Releases: SasanLabs/owasp-zap-jwt-addon
Releases · SasanLabs/owasp-zap-jwt-addon
JWT Support Addon Version 1.0.3
Bug Fixes:
- Ensure i18n resources are always initialized.
Enhancement:
- Added support for incorrect signature type attack.
JWT Support Addon Version 1.0.2
Bug Fixes:
- Corrected the Fuzzer Panel User interface expansion issue
- Added support for scanning Authorization Header Issue: #31
Enhancement:
- Sonar Fixes.
- Updated Client-side attack to introduce warning if HTTP Header contains JWT.
JWT Support Addon Version 2
Enhancement:
- Support for validating usage of publicly well known HMac secrets for signing JWT.
Fixes:
- Increased the number of requests for High threshold to 18 from 12.
- Client side configuration alerts will not stop the scanner from scanning server side configurations.
JWT Support Addon Version 1
- First version of JWT Support.
- Contains scanning rules for basic JWT related vulnerabilities.
- Contains JWT Fuzzer for fuzzing the JWT's present in the request.