Nicolas Harraudeau
Nicolas Harraudeau
Hi, The ReDos example uses two regular expressions which are missing start and end anchors: https://github.com/OWASP/NodeGoat/blob/e2dffdb8c7e988c10bacdccba14d6f0d352c5090/app/routes/profile.js#L58-L59 These regular expressions accept values such as `evil123#evil`. How about: 1/ fixing these two...
Hi, I noticed that commit https://github.com/OWASP/NodeGoat/commit/7c293e721bd1e95be6f82475d295b9b10e3b584e has broken the XSS example. 1/ The `website` property is not saved in the database. Thus it will never be displayed. https://github.com/OWASP/NodeGoat/blob/e2dffdb8c7e988c10bacdccba14d6f0d352c5090/app/routes/profile.js#L82-L91 2/ The...
Would it be possible to release a new version? I need to use typeahead 0.11.1 which is only compatible with master branch (commit 324628d5c2dffe347091d097efbaaaab79ceeddc). Thank you for your work.
**Problem:** New community schemas can create complex migration when a field is deprecated (forbidden) or even replaced by other fields. B2SHARE needs a mechanism enabling users to migrate a record...