Simon Bennetts
Simon Bennetts
Fix any 5 of the currently failing Escaped XSS results on https://www.zaproxy.org/docs/scans/firingrange/ This is part of https://github.com/zaproxy/zaproxy/issues/7122 but can be assigned to an individual. If you would like to 'reserve'...
Saw some complaints on twitter re the ZAP search performance, eg https://twitter.com/acut3hack/status/1413804499563651074 Had a quick look at the code and it looks like we're pulling all of the results back...
It looks like you no longer own https://www.astra-security.info/ - worth reregistering it, or removing the link from the repo?
Thats one of my requirements for a documentation site - any chance of adding this?
See https://github.com/zaproxy/zap-hud/pull/1109 The Vuejs libs names have changed. According to https://vuejs.org/guide/quick-start.html#without-build-tools it looks like the *.esm-browser.js files might be the ones to use but I tried changing the build and...
The following rules were set to "warn" so that we could focus on more important issues, but these should all be fixed as well: - [ ] no-negated-condition - [...
If you click on one of the HUD green plus icons then a list of the unused tools should be shown. After a HUD Reset then all tools are shown....
When the History tab is expanded, or if you leave it expanded while you browse, then it always displays the first requests. I think it would be better if it...
If HTTP sites (is not HTTPS ones) use the Access-Control-Allow-Origin header then the site will typically not work. ZAP should automatically fix this header. https://stackoverflow.com/questions/61940616/how-do-i-work-with-http-sites-using-the-hud-in-owasps-zap-proxy
As per CSP, so we could have another option for that. Reported via https://groups.google.com/g/zaproxy-users/c/4uyVKr1QIng/m/zZu5SU43BQAJ