issues
search
OWASP
/
OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
http://owasp.org/OFFAT/
MIT License
453
stars
64
forks
source link
SSL Verify was not properly handled
#115
Closed
nrathaus
closed
3 months ago
nrathaus
commented
3 months ago
A few fixes in this PR:
ssl_verify
is used rather the
ssl
variable
Add ssl_verify handling where there wasn't one
Remove
ssl
directive where its not relevant (it was used to 'enable' ssl, but wasn't actually used in the underlying code)
A few fixes in this PR:
ssl_verifyis used rather thesslvariablessldirective where its not relevant (it was used to 'enable' ssl, but wasn't actually used in the underlying code)