stoplightio / spectral-owasp-ruleset Public

Notifications You must be signed in to change notification settings
Fork 11
Star 69

Code
Issues 9
Pull requests 2
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Security
Insights

Issues: stoplightio/spectral-owasp-ruleset

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

9 Open 31 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

owasp:api8:2023-define-error-validation does not detect non 400, 422 4XX responses enhancement

New feature or request

#65 opened Apr 16, 2024 by ydidio

Passwords should never be in a response body

#59 opened Mar 1, 2024 by philsturgeon

Should owasp:api3:2019-define-error-validation trigger on a GET

#56 opened Feb 1, 2024 by philsturgeon

Allow schemas to use unevaluatedProperties: false instead of additionalProperties: false

#49 opened Aug 17, 2023 by DavidBiesack

Should owasp:api4:2019-string-limit run against response objects?

#46 opened Jun 29, 2023 by davidkeaveny

False positive for missing maxLength for format: date

#41 opened Apr 3, 2023 by DavidBiesack

false positive owasp:api3:2019-define-error-responses-401 and others in schema with responses property

#34 opened Mar 3, 2023 by DavidBiesack

New Rule: Error messages with stack traces (OWASP API7) enhancement

New feature or request

good first issue

Good for newcomers

hacktoberfest help wanted

Extra attention is needed

#12 opened Oct 3, 2022 by philsturgeon

3 tasks

New Rule: PII in Response (OWASP API3) enhancement

New feature or request

good first issue

Good for newcomers

hacktoberfest help wanted

Extra attention is needed

#3 opened Sep 23, 2022 by philsturgeon

3 tasks

ProTip! Type g p on any issue or pull request to go back to the pull request listing page.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly