Tracker issue for adding ScanRuleMetadata to active and passive scripts in this repo.
There are some scripts in the list below which may clash with existing rules in one of the scan rule add-ons (e.g. the check done by X-Powered-By_header_checker.js script is also done by the XPoweredByHeaderInfoLeakScanRule scan rule). We should either remove the script or the scan rule to avoid duplicate alerts.
Also, WebSocket passive scripts are not included here since they don't support the getMetadata() function at the moment.
Tracker issue for adding ScanRuleMetadata to active and passive scripts in this repo.
There are some scripts in the list below which may clash with existing rules in one of the scan rule add-ons (e.g. the check done by
X-Powered-By_header_checker.js
script is also done by the XPoweredByHeaderInfoLeakScanRule scan rule). We should either remove the script or the scan rule to avoid duplicate alerts.Also, WebSocket passive scripts are not included here since they don't support the
getMetadata()
function at the moment.Active
Passive