Commit 29d4e81

committed

Refine XSS scan rule and address maintenance feedback

- Integrated ResourceIdentificationUtils for content-type filtering in scan(). - Added isDocument() to ResourceIdentificationUtils for centralized resource checks. - Removed legacy IGNORED_CONTENT_TYPES and manual filtering logic. - Updated help documentation to clarify skip behavior for non-HTML responses. - Updated CHANGELOGs for ascanrules and commonlib with technical details. - Verified fix with shouldNotScanNonHtmlContentTypes unit test. - Confirmed all tests in CrossSiteScriptingScanRuleUnitTest pass.

1 parent 22c0a8e commit 29d4e81Copy full SHA for 29d4e81

6 files changed

+796

-438

lines changed

addOns
- ascanrules
  - CHANGELOG.md
  - src
    - main
      - javahelp/org/zaproxy/zap/extension/ascanrules/resources/help/contents
        ascanrules.html
      - java/org/zaproxy/zap/extension/ascanrules
        CrossSiteScriptingScanRule.java
    - test/java/org/zaproxy/zap/extension/ascanrules
      - CrossSiteScriptingScanRuleUnitTest.java
- commonlib
  - CHANGELOG.md
  - src/main/java/org/zaproxy/addon/commonlib
    - ResourceIdentificationUtils.java

6 files changed

+796

-438

lines changed

Comments

(0)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit 29d4e81

6 files changed

6 files changed

Uh oh!

File tree

6 files changed

6 files changed

0 commit comments