Static files leads to False positives

SasanLabs / owasp-zap-jwt-addon

OWASP ZAP addon for finding vulnerabilities in JWT Implementations

https://www.zaproxy.org/

Apache License 2.0

30 stars 12 forks source link

Static files leads to False positives #42

Closed itsdivyanshjain closed 1 year ago

itsdivyanshjain commented 1 year ago

Describe the bug Currently this rule test on static files like (CSS, JS) which leads to false positive.

Expected behavior Skip the test on static files

Would you like to help fix this issue? Yes

preetkaran20 commented 1 year ago

@itsdivyanshjain thanks for reporting the issue. Is it possible to add the false positive report or little bit more details so that we can understand more?

Also, please go ahead with implementation.

thanks, Karan