diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2023-11-01 00:07:14 +0300 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2023-11-01 00:07:14 +0300 |
commit | 24fb09b2eb3f4703b09eef3c9bbf842cd055626a (patch) | |
tree | 3c1f69360a0ce9b15c97fb25efa4424d4ef5f334 /doc/user | |
parent | 1d21e1712158ee4e3cf8b71b45ead662529fc3f8 (diff) |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'doc/user')
-rw-r--r-- | doc/user/application_security/dast/checks/index.md | 1 | ||||
-rw-r--r-- | doc/user/application_security/dast/proxy-based.md | 2 |
2 files changed, 1 insertions, 2 deletions
diff --git a/doc/user/application_security/dast/checks/index.md b/doc/user/application_security/dast/checks/index.md index b6f8f1cea3f..c239fdb5e74 100644 --- a/doc/user/application_security/dast/checks/index.md +++ b/doc/user/application_security/dast/checks/index.md @@ -177,4 +177,3 @@ The [DAST browser-based crawler](../browser_based.md) provides a number of vulne | [94.3](94.3.md) | Server-side code injection (Python) | High | Active | | [94.4](94.4.md) | Server-side code injection (NodeJS) | High | Active | | [943.1](943.1.md) | Improper neutralization of special elements in data query logic | High | Active | -> diff --git a/doc/user/application_security/dast/proxy-based.md b/doc/user/application_security/dast/proxy-based.md index 3ef888cbf24..ba64517570f 100644 --- a/doc/user/application_security/dast/proxy-based.md +++ b/doc/user/application_security/dast/proxy-based.md @@ -15,7 +15,7 @@ WARNING: Do not run DAST scans against a production server. Not only can it perform *any* function that a user can, such as clicking buttons or submitting forms, but it may also trigger bugs, leading to modification or loss of production data. Only run DAST scans against a test server. -The analyzer uses the [OWASP Zed Attack Proxy](https://www.zaproxy.org/) (ZAP) to scan in two different ways: +The analyzer uses the [Software Security Project Zed Attack Proxy](https://www.zaproxy.org/) (ZAP) to scan in two different ways: - Passive scan only (default). DAST executes [ZAP's Baseline Scan](https://www.zaproxy.org/docs/docker/baseline-scan/) and doesn't |