Closed cedricbu closed 1 year ago
All request pass through the passive scan. So the passive scan needs to take place before we load any API (such as openAPI loading), otherwise those will be treated with a default passive scan.
nice finding and fix. LGTM.
jeremychoi
commented
1 year ago
All request pass through the passive scan. So the passive scan needs to take place before we load any API (such as openAPI loading), otherwise those will be treated with a default passive scan.