserker!671
- Upgrade vulnerability checks to version
1.0.25
browserker!679- Update
798
checks to remove requirement for secrets or tokens to be encased in\"
dast-cwe-checks!126
- Update
- Upgrade vulnerability checks to version
1.0.26
browserker!679- Remove check
798.92
to avoid false positives dast-cwe-checks!129
- Remove check
- Upgrade vulnerability checks to version
1.0.27
browserker!679- Update description for check
16.8
dast-cwe-checks!130
- Update description for check
- Replace ZAP rules 10028 and 20019 with 601.1 in browser based scan (!619)