You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
The key has expired.
Changed
The PII Disclosure scan rule:
Now includes a solution statement.
Now more specifically portrays alert Evidence.
Now includes example alert functionality for documentation generation purposes (Issue 6119).
Will now only consider PDFs at Low threshold.
Maintenance changes.
The HeartBleed scan rule alert now includes a CVE tag.
Timestamp Disclosure scan rule now excludes values in "RateLimit-Reset", "X-RateLimit-Reset", and "X-Rate-Limit-Reset" headers (Issue 7747).
Fixed
The CSP Missing scan rule now alerts when the Content-Security-Policy header is missing, and when the obsolete X-Content-Security-Policy or X-WebKit-CSP are found (Issue 7653).
