@contrast/test-bench-content
Advanced tools
Shared content to use in Contrast's web framework test apps.
Shared views to use in Contrast's web framework test apps.
Once you have configured a sink within @contrast/test-bench-utils,
you're ready to add a shared view here. Shared view templates are rendered with
the following locals provided:
name: the name of the vulnerability being testedlink: a link to OWASP or another reference describing the vulnerabilitysinkData: an array of objects describing the sinks exercising a rule,
containing (at least) the following keys:
method: the HTTP method being used to submit the attackname: the name of the particular sink being exercisedurl: the api endpoint url to hit_csrf for Kraken apps, we provide the csrf token to be included as a hidden
field within a formAn endpoint may also be configured to provide additional locals to the template to render additional context for a rule. For example, we provide an XML string to the xxe endpoint as a potential attack value.
FAQs
Shared content to use in Contrast's web framework test apps.
We found that @contrast/test-bench-content demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 15 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.
Security News
vlt introduced its new package manager and a serverless registry this week, innovating in a space where npm has stagnated.