Allow multiple HTTP codes to be ignored

matusf / openapi-fuzzer

Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!

GNU Affero General Public License v3.0

526 stars 22 forks source link

Closed opsdisk closed 2 years ago

opsdisk commented 2 years ago

Currently, it looks like only one can be ignored per run

$ ./openapi-fuzzer --spec spec.json -u http://127.0.0.1/ -i 403,404
Error parsing option '-i' with value '403,404': invalid digit found in string

matusf commented 2 years ago

Hi, it is possible to ignore multiple HTTP status codes. You need to pass several -i flags to the fuzzer. e.g.

./openapi-fuzzer --spec spec.json -u http://127.0.0.1/ -i 403 -i 404

opsdisk commented 2 years ago

Appreciate the quick response @matusf I didn't think to try that. Thanks for creating this tool!