David Vassallo
David Vassallo
You're completely right with respect to security. The current architecture is definitely impacting a couple of issues. It's not to say that we can't work around them (except in some...
Fair enough! Then i'd say the div method is only viable if we do allow the target website to communicate with ZAP (given that the div would be injected into...
@dscrobonia thanks for summarizing up the requirements! Easy to see how the div idea would never have worked trying to meet them. In any case I'd rather stick to an...
This is awesome. Your thinking is in fact a superset of mine so I would definitely agree with this approach. I'll comment a bit further within the document itself -...
Not too many, but I did have a couple, so I updated the wiki (the installation section) with "Troubleshooting tips" detailing the problems I found and my solutions for them...
To be honest it's very intermittent. Best I can tell it happens when my system is under high load. Reproducing is difficult because of it's intermittent nature - however once...
This just happened again, even with my workaround. It seems like it only happens when I first start ZAP and the browser. I've change the serviceworker to cache the tools...
@dscrobonia my pleasure! Yes you're right that both are synchronous, but regarding importScripts that only holds true if every statement and function call within the imported script is also synchronous....
yes absolutely. I had literally just installed it, and it was on my first run of the HUD, no other tabs and browser was launched through ZAP, not "remotely" On...