Daniel Antonsen

```diff - - $PWD/ghost/volumes/config.production.json:/var/lib/ghost/config.production.json:z + - $PWD/ghost/config.production.json:/var/lib/ghost/config.production.json:z ```

Hi and thank you for reporting this issue. Looks like H1 has implemented CSRF protection on graphql endpoints, preventing rescope from calling them directly. Will look into this

https://github.com/root4loot/rescope/commit/6f7a73ef70107bd74d4af5d56e2a9bbc641ed1ef should resolve the issue for now. @EnemyTurret can you confirm the fix? ``` go install github.com/root4loot/rescope@latest ``` PS: The correct HackerOne scope is `hackerone.com/security`, not `hackerone.com/hackerone` ``` rescope -u...

@Mzack9999 sounds like a good approach. If it worked well for Katana, then I see no reason why it wouldn't work here. Unlike my suggestion, this would ensure consistency across...