scanner icon indicating copy to clipboard operation
scanner copied to clipboard
Published 2 months ago verified publisher icon caido-community

Add password returned in URL check (#141)

Open jthack opened this issue 2 months ago • 0 comments

Summary

  • scan response bodies and Location headers for URLs carrying password-like query parameters
  • raise a high-severity finding listing affected parameter names and lengths
  • register the passive rule and enable it for the Balanced preset

Testing

  • pnpm lint
  • pnpm typecheck
  • pnpm test -- --match 'Password returned in URL'

Closes #141

jthack avatar Oct 23 '25 17:10 jthack