New
- OWASP Top 10. The new OWASP Top 10 API Security Risks Report is now available.
- Swagger UI attack module. We added a new attack to detect exposed Swagger UI client secrets.
Improved
- Selenium ChromeDriver. We upgraded Selenium ChromeDriver to version 114.0.5735.90.
- Operator memory allocation. We resolved an issue related to new operator memory allocation, reducing crashes.
- CrawlResultAnalysisTask. We reduced crashes in
CrawlResultAnalysisTask. - Content Security Policy Headers attack module. We updated the Content Security Policy Headers attack module. We changed the severity from low to informational and moved the report from Application Developer to best practice.
- Secure cookie attribute. We updated the secure cookie attribute description.
- Search field SQL injection. We reduced search field SQL injection false positives.