-
-
Notifications
You must be signed in to change notification settings - Fork 709
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pscanrules: add examples alerts to Insecure JSF ViewState #5688
Conversation
I have read the CLA Document and I hereby sign the CLA |
1 similar comment
I have read the CLA Document and I hereby sign the CLA |
It's only necessary to comment once. |
.../src/main/java/org/zaproxy/zap/extension/pscanrules/InsecureJsfViewStatePassiveScanRule.java
Outdated
Show resolved
Hide resolved
To address the build failure: |
.../src/main/java/org/zaproxy/zap/extension/pscanrules/InsecureJsfViewStatePassiveScanRule.java
Outdated
Show resolved
Hide resolved
658cdf9
to
e1c4126
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Almost there
2975fe7
to
81a1abf
Compare
I believe the suggestions have been resolved. |
...t/java/org/zaproxy/zap/extension/pscanrules/InsecureJsfViewStatePassiveScanRuleUnitTest.java
Outdated
Show resolved
Hide resolved
Needs a spotlessApply again |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks!
Has conflicts that must be resolved before it can be merged. |
Note there's also a commit that should have the author reset. |
Signed-off-by: Ana Rocha <[email protected]> Co-authored-by: Lucas Bergholz <[email protected]>
Conflict addressed and author reset. |
Thank you @anaaroch and @LucasBergholz! |
Overview
Me and Lucas Bergholz worked on this together, with the porpuse of adding the alert for Insecure JSF ViewState - P. We are open for any feedbacks of our work, as this is our first contribution on this issue.
Related Issues
Part of zaproxy/zaproxy#6119.
Checklist
./gradlew spotlessApply
for code formattingFor more details, please refer to the developer rules and guidelines.