search

vaadin / appsec-kit

Other
1 stars 0 forks source link

Scanner attached on every view/refresh #106

Closed krissvaa closed 1 year ago

krissvaa commented 1 year ago

Appsec-kit attaching additional scanners on every view refresh. Which in turns fills the console log with snan messages.

Expected: Scan runs only once per day or with "Scan now" functionality. Actual: Scan runs after (almost) every navigation and/or view refresh. Additional scanners are connected and list after each scan becomes longer and longer.

Reproduce with this example: https://github.com/vaadin/hackathon-24-2/tree/herberts-and-kriss

Example of console log: 023-10-13T14:42:41.094+03:00 INFO 31780 --- [io-60278-exec-1] o.s.web.servlet.DispatcherServlet : Completed initialization in 1 ms 2023-10-13T14:42:41.176+03:00 INFO 31780 --- [io-60278-exec-1] c.vaadin.flow.spring.SpringInstantiator : The number of beans implementing 'I18NProvider' is 0. Cannot use Spring beans for I18N, falling back to the default behavior 2023-10-13T14:42:41.363+03:00 INFO 31780 --- [io-60278-exec-3] c.v.appsec.service.AppSecDevToolsPlugin : Plugin connected 2023-10-13T14:42:46.588+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:42:46.700+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:42:58.146+03:00 INFO 31780 --- [io-60278-exec-1] c.v.appsec.service.AppSecDevToolsPlugin : Plugin connected 2023-10-13T14:43:04.677+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:43:04.742+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:43:04.742+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:43:04.805+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:43:06.494+03:00 INFO 31780 --- [io-60278-exec-3] c.v.appsec.service.AppSecDevToolsPlugin : Plugin connected 2023-10-13T14:43:57.077+03:00 INFO 31780 --- [io-60278-exec-8] c.v.appsec.service.AppSecDevToolsPlugin : Plugin connected 2023-10-13T14:44:11.508+03:00 INFO 31780 --- [io-60278-exec-6] c.v.appsec.service.AppSecDevToolsPlugin : Plugin connected 2023-10-13T14:44:17.965+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:44:18.027+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:44:18.027+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:44:18.092+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:44:18.092+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:44:18.156+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:44:18.156+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:44:18.219+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3 2023-10-13T14:44:18.219+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Scan completed 2023-10-13T14:44:18.284+03:00 INFO 31780 --- [pool-2-thread-1] c.v.appsec.service.AppSecDevToolsPlugin : Vulnerabilities sent to the client: 3