gitlab-org/security-products/dast v4.0.8

on GitLab

Changes

• Upgrade Chromium to version 116 (!799)
• Upgrade ZAP WebDriver add-on to v59 (!799)
• Upgrade browserker to 1.0.10 (!799)
  • Fix sending of additional headers to out-of-scope hosts browserker!1192
  • Exclude session and authorization cookies from injection locations browserker!1190
  • Upgrade dast-chromium to version 22.04-116.0.5845.110-1-20230830075754 and 8.7-116.0.5845.96-1-20230830075754 for standard and FIPS images respectively browserker!1187
  • Don't attack the header used by DAST to advertize the scan browserker!1182
  • Use scope to determine if custom headers should be added to an HTTP request browserker!1182
  • Add cookie value injection location browserker!1189
• Upgrade ZAP add-on GraphQL Support to 0.17.0 (!801)

Docker Images

• registry.gitlab.com/security-products/dast:4.0.8