Taras Ivashchenko
Taras Ivashchenko
### The problem Consider that you have big amount of services (thousands) which are processed in Dependency Track during CI/CD daily. It is not necessary that the list of components...
Steps to reproduce: 1. Configure browser to use ZAP Proxy 2. Check HUD is enabled by option "Enable when using ZAP Desktop" 3. Run ZAP Desktop 4. Navigate to https://www.ozon.ru...
It looks like common case when `map` is used for some kind of authorization control. Simplified example could look like: ```nginx http { ... map $uri $mappocallow { /map-poc/private 0;...
The Content Security Policy 'default-src 'self'; ....' was delivered in report-only mode, but does not specify a 'report-uri'; the policy will have no effect. Please either add a 'report-uri' directive,...
If web application already sends CSP HTTP header then: 1. Parse it 2. Merge with saved in extension 3. Show result in popup 4. Replace HTTP header with result
Currently we use ReST as internal markup language. It will be better to migrate to Jinja2 templating engine
Like for https://github.com/securego/gosec
To decrease amount of errors with spaces, NL etc. in params