Skip to content

Passive scanner rules version 60
Compare
Choose a tag to compare
@zapbot zapbot released this 02 Sep 17:00
· 104 commits to main since this release
pscanrules-v60
151c90e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Changed

  • Clarified Missing Anti-clickjacking Header description.
  • Depend on Passive Scanner add-on to include it by default (Issue 7959).
  • Re-examine Cache-control Directives scan rule now ignores cache-control for POST method requests (Issue 8592).

Fixed

  • Polyfill scan rule running slowly.
  • Only scan text responses for:
    • Hash Disclosure
    • Private IP Disclosure
    • Username Hash Found
  • Performance improvements for:
    • Cross-Domain JavaScript Source File Inclusion.
    • Cross-Domain Misconfiguration.
Assets 4
Loading