dd-trace-js
dd-trace-js copied to clipboard

Published 20 hours ago •

Reame
Issues

WIP Rasp LFI first approach

Open iunanua opened this issue 6 months ago • 3 comments

What does this PR do?

WIP, at the moment:

Define AppsecFsPlugin to identify root fs operations.
Instrument express res.render to allow rasp LFI component to exclude fs operations caused by view rendering.

Motivation

Plugin Checklist

[ ] Unit tests.
[ ] TypeScript definitions.
[ ] TypeScript tests.
[ ] API documentation.
[ ] CircleCI jobs/workflows.
[ ] Plugin is exported.

Additional Notes

Aug 02 '24 14:08 iunanua

Labels

do-not-merge/WIP

semver-minor

appsec

Owner

Other Repo Issues