Report errors based on status codes defined in OpenAPI

matusf / openapi-fuzzer

Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!

GNU Affero General Public License v3.0

526 stars 22 forks source link

Report errors based on status codes defined in OpenAPI #2

Closed matusf closed 3 years ago

matusf commented 3 years ago

Most of the existing fuzzers consider only 500 status codes as a failure. However, given the OpenAPI schema we can check the expected status codes and thus report any unexpected one.