Simon Bennetts

@JuraLys did you open a browser via ZAP? If a browser is openned in one session and not closed then it may well make background requests to the new session....

@JuraLys but are you going to answer the question? 😁 If a browser has been launched in the old session and is still active then this is expected.

@JuraLys Did you run the AJAX Spider or Active Scan?

So its most likely to be the DOM XSS rule being run by the Active Scanner then. How easy is it to reproduce? If its not too hard then try...

Both the AJAX Spider and DOM XSS scan rule launch browsers. By default they will use firefox-headless but you can change that. However this line after the new session was...

Thanks for this enhancement request - it sounds very interesting! Do you have a tldr; for how we can try this out ourselves locally? I dont use VS code but...

Reassigned as requested 😁

@knassar702 any progress on this? anything we can help with?

> Along with this change, what do you think about using the main Output panel for script outputs, and removing the existing output panel within the Script console? That wouldnt...

My worry is that the conditions might end up being very wide ranging. I think a script could be a more flexible alternative..