Jeeppler
Jeeppler
Test SecHub using Java 19. - [ ] Test whether SecHub can run using Java 19 - [ ] Test whether SecHub can be build using Java 19 Report/document any...
SecHub already has a set of integration tests, allowing one to test different parts of the system (subsystems). However, SecHub does not have system tests. System tests in the context...
# Problem SecHub starts a PDS job and checks periodically whether the job is done or not. In case, the job does not finish in the defined `sechub.adapter.pds.default.timeout.minutes` time SecHub...
SecHub scans/reports are identified by a unique SecHub job UUID. The report shall be accessible for users (technical and non-technial) via in the Web UI (reuse the JobUUID). The link...
Provide a GitHub Action for SecHub on the public marketplace: https://github.com/marketplace?type=actions. A public action can easily be used by the community. This requires, that SecHub reports can be exported in...
The SARIF standard contains to properties, which can be used to represent [webRequests](https://docs.oasis-open.org/sarif/sarif/v2.1.0/os/sarif-v2.1.0-os.html#_Toc34317505) and [webRepsonses](https://docs.oasis-open.org/sarif/sarif/v2.1.0/os/sarif-v2.1.0-os.html#_Toc34317506). It might be worth exploring the possibility of using it for the OWASP ZAP.
It would be very helpful to have a summary in the report. Currently, there is no summary of the findings found. Having a summary in the report would allow a...
Develop a fully automated script to test the binary scanning. The script (or scripts) should test with and without enabling extractcode.
Introduce a fully automated script to test the source scanning. The script (or scripts) should test with and without enabling extractcode.
I saw that the default admin passwords in puffin.rocks are `password` and `admin` etc. Keeping the principle of secure by default in mind, I would love to see random generated...