Documentation
¶
Index ¶
- Constants
- func DiscoverableOpenAPIScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
- func ExtractBaseURL(inputURL *url.URL) *url.URL
- func GraphqlIntrospectionScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
- func ServerSignatureScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
Constants ¶
View Source
const ( DiscoverableOpenAPISeverityLevel = 1 DiscoverableOpenAPIVulnerabilityName = "Discoverable OpenAPI" DiscoverableOpenAPIVulnerabilityDescription = "An OpenAPI file is exposed without protection. This can lead to information disclosure and security issues" )
View Source
const ( GraphqlIntrospectionEnabledSeverityLevel = 1 GraphqlIntrospectionEnabledVulnerabilityName = "GraphQL Introspection enabled" GraphqlIntrospectionEnabledVulnerabilityDescription = "GraphQL Introspection seems enabled and can lead to information disclosure and security issues" )
View Source
const ( ServerSignatureSeverityLevel = 1 ServerSignatureVulnerabilityName = "Server Signature Exposed" ServerSignatureVulnerabilityDescription = "A Server signature is exposed in an header." )
Variables ¶
This section is empty.
Functions ¶
func DiscoverableOpenAPIScanHandler ¶
func DiscoverableOpenAPIScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
func GraphqlIntrospectionScanHandler ¶
func GraphqlIntrospectionScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
func ServerSignatureScanHandler ¶
func ServerSignatureScanHandler(operation *request.Operation, securityScheme auth.SecurityScheme) (*report.ScanReport, error)
Types ¶
This section is empty.
Source Files
Click to show internal directories.
Click to hide internal directories.