diff --git a/dojo/templatetags/announcement_banner_tags.py b/dojo/templatetags/announcement_banner_tags.py
deleted file mode 100644
index 38e473350fc..00000000000
--- a/dojo/templatetags/announcement_banner_tags.py
+++ /dev/null
@@ -1,16 +0,0 @@
-import bleach
-from bleach.css_sanitizer import CSSSanitizer
-from django import template
-from django.utils.safestring import mark_safe
-
-register = template.Library()
-
-
-@register.filter
-def bleach_announcement_message(message):
- allowed_attributes = bleach.ALLOWED_ATTRIBUTES
- allowed_attributes["a"] += ["style", "target"]
- return mark_safe(bleach.clean(
- message,
- attributes=allowed_attributes,
- css_sanitizer=CSSSanitizer(allowed_css_properties=["color", "font-weight"])))
diff --git a/dojo/templatetags/display_tags.py b/dojo/templatetags/display_tags.py
index f19c704fd55..5a36e901011 100644
--- a/dojo/templatetags/display_tags.py
+++ b/dojo/templatetags/display_tags.py
@@ -10,8 +10,8 @@
import bleach
import dateutil.relativedelta
-import git
import markdown
+from bleach.css_sanitizer import CSSSanitizer
from django import template
from django.conf import settings
from django.contrib.auth.models import User
@@ -95,6 +95,19 @@ def markdown_render(value):
return None
+@register.filter
+def bleach_with_a_tags(message):
+ # Create a copy of ALLOWED_ATTRIBUTES to avoid mutating the global
+ allowed_attributes = {
+ **bleach.ALLOWED_ATTRIBUTES,
+ "a": [*bleach.ALLOWED_ATTRIBUTES.get("a", []), "style", "target"],
+ }
+ return mark_safe(bleach.clean(
+ message,
+ attributes=allowed_attributes,
+ css_sanitizer=CSSSanitizer(allowed_css_properties=["color", "font-weight"])))
+
+
def text_shortener(value, length):
return_value = str(value)
if len(return_value) > length:
@@ -132,11 +145,57 @@ def dojo_version():
@register.simple_tag
def dojo_current_hash():
+ """
+ Display git commit hash in footer if .git directory exists.
+
+ This uses direct file reading (no GitPython, no subprocesses) for
+ negligible performance cost (~0.1ms, 57x faster than GitPython).
+ Production images exclude .git via .dockerignore, so they show "release mode".
+ See: https://github.com/DefectDojo/django-DefectDojo/issues/13899
+ """
try:
- repo = git.Repo(search_parent_directories=True)
- sha = repo.head.object.hexsha
- return sha[:8]
- except:
+ # Find .git directory (walk up from current file)
+ current_dir = Path(__file__).resolve().parent
+ git_dir = None
+ for parent in [current_dir, *current_dir.parents]:
+ candidate = parent / ".git"
+ if candidate.exists():
+ git_dir = candidate
+ break
+
+ if not git_dir:
+ return "release mode"
+
+ # Read .git/HEAD to get current commit
+ head_file = git_dir / "HEAD"
+ if not head_file.exists():
+ return "release mode"
+
+ head_content = head_file.read_text().strip()
+
+ if head_content.startswith("ref: "):
+ # It's a branch reference like "ref: refs/heads/main"
+ ref_path = head_content[5:] # Remove "ref: " prefix
+ ref_file = git_dir / ref_path
+
+ # Try reading from loose ref file first
+ if ref_file.exists():
+ return ref_file.read_text().strip()[:8]
+
+ # Fallback: check packed-refs (after git gc, refs are packed)
+ packed_refs = git_dir / "packed-refs"
+ if packed_refs.exists():
+ for line in packed_refs.read_text().splitlines():
+ if line.startswith("#") or not line.strip():
+ continue
+ parts = line.split()
+ if len(parts) >= 2 and parts[1] == ref_path:
+ return parts[0][:8]
+
+ return "release mode"
+ # It's a direct SHA (detached HEAD)
+ return head_content[:8]
+ except Exception:
return "release mode"
@@ -441,7 +500,7 @@ def inline_image(image_file):
# TODO: This code might need better exception handling or data processing
if img_types := mimetypes.guess_type(image_file.file.name):
img_type = img_types[0]
- if img_type.startswith("image/"):
+ if img_type and img_type.startswith("image/"):
img_data = base64.b64encode(image_file.file.read())
return f"data:{img_type};base64, {img_data.decode('utf-8')}"
return ""
diff --git a/dojo/templatetags/get_banner.py b/dojo/templatetags/get_banner.py
index 492cc1fddcc..321e7101604 100644
--- a/dojo/templatetags/get_banner.py
+++ b/dojo/templatetags/get_banner.py
@@ -16,8 +16,11 @@ def get_banner_conf(attribute):
if value:
if attribute == "banner_message":
# only admin can edit login banner, so we allow html, but still bleach it
- allowed_attributes = bleach.ALLOWED_ATTRIBUTES
- allowed_attributes["a"] += ["style", "target"]
+ # Create a copy of ALLOWED_ATTRIBUTES to avoid mutating the global
+ allowed_attributes = {
+ **bleach.ALLOWED_ATTRIBUTES,
+ "a": [*bleach.ALLOWED_ATTRIBUTES.get("a", []), "style", "target"],
+ }
return mark_safe(bleach.clean(
value,
attributes=allowed_attributes,
diff --git a/dojo/tools/aws_prowler/__init__.py b/dojo/tools/aws_prowler/__init__.py
index c64d4512198..e349874aefc 100644
--- a/dojo/tools/aws_prowler/__init__.py
+++ b/dojo/tools/aws_prowler/__init__.py
@@ -1,2 +1,2 @@
__author__ = "Aaron Weaver"
-__contributor__ = "Daniel Loureiro - https://dkade.com"
+__contributor__ = "Daniel Loureiro - https://dkade.com" # noqa: RUF067
diff --git a/dojo/tools/cloudflare_insights/parser.py b/dojo/tools/cloudflare_insights/parser.py
index e47065b1e61..2538dfaeaf9 100644
--- a/dojo/tools/cloudflare_insights/parser.py
+++ b/dojo/tools/cloudflare_insights/parser.py
@@ -1,5 +1,6 @@
import csv
import io
+import json
from urllib.parse import urlparse
from dojo.models import Endpoint, Finding
@@ -8,19 +9,27 @@
class CloudflareInsightsParser:
"""
- DefectDojo parser for Cloudflare Insights CSV exports.
+ DefectDojo parser for Cloudflare Insights CSV or JSON exports.
- Expected columns:
+ CSV expected columns:
- severity
- issue_class
- - subject (used as Endpoint host; not repeated in description)
+ - subject
- issue_type
- - scan_performed_on (ignored)
- status
- - insight (optional)
- - detection_method (optional)
- - risk (optional)
- - recommended_action (used as mitigation if present)
+ - insight (optional)
+ - detection_method (optional)
+ - risk (optional)
+ - recommended_action (optional)
+
+ JSON expected fields:
+ - severity
+ - issue_class
+ - subject
+ - issue_type
+ - dismissed (maps to status)
+ - resolve_text (optional mitigation)
+ - risk (optional)
"""
def get_scan_types(self):
@@ -30,7 +39,7 @@ def get_label_for_scan_types(self, scan_type):
return scan_type
def get_description_for_scan_types(self, scan_type):
- return "Import Cloudflare Insights (CSV export)."
+ return "Import Cloudflare Insights (CSV or JSON export)."
def _map_severity(self, value):
normalized = value.strip().lower()
@@ -38,7 +47,7 @@ def _map_severity(self, value):
"low": "Low",
"moderate": "Medium",
"critical": "Critical",
- "high": "High", # optional: Cloudflare occasionally uses this
+ "high": "High",
}
return mapping.get(normalized, "Info")
@@ -56,25 +65,14 @@ def _extract_host_from_subject(self, subject: str) -> str | None:
host = netloc or s
if ":" in host:
host = host.split(":", 1)[0]
- host = host.strip().strip("/").strip()
-
- return host or None
+ return host.strip().strip("/") or None
def _is_inactive_status(self, status: str) -> bool:
inactive_markers = {"resolved", "mitigated", "closed", "fixed"}
return bool(status) and status.strip().lower() in inactive_markers
- def get_findings(self, filename, test):
- content = filename.read()
- if isinstance(content, bytes):
- content = content.decode("utf-8", errors="replace")
-
- reader = csv.DictReader(
- io.StringIO(content),
- delimiter=",",
- quotechar='"',
- skipinitialspace=True,
- )
+ def _parse_csv(self, content: str, test):
+ reader = csv.DictReader(io.StringIO(content), delimiter=",", quotechar='"', skipinitialspace=True)
findings = []
for row in reader:
severity_raw = (row.get("severity") or "").strip()
@@ -86,15 +84,10 @@ def get_findings(self, filename, test):
detection_method = (row.get("detection_method") or "").strip()
risk = (row.get("risk") or "").strip()
recommended_action = (row.get("recommended_action") or "").strip()
+
mapped_severity = self._map_severity(severity_raw)
- if issue_type and subject:
- title = f"{issue_type}: {subject}"
- elif issue_type:
- title = issue_type
- elif subject:
- title = subject
- else:
- title = "Cloudflare Insight"
+ title = f"{issue_type}: {subject}" if issue_type and subject else issue_type or subject or "Cloudflare Insight"
+
description_parts = []
if issue_class:
description_parts.append(f"**Issue class**: {issue_class}")
@@ -109,6 +102,7 @@ def get_findings(self, filename, test):
if risk:
description_parts.append(f"**Risk**: {risk}")
description = "\n\n".join(description_parts)
+
finding = Finding(
test=test,
title=title,
@@ -124,5 +118,54 @@ def get_findings(self, filename, test):
if host:
finding.unsaved_endpoints = [Endpoint(host=host, port=None)]
findings.append(finding)
+ return findings
+
+ def _parse_json(self, content: str, test):
+ data = json.loads(content)
+ findings = []
+ for item in data:
+ severity_raw = (item.get("severity") or "").strip()
+ issue_class = (item.get("issue_class") or "").strip()
+ subject = (item.get("subject") or "").strip()
+ issue_type = (item.get("issue_type") or "").strip()
+ dismissed = item.get("dismissed", False)
+ risk = (item.get("risk") or "").strip()
+ recommended_action = (item.get("resolve_text") or "").strip()
+
+ mapped_severity = self._map_severity(severity_raw)
+ title = f"{issue_type}: {subject}" if issue_type and subject else issue_type or subject or "Cloudflare Insight"
+
+ description_parts = []
+ if issue_class:
+ description_parts.append(f"**Issue class**: {issue_class}")
+ if issue_type:
+ description_parts.append(f"**Issue type**: {issue_type}")
+ if risk:
+ description_parts.append(f"**Risk**: {risk}")
+ description = "\n\n".join(description_parts)
+ finding = Finding(
+ test=test,
+ title=title,
+ severity=mapped_severity,
+ description=description,
+ mitigation=recommended_action,
+ references="Not provided!",
+ static_finding=False,
+ dynamic_finding=True,
+ )
+ finding.active = not dismissed
+ host = self._extract_host_from_subject(subject)
+ if host:
+ finding.unsaved_endpoints = [Endpoint(host=host, port=None)]
+ findings.append(finding)
return findings
+
+ def get_findings(self, filename, test):
+ content = filename.read()
+ if isinstance(content, bytes):
+ content = content.decode("utf-8", errors="replace")
+ content_strip = content.strip()
+ if content_strip.startswith("["):
+ return self._parse_json(content_strip, test)
+ return self._parse_csv(content_strip, test)
diff --git a/dojo/tools/codechecker/parser.py b/dojo/tools/codechecker/parser.py
index 16eff099c76..f1bf1586650 100644
--- a/dojo/tools/codechecker/parser.py
+++ b/dojo/tools/codechecker/parser.py
@@ -98,7 +98,7 @@ def get_item(vuln):
else:
title = unique_id_from_tool
- return Finding(
+ finding = Finding(
title=title,
description=description,
severity=severity,
@@ -113,10 +113,9 @@ def get_item(vuln):
sast_source_line=sast_source_line,
static_finding=True,
dynamic_finding=False,
- tags=[
- vuln["analyzer_name"],
- ],
)
+ finding.unsaved_tags = [vuln["analyzer_name"]]
+ return finding
def get_mapped_severity(severity):
diff --git a/dojo/tools/meterian/parser.py b/dojo/tools/meterian/parser.py
index 492dec89c77..d882faa23dd 100644
--- a/dojo/tools/meterian/parser.py
+++ b/dojo/tools/meterian/parser.py
@@ -69,8 +69,8 @@ def do_get_findings(self, single_security_report, scan_date, test):
dynamic_finding=False,
file_path="Manifest file",
unique_id_from_tool=advisory["id"],
- tags=[language],
)
+ finding.unsaved_tags = [language]
if "cve" in advisory:
if advisory["cve"] != "N/A":
diff --git a/dojo/tools/nuclei/parser.py b/dojo/tools/nuclei/parser.py
index 1ce68800c84..e524a529bc2 100644
--- a/dojo/tools/nuclei/parser.py
+++ b/dojo/tools/nuclei/parser.py
@@ -142,7 +142,7 @@ def get_findings(self, filename, test):
)
dupe_key = hashlib.sha256(
- (template_id + item_type + matcher + endpoint.host).encode(
+ (template_id + item_type + matcher + str(endpoint.host)).encode(
"utf-8",
),
).hexdigest()
diff --git a/dojo/tools/reversinglabs_spectraassure/rlJsonInfo/__init__.py b/dojo/tools/reversinglabs_spectraassure/rlJsonInfo/__init__.py
index 6be58c6c8e4..9843c2fcbea 100644
--- a/dojo/tools/reversinglabs_spectraassure/rlJsonInfo/__init__.py
+++ b/dojo/tools/reversinglabs_spectraassure/rlJsonInfo/__init__.py
@@ -7,7 +7,7 @@
from .cve_info_node import CveInfoNode
-logger = logging.getLogger(__name__)
+logger = logging.getLogger(__name__) # noqa: RUF067
"""
# rl-json report
@@ -169,7 +169,7 @@
"""
-class RlJsonInfo:
+class RlJsonInfo: # noqa: RUF067
SCAN_TOOL_NAME: str = "ReversingLabs SpectraAssure"
diff --git a/dojo/tools/sarif/parser.py b/dojo/tools/sarif/parser.py
index a32c9b7ea37..d554e1d51e3 100644
--- a/dojo/tools/sarif/parser.py
+++ b/dojo/tools/sarif/parser.py
@@ -269,7 +269,7 @@ def get_items_from_result(self, result, rules, artifacts, run_date):
# manage tags provided in the report and rule and remove duplicated
tags = list(set(get_properties_tags(rule) + get_properties_tags(result)))
tags = [s.removeprefix("external/cwe/") for s in tags]
- finding.tags = tags
+ finding.unsaved_tags = tags
# manage fingerprints
# fingerprinting in SARIF is more complete than in current implementation
diff --git a/dojo/tools/sonarqube/sonarqube_restapi_json.py b/dojo/tools/sonarqube/sonarqube_restapi_json.py
index 9feb7a14397..a01dd44037d 100644
--- a/dojo/tools/sonarqube/sonarqube_restapi_json.py
+++ b/dojo/tools/sonarqube/sonarqube_restapi_json.py
@@ -55,10 +55,10 @@ def get_json_items(self, json_content, test, mode):
severity=self.severitytranslator(issue.get("severity")),
static_finding=True,
dynamic_finding=False,
- tags=["bug"],
line=line,
date=date,
)
+ item.unsaved_tags = ["bug"]
elif issue.get("type") == "VULNERABILITY":
key = issue.get("key")
rule = issue.get("rule")
@@ -129,10 +129,10 @@ def get_json_items(self, json_content, test, mode):
cwe=cwe,
cvssv3_score=cvss,
file_path=component,
- tags=["vulnerability"],
line=line,
date=date,
)
+ item.unsaved_tags = ["vulnerability"]
vulnids = []
if "Reference: CVE" in message:
cve_pattern = r"Reference: CVE-\d{4}-\d{4,7}"
@@ -200,10 +200,10 @@ def get_json_items(self, json_content, test, mode):
static_finding=True,
dynamic_finding=False,
file_path=component,
- tags=["code_smell"],
line=line,
date=date,
)
+ item.unsaved_tags = ["code_smell"]
items.append(item)
if json_content.get("hotspots"):
for hotspot in json_content.get("hotspots"):
@@ -249,10 +249,10 @@ def get_json_items(self, json_content, test, mode):
static_finding=True,
dynamic_finding=False,
file_path=component,
- tags=["hotspot"],
line=line,
date=date,
)
+ item.unsaved_tags = ["hotspot"]
items.append(item)
return items
diff --git a/dojo/tools/sysdig_cli/parser.py b/dojo/tools/sysdig_cli/parser.py
index 90b5fd82e2f..3b88bcec408 100644
--- a/dojo/tools/sysdig_cli/parser.py
+++ b/dojo/tools/sysdig_cli/parser.py
@@ -138,7 +138,7 @@ def parse_csv(self, arr_data, test):
tags = []
if row.vulnerability_id:
tags.append(clean_tags("VulnId:" + row.vulnerability_id))
- finding.tags = tags
+ finding.unsaved_tags = tags
finding.dynamic_finding = False
finding.static_finding = True
finding.description += "\n\n###Vulnerability Details"
diff --git a/dojo/tools/trivy/parser.py b/dojo/tools/trivy/parser.py
index 184aa88c2ac..6308070d71a 100644
--- a/dojo/tools/trivy/parser.py
+++ b/dojo/tools/trivy/parser.py
@@ -323,10 +323,10 @@ def get_result_items(self, test, results, service_name=None, artifact_name=""):
static_finding=True,
dynamic_finding=False,
fix_available=fix_available,
- tags=[vul_type, target_class],
service=service_name,
**status_fields,
)
+ finding.unsaved_tags = [vul_type, target_class]
if vuln_id:
finding.unsaved_vulnerability_ids = [vuln_id]
@@ -379,9 +379,9 @@ def get_result_items(self, test, results, service_name=None, artifact_name=""):
fix_available=True,
static_finding=True,
dynamic_finding=False,
- tags=[target_type, target_class],
service=service_name,
)
+ finding.unsaved_tags = [target_type, target_class]
items.append(finding)
secrets = target_data.get("Secrets", [])
@@ -410,9 +410,9 @@ def get_result_items(self, test, results, service_name=None, artifact_name=""):
static_finding=True,
dynamic_finding=False,
fix_available=True,
- tags=[target_class],
service=service_name,
)
+ finding.unsaved_tags = [target_class]
items.append(finding)
licenses = target_data.get("Licenses", [])
@@ -444,9 +444,9 @@ def get_result_items(self, test, results, service_name=None, artifact_name=""):
static_finding=True,
dynamic_finding=False,
fix_available=True,
- tags=[target_class],
service=service_name,
)
+ finding.unsaved_tags = [target_class]
items.append(finding)
return items
diff --git a/dojo/tools/trivy_operator/checks_handler.py b/dojo/tools/trivy_operator/checks_handler.py
index cc2fe0d9b67..e9d27edcdb9 100644
--- a/dojo/tools/trivy_operator/checks_handler.py
+++ b/dojo/tools/trivy_operator/checks_handler.py
@@ -48,7 +48,7 @@ def handle_checks(self, labels, checks, test):
fix_available=True,
)
if resource_namespace:
- finding.tags = resource_namespace
+ finding.unsaved_tags = [resource_namespace]
if check_id:
finding.unsaved_vulnerability_ids = [UniformTrivyVulnID().return_uniformed_vulnid(check_id)]
findings.append(finding)
diff --git a/dojo/tools/trivy_operator/secrets_handler.py b/dojo/tools/trivy_operator/secrets_handler.py
index ae387b2c8ec..e0a1b1996f5 100644
--- a/dojo/tools/trivy_operator/secrets_handler.py
+++ b/dojo/tools/trivy_operator/secrets_handler.py
@@ -56,6 +56,6 @@ def handle_secrets(self, labels, secrets, test):
fix_available=True,
)
if resource_namespace:
- finding.tags = resource_namespace
+ finding.unsaved_tags = [resource_namespace]
findings.append(finding)
return findings
diff --git a/dojo/tools/trivy_operator/vulnerability_handler.py b/dojo/tools/trivy_operator/vulnerability_handler.py
index 266a5b37cb4..685f0760763 100644
--- a/dojo/tools/trivy_operator/vulnerability_handler.py
+++ b/dojo/tools/trivy_operator/vulnerability_handler.py
@@ -86,9 +86,9 @@ def handle_vulns(self, labels, vulnerabilities, test):
dynamic_finding=False,
service=service,
file_path=file_path,
- tags=[tag for tag in finding_tags if tag],
fix_available=fix_available,
)
+ finding.unsaved_tags = [tag for tag in finding_tags if tag]
if vuln_id:
finding.unsaved_vulnerability_ids = [UniformTrivyVulnID().return_uniformed_vulnid(vuln_id)]
findings.append(finding)
diff --git a/dojo/utils.py b/dojo/utils.py
index d620445d1fa..1463ae44970 100644
--- a/dojo/utils.py
+++ b/dojo/utils.py
@@ -2409,7 +2409,7 @@ def generate_file_response_from_file_path(
response = FileResponse(
path.open("rb"),
filename=full_file_name,
- content_type=f"{mimetypes.guess_type(file_path)}",
+ content_type=mimetypes.guess_type(file_path)[0] or "application/octet-stream",
)
# Add some important headers
response["Content-Disposition"] = f'attachment; filename="{full_file_name}"'
diff --git a/helm/defectdojo/Chart.yaml b/helm/defectdojo/Chart.yaml
index e82f7339cf1..3ef856de52a 100644
--- a/helm/defectdojo/Chart.yaml
+++ b/helm/defectdojo/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
appVersion: "2.55.0-dev"
description: A Helm chart for Kubernetes to install DefectDojo
name: defectdojo
-version: 1.9.8-dev
+version: 1.9.9-dev
icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png
maintainers:
- name: madchap
diff --git a/helm/defectdojo/README.md b/helm/defectdojo/README.md
index 18cb0bb2dfd..ce12b1f4166 100644
--- a/helm/defectdojo/README.md
+++ b/helm/defectdojo/README.md
@@ -511,7 +511,7 @@ The HELM schema will be generated for you.
# General information about chart values
- 
+ 
A Helm chart for Kubernetes to install DefectDojo
diff --git a/requirements-lint.txt b/requirements-lint.txt
index 76dbc2656d3..2a23e771553 100644
--- a/requirements-lint.txt
+++ b/requirements-lint.txt
@@ -1 +1 @@
-ruff==0.14.10
\ No newline at end of file
+ruff==0.14.11
\ No newline at end of file
diff --git a/requirements.txt b/requirements.txt
index 3108d13d482..9b906345e8e 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,5 +1,4 @@
# requirements.txt for DefectDojo using Python 3.x
-asteval==1.0.8
bleach==6.3.0
bleach[css]
celery[sqs]==5.6.2
diff --git a/unittests/scans/cloudflare_insights/many_findings.json b/unittests/scans/cloudflare_insights/many_findings.json
new file mode 100644
index 00000000000..a604690329c
--- /dev/null
+++ b/unittests/scans/cloudflare_insights/many_findings.json
@@ -0,0 +1,47 @@
+[
+ {
+ "id": "asdf-security_txt_not_enabled",
+ "issue_class": "security_txt_not_enabled",
+ "issue_type": "configuration_suggestion",
+ "payload": {
+ "zone_tag": "asdffwe"
+ },
+ "severity": "Low",
+ "subject": "test.de",
+ "timestamp": "2024-12-01T05:43:45.712676Z",
+ "dismissed": false,
+ "since": "2024-10-03T07:46:55.613682Z",
+ "resolve_link": "",
+ "resolve_text": ""
+ },
+ {
+ "id": "fwefwef-security_txt_not_enabled",
+ "issue_class": "security_txt_not_enabled",
+ "issue_type": "configuration_suggestion",
+ "payload": {
+ "zone_tag": "klklkl"
+ },
+ "severity": "Low",
+ "subject": "nannana.com",
+ "timestamp": "2024-12-01T05:43:44.175313Z",
+ "dismissed": false,
+ "since": "2024-10-03T08:48:44.581718Z",
+ "resolve_link": "",
+ "resolve_text": ""
+ },
+ {
+ "id": "yxcv-security_txt_not_enabled",
+ "issue_class": "security_txt_not_enabled",
+ "issue_type": "configuration_suggestion",
+ "payload": {
+ "zone_tag": "yxcv"
+ },
+ "severity": "Low",
+ "subject": "asdf.de",
+ "timestamp": "2024-12-01T05:43:44.252529Z",
+ "dismissed": false,
+ "since": "2024-10-03T08:48:43.923198Z",
+ "resolve_link": "",
+ "resolve_text": ""
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/cloudflare_insights/one_finding.json b/unittests/scans/cloudflare_insights/one_finding.json
new file mode 100644
index 00000000000..68faf167da6
--- /dev/null
+++ b/unittests/scans/cloudflare_insights/one_finding.json
@@ -0,0 +1,17 @@
+[
+ {
+ "id": "123-security_txt_not_enabled",
+ "issue_class": "security_txt_not_enabled",
+ "issue_type": "configuration_suggestion",
+ "payload": {
+ "zone_tag": "12"
+ },
+ "severity": "Low",
+ "subject": "domain.com",
+ "timestamp": "2024-12-01T05:43:45.712676Z",
+ "dismissed": false,
+ "since": "2024-10-03T07:46:55.613682Z",
+ "resolve_link": "",
+ "resolve_text": ""
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/dependency_check/dc_empty.xml b/unittests/scans/dependency_check/dc_empty.xml
index 7899e9f0e1e..fa36db04f0a 100644
--- a/unittests/scans/dependency_check/dc_empty.xml
+++ b/unittests/scans/dependency_check/dc_empty.xml
@@ -1 +1,24 @@
-
6.5.3NVD CVE Checked2022-01-22T14:36:52NVD CVE Modified2022-01-22T14:00:01VersionCheckOn2022-01-15T15:27:202022-01-22T13:40:32.740468526ZThis report contains data retrieved from the National Vulnerability Database: https://nvd.nist.gov, NPM Public Advisories: https://www.npmjs.com/advisories, and the RetireJS community.
\ No newline at end of file
+
+
+
+ 6.5.3
+
+ NVD CVE Checked
+ 2022-01-22T14:36:52
+
+
+ NVD CVE Modified
+ 2022-01-22T14:00:01
+
+
+ VersionCheckOn
+ 2022-01-15T15:27:20
+
+
+
+
+ 2022-01-22T13:40:32.740468526Z
+ This report contains data retrieved from the National Vulnerability Database: https://nvd.nist.gov, NPM Public Advisories: https://www.npmjs.com/advisories, and the RetireJS community.
+
+
+
diff --git a/unittests/scans/nsp/scan.json b/unittests/scans/nsp/scan.json
index 2d806fb4251..9326a36906f 100644
--- a/unittests/scans/nsp/scan.json
+++ b/unittests/scans/nsp/scan.json
@@ -1 +1,192 @@
-[{"id":521,"updated_at":"2018-05-08T14:27:01.871Z","created_at":"2017-08-13T04:26:17.960Z","publish_date":"2017-08-13T04:34:53.158Z","overview":"Affected versions of `pg` contain a remote code execution vulnerability that occurs when the remote database or query specifies a crafted column name. \n\nThere are two specific scenarios in which it is likely for an application to be vulnerable:\n1. The application executes unsafe, user-supplied sql which contains malicious column names.\n2. The application connects to an untrusted database and executes a query returning results which contain a malicious column name.\n\n## Proof of Concept\n```\nconst { Client } = require('pg')\nconst client = new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\'/*\", 2 AS \"\\\\'*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```","recommendation":"* Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note that version 7.0.2 is also patched. )","cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss_score":8.3,"module":"pg","version":"5.1.0","vulnerable_versions":"< 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2","patched_versions":">= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2","title":"Remote Code Execution","path":["vulnerable-node-source@0.0.0","pg-promise@4.8.1","pg@5.1.0"],"advisory":"https://nodesecurity.io/advisories/521"},{"id":535,"updated_at":"2018-05-08T14:27:01.895Z","created_at":"2017-09-25T19:02:28.152Z","publish_date":"2017-09-27T18:25:14.672Z","overview":"Affected versions of `mime` are vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.","recommendation":"Update to version 2.0.3 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss_score":7.5,"module":"mime","version":"1.3.4","vulnerable_versions":"< 1.4.1 || > 2.0.0 < 2.0.3","patched_versions":">= 1.4.1 < 2.0.0 || >= 2.0.3","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","express@4.13.4","send@0.13.1","mime@1.3.4"],"advisory":"https://nodesecurity.io/advisories/535"},{"id":526,"updated_at":"2018-05-08T14:27:01.882Z","created_at":"2017-09-08T20:23:54.164Z","publish_date":"2017-09-26T16:06:50.827Z","overview":"Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.","recommendation":"Update to version 0.5.2 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss_score":7.5,"module":"fresh","version":"0.3.0","vulnerable_versions":"< 0.5.2","patched_versions":">= 0.5.2","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","express@4.13.4","fresh@0.3.0"],"advisory":"https://nodesecurity.io/advisories/526"},{"id":526,"updated_at":"2018-05-08T14:27:01.882Z","created_at":"2017-09-08T20:23:54.164Z","publish_date":"2017-09-26T16:06:50.827Z","overview":"Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.","recommendation":"Update to version 0.5.2 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss_score":7.5,"module":"fresh","version":"0.3.0","vulnerable_versions":"< 0.5.2","patched_versions":">= 0.5.2","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","serve-favicon@2.3.2","fresh@0.3.0"],"advisory":"https://nodesecurity.io/advisories/526"},{"id":106,"updated_at":"2018-05-08T14:27:01.154Z","created_at":"2016-05-04T16:34:12.000Z","publish_date":"2016-06-16T17:36:06.000Z","overview":"Affected versions of `negotiator` are vulnerable to regular expression denial of service attacks, which trigger upon parsing a specially crafted `Accept-Language` header value.\n\n","recommendation":"Update to version 0.6.1 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss_score":7.5,"module":"negotiator","version":"0.5.3","vulnerable_versions":"<= 0.6.0","patched_versions":">= 0.6.1","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","express@4.13.4","accepts@1.2.13","negotiator@0.5.3"],"advisory":"https://nodesecurity.io/advisories/106"},{"id":534,"updated_at":"2018-05-16T19:37:31.802Z","created_at":"2017-09-25T18:55:55.956Z","publish_date":"2017-09-27T18:24:24.490Z","overview":"Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.","recommendation":"Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss_score":3.7,"module":"debug","version":"2.2.0","vulnerable_versions":"<= 2.6.8 || >= 3.0.0 <= 3.0.1","patched_versions":">= 2.6.9 < 3.0.0 || >= 3.1.0","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","body-parser@1.13.3","debug@2.2.0"],"advisory":"https://nodesecurity.io/advisories/534"},{"id":534,"updated_at":"2018-05-16T19:37:31.802Z","created_at":"2017-09-25T18:55:55.956Z","publish_date":"2017-09-27T18:24:24.490Z","overview":"Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.","recommendation":"Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss_score":3.7,"module":"debug","version":"2.2.0","vulnerable_versions":"<= 2.6.8 || >= 3.0.0 <= 3.0.1","patched_versions":">= 2.6.9 < 3.0.0 || >= 3.1.0","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","debug@2.2.0"],"advisory":"https://nodesecurity.io/advisories/534"},{"id":534,"updated_at":"2018-05-16T19:37:31.802Z","created_at":"2017-09-25T18:55:55.956Z","publish_date":"2017-09-27T18:24:24.490Z","overview":"Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.","recommendation":"Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss_score":3.7,"module":"debug","version":"2.2.0","vulnerable_versions":"<= 2.6.8 || >= 3.0.0 <= 3.0.1","patched_versions":">= 2.6.9 < 3.0.0 || >= 3.1.0","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","express@4.13.4","debug@2.2.0"],"advisory":"https://nodesecurity.io/advisories/534"},{"id":534,"updated_at":"2018-05-16T19:37:31.802Z","created_at":"2017-09-25T18:55:55.956Z","publish_date":"2017-09-27T18:24:24.490Z","overview":"Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.","recommendation":"Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.","cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss_score":3.7,"module":"debug","version":"2.2.0","vulnerable_versions":"<= 2.6.8 || >= 3.0.0 <= 3.0.1","patched_versions":">= 2.6.9 < 3.0.0 || >= 3.1.0","title":"Regular Expression Denial of Service","path":["vulnerable-node-source@0.0.0","morgan@1.6.1","debug@2.2.0"],"advisory":"https://nodesecurity.io/advisories/534"}]
+[
+ {
+ "id": 521,
+ "updated_at": "2018-05-08T14:27:01.871Z",
+ "created_at": "2017-08-13T04:26:17.960Z",
+ "publish_date": "2017-08-13T04:34:53.158Z",
+ "overview": "Affected versions of `pg` contain a remote code execution vulnerability that occurs when the remote database or query specifies a crafted column name. \n\nThere are two specific scenarios in which it is likely for an application to be vulnerable:\n1. The application executes unsafe, user-supplied sql which contains malicious column names.\n2. The application connects to an untrusted database and executes a query returning results which contain a malicious column name.\n\n## Proof of Concept\n```\nconst { Client } = require('pg')\nconst client = new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\'/*\", 2 AS \"\\\\'*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```",
+ "recommendation": "* Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note that version 7.0.2 is also patched. )",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
+ "cvss_score": 8.3,
+ "module": "pg",
+ "version": "5.1.0",
+ "vulnerable_versions": "< 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2",
+ "patched_versions": ">= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2",
+ "title": "Remote Code Execution",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "pg-promise@4.8.1",
+ "pg@5.1.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/521"
+ },
+ {
+ "id": 535,
+ "updated_at": "2018-05-08T14:27:01.895Z",
+ "created_at": "2017-09-25T19:02:28.152Z",
+ "publish_date": "2017-09-27T18:25:14.672Z",
+ "overview": "Affected versions of `mime` are vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.",
+ "recommendation": "Update to version 2.0.3 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+ "cvss_score": 7.5,
+ "module": "mime",
+ "version": "1.3.4",
+ "vulnerable_versions": "< 1.4.1 || > 2.0.0 < 2.0.3",
+ "patched_versions": ">= 1.4.1 < 2.0.0 || >= 2.0.3",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "express@4.13.4",
+ "send@0.13.1",
+ "mime@1.3.4"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/535"
+ },
+ {
+ "id": 526,
+ "updated_at": "2018-05-08T14:27:01.882Z",
+ "created_at": "2017-09-08T20:23:54.164Z",
+ "publish_date": "2017-09-26T16:06:50.827Z",
+ "overview": "Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.",
+ "recommendation": "Update to version 0.5.2 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+ "cvss_score": 7.5,
+ "module": "fresh",
+ "version": "0.3.0",
+ "vulnerable_versions": "< 0.5.2",
+ "patched_versions": ">= 0.5.2",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "express@4.13.4",
+ "fresh@0.3.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/526"
+ },
+ {
+ "id": 526,
+ "updated_at": "2018-05-08T14:27:01.882Z",
+ "created_at": "2017-09-08T20:23:54.164Z",
+ "publish_date": "2017-09-26T16:06:50.827Z",
+ "overview": "Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.",
+ "recommendation": "Update to version 0.5.2 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+ "cvss_score": 7.5,
+ "module": "fresh",
+ "version": "0.3.0",
+ "vulnerable_versions": "< 0.5.2",
+ "patched_versions": ">= 0.5.2",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "serve-favicon@2.3.2",
+ "fresh@0.3.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/526"
+ },
+ {
+ "id": 106,
+ "updated_at": "2018-05-08T14:27:01.154Z",
+ "created_at": "2016-05-04T16:34:12.000Z",
+ "publish_date": "2016-06-16T17:36:06.000Z",
+ "overview": "Affected versions of `negotiator` are vulnerable to regular expression denial of service attacks, which trigger upon parsing a specially crafted `Accept-Language` header value.\n\n",
+ "recommendation": "Update to version 0.6.1 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+ "cvss_score": 7.5,
+ "module": "negotiator",
+ "version": "0.5.3",
+ "vulnerable_versions": "<= 0.6.0",
+ "patched_versions": ">= 0.6.1",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "express@4.13.4",
+ "accepts@1.2.13",
+ "negotiator@0.5.3"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/106"
+ },
+ {
+ "id": 534,
+ "updated_at": "2018-05-16T19:37:31.802Z",
+ "created_at": "2017-09-25T18:55:55.956Z",
+ "publish_date": "2017-09-27T18:24:24.490Z",
+ "overview": "Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.",
+ "recommendation": "Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
+ "cvss_score": 3.7,
+ "module": "debug",
+ "version": "2.2.0",
+ "vulnerable_versions": "<= 2.6.8 || >= 3.0.0 <= 3.0.1",
+ "patched_versions": ">= 2.6.9 < 3.0.0 || >= 3.1.0",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "body-parser@1.13.3",
+ "debug@2.2.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/534"
+ },
+ {
+ "id": 534,
+ "updated_at": "2018-05-16T19:37:31.802Z",
+ "created_at": "2017-09-25T18:55:55.956Z",
+ "publish_date": "2017-09-27T18:24:24.490Z",
+ "overview": "Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.",
+ "recommendation": "Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
+ "cvss_score": 3.7,
+ "module": "debug",
+ "version": "2.2.0",
+ "vulnerable_versions": "<= 2.6.8 || >= 3.0.0 <= 3.0.1",
+ "patched_versions": ">= 2.6.9 < 3.0.0 || >= 3.1.0",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "debug@2.2.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/534"
+ },
+ {
+ "id": 534,
+ "updated_at": "2018-05-16T19:37:31.802Z",
+ "created_at": "2017-09-25T18:55:55.956Z",
+ "publish_date": "2017-09-27T18:24:24.490Z",
+ "overview": "Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.",
+ "recommendation": "Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
+ "cvss_score": 3.7,
+ "module": "debug",
+ "version": "2.2.0",
+ "vulnerable_versions": "<= 2.6.8 || >= 3.0.0 <= 3.0.1",
+ "patched_versions": ">= 2.6.9 < 3.0.0 || >= 3.1.0",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "express@4.13.4",
+ "debug@2.2.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/534"
+ },
+ {
+ "id": 534,
+ "updated_at": "2018-05-16T19:37:31.802Z",
+ "created_at": "2017-09-25T18:55:55.956Z",
+ "publish_date": "2017-09-27T18:24:24.490Z",
+ "overview": "Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.",
+ "recommendation": "Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.",
+ "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
+ "cvss_score": 3.7,
+ "module": "debug",
+ "version": "2.2.0",
+ "vulnerable_versions": "<= 2.6.8 || >= 3.0.0 <= 3.0.1",
+ "patched_versions": ">= 2.6.9 < 3.0.0 || >= 3.1.0",
+ "title": "Regular Expression Denial of Service",
+ "path": [
+ "vulnerable-node-source@0.0.0",
+ "morgan@1.6.1",
+ "debug@2.2.0"
+ ],
+ "advisory": "https://nodesecurity.io/advisories/534"
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/nuclei/issue_14071.json b/unittests/scans/nuclei/issue_14071.json
new file mode 100644
index 00000000000..d6ed8d3747d
--- /dev/null
+++ b/unittests/scans/nuclei/issue_14071.json
@@ -0,0 +1,27 @@
+{"template":"http/default-logins/dvwa/dvwa-default-login.yaml","template-url":"https://cloud.projectdiscovery.io/public/dvwa-default-login","template-id":"dvwa-default-login","template-path":"/root/nuclei-templates/http/default-logins/dvwa/dvwa-default-login.yaml","info":{"name":"DVWA Default Login","author":["pdteam"],"tags":["dvwa","default-login","vuln"],"description":"Damn Vulnerable Web App (DVWA) is a test application for security professionals. The hard coded credentials are part of a security testing scenario.","reference":["https://opensourcelibs.com/lib/dvwa"],"severity":"critical","metadata":{"max-request":2},"classification":{"cve-id":null,"cwe-id":["cwe-798"]}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/index.php","request":"POST /login.php HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; rv:140.0) Gecko/20100101 Firefox/140.0\r\nContent-Length: 88\r\nConnection: close\r\nContent-Type: application/x-www-form-urlencoded\r\nCookie: PHPSESSID=fbeb4812f1bc3aebc7ebd5f969d0ad00; security=low; security=low; PHPSESSID=fbeb4812f1bc3aebc7ebd5f969d0ad00\r\nAccept-Encoding: gzip\r\n\r\nusername=admin\u0026password=password\u0026Login=Login\u0026user_token=0ad6e164d446ae529b089236cfa16769","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:46:54 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/authbypass/\"\u003eAuthorisation Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\u003cdiv class=\"body_padded\"\u003e\u003cdiv class=\"message\"\u003eYou have logged in as 'admin'\u003c/div\u003e\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e admin\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","meta":{"username":"admin","password":"password"},"ip":"172.18.0.3","timestamp":"2026-01-12T13:46:54.716706997Z","curl-command":"curl -X 'GET' -d 'username=admin\u0026password=password\u0026Login=Login\u0026user_token=0ad6e164d446ae529b089236cfa16769' -H 'Connection: close' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Cookie: security=low; security=low; PHPSESSID=fbeb4812f1bc3aebc7ebd5f969d0ad00' -H 'Host: dvwa_dvwa_1' -H 'Referer: http://dvwa_dvwa_1/login.php' -H 'User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:140.0) Gecko/20100101 Firefox/140.0' 'http://dvwa_dvwa_1/index.php'","matcher-status":true}
+{"template":"http/exposures/configs/phpinfo-files.yaml","template-url":"https://cloud.projectdiscovery.io/public/phpinfo-files","template-id":"phpinfo-files","template-path":"/root/nuclei-templates/http/exposures/configs/phpinfo-files.yaml","info":{"name":"PHPinfo Page - Detect","author":["pdteam","daffainfo","meme-lord","dhiyaneshdk","wabafet","mastercho"],"tags":["config","exposure","phpinfo","vuln"],"description":"PHPinfo page was detected. The output of the phpinfo() command can reveal sensitive and detailed PHP environment information.\n","severity":"low","metadata":{"max-request":25},"classification":{"cve-id":null,"cwe-id":["cwe-200"]},"remediation":"Remove PHP Info pages from publicly accessible sites, or restrict access to authorized users only."},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1//phpinfo.php","extracted-results":["8.5.1"],"request":"GET //phpinfo.php HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.17\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-store, no-cache, must-revalidate\r\nContent-Type: text/html; charset=UTF-8\r\nDate: Mon, 12 Jan 2026 13:47:01 GMT\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=56072347d8ff2f0bf48d4cc9f4d0bec1; expires=Tue, 13 Jan 2026 13:47:01 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"DTD/xhtml1-transitional.dtd\"\u003e\n\u003chtml xmlns=\"http://www.w3.org/1999/xhtml\"\u003e\u003chead\u003e\n\u003cstyle type=\"text/css\"\u003e\nbody {background-color: #fff; color: #222; font-family: sans-serif;}\npre {margin: 0; font-family: monospace;}\na {color: inherit;}\na:hover {text-decoration: none;}\ntable {border-collapse: collapse; border: 0; width: 934px; box-shadow: 1px 2px 3px rgba(0, 0, 0, 0.2);}\n.center {text-align: center;}\n.center table {margin: 1em auto; text-align: left;}\n.center th {text-align: center !important;}\ntd, th {border: 1px solid #666; font-size: 75%; vertical-align: baseline; padding: 4px 5px;}\nth {position: sticky; top: 0; background: inherit;}\nh1 {font-size: 150%;}\nh2 {font-size: 125%;}\nh2 \u003e a {text-decoration: none;}\nh2 \u003e a:hover {text-decoration: underline;}\n.p {text-align: left;}\n.e {background-color: #ccf; width: 300px; font-weight: bold;}\n.h {background-color: #99c; font-weight: bold;}\n.v {background-color: #ddd; max-width: 300px; overflow-x: auto; word-wrap: break-word;}\n.v i {color: #999;}\nimg {float: right; border: 0;}\nhr {width: 934px; background-color: #ccc; border: 0; height: 1px;}\n:root {--php-dark-grey: #333; --php-dark-blue: #4F5B93; --php-medium-blue: #8892BF; --php-light-blue: #E2E4EF; --php-accent-purple: #793862}@media (prefers-color-scheme: dark) {\n body {background: var(--php-dark-grey); color: var(--php-light-blue)}\n .h td, td.e, th {border-color: #606A90}\n td {border-color: #505153}\n .e {background-color: #404A77}\n .h {background-color: var(--php-dark-blue)}\n .v {background-color: var(--php-dark-grey)}\n hr {background-color: #505153}\n}\n\u003c/style\u003e\n\u003ctitle\u003ePHP 8.5.1 - phpinfo()\u003c/title\u003e\u003cmeta name=\"ROBOTS\" content=\"NOINDEX,NOFOLLOW,NOARCHIVE\" /\u003e\u003c/head\u003e\n\u003cbody\u003e\u003cdiv class=\"center\"\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003ctd\u003e\n\u003ca href=\"https://www.php.net/\"\u003e\u003cimg src=\"data:image/png;base64,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\" alt=\"PHP logo\" /\u003e\u003c/a\u003e\u003ch1 class=\"p\"\u003ePHP Version 8.5.1\u003c/h1\u003e\n\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSystem \u003c/td\u003e\u003ctd class=\"v\"\u003eLinux 7b31b6af550e 6.8.0-90-generic #91-Ubuntu SMP PREEMPT_DYNAMIC Tue Nov 18 14:14:30 UTC 2025 x86_64 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBuild Date \u003c/td\u003e\u003ctd class=\"v\"\u003eJan 9 2026 22:31:44 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBuild System \u003c/td\u003e\u003ctd class=\"v\"\u003eLinux - Docker \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBuild Provider \u003c/td\u003e\u003ctd class=\"v\"\u003ehttps://github.com/docker-library/php \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eConfigure Command \u003c/td\u003e\u003ctd class=\"v\"\u003e \u0026#039;./configure\u0026#039; \u0026#039;--build=x86_64-linux-gnu\u0026#039; \u0026#039;--sysconfdir=/usr/local/etc\u0026#039; \u0026#039;--with-config-file-path=/usr/local/etc/php\u0026#039; \u0026#039;--with-config-file-scan-dir=/usr/local/etc/php/conf.d\u0026#039; \u0026#039;--enable-option-checking=fatal\u0026#039; \u0026#039;--with-mhash\u0026#039; \u0026#039;--with-pic\u0026#039; \u0026#039;--enable-mbstring\u0026#039; \u0026#039;--enable-mysqlnd\u0026#039; \u0026#039;--with-password-argon2\u0026#039; \u0026#039;--with-sodium=shared\u0026#039; \u0026#039;--with-pdo-sqlite=/usr\u0026#039; \u0026#039;--with-sqlite3=/usr\u0026#039; \u0026#039;--with-curl\u0026#039; \u0026#039;--with-iconv\u0026#039; \u0026#039;--with-openssl\u0026#039; \u0026#039;--with-readline\u0026#039; \u0026#039;--with-zlib\u0026#039; \u0026#039;--disable-phpdbg\u0026#039; \u0026#039;--with-pear\u0026#039; \u0026#039;--with-libdir=lib/x86_64-linux-gnu\u0026#039; \u0026#039;--disable-cgi\u0026#039; \u0026#039;--with-apxs2\u0026#039; \u0026#039;build_alias=x86_64-linux-gnu\u0026#039; \u0026#039;PHP_UNAME=Linux - Docker\u0026#039; \u0026#039;PHP_BUILD_PROVIDER=https://github.com/docker-library/php\u0026#039; \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eServer API \u003c/td\u003e\u003ctd class=\"v\"\u003eApache 2 Handler \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eVirtual Directory Support \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eConfiguration File (php.ini) Path \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/etc/php \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLoaded Configuration File \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html/php.ini \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eScan this dir for additional .ini files \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/etc/php/conf.d \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAdditional .ini files parsed \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/etc/php/conf.d/docker-php-ext-gd.ini,\n/usr/local/etc/php/conf.d/docker-php-ext-mysqli.ini,\n/usr/local/etc/php/conf.d/docker-php-ext-pdo_mysql.ini,\n/usr/local/etc/php/conf.d/docker-php-ext-sodium.ini\n \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP API \u003c/td\u003e\u003ctd class=\"v\"\u003e20250925 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Extension \u003c/td\u003e\u003ctd class=\"v\"\u003e20250925 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Extension \u003c/td\u003e\u003ctd class=\"v\"\u003e420250925 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Extension Build \u003c/td\u003e\u003ctd class=\"v\"\u003eAPI420250925,NTS \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Extension Build \u003c/td\u003e\u003ctd class=\"v\"\u003eAPI20250925,NTS \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Integer Size \u003c/td\u003e\u003ctd class=\"v\"\u003e64 bits \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDebug Build \u003c/td\u003e\u003ctd class=\"v\"\u003eno \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eThread Safety \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Signal Handling \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Memory Manager \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Multibyte Support \u003c/td\u003e\u003ctd class=\"v\"\u003eprovided by mbstring \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Max Execution Timers \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eIPv6 Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDTrace Support \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRegistered PHP Streams\u003c/td\u003e\u003ctd class=\"v\"\u003ehttps, ftps, compress.zlib, php, file, glob, data, http, ftp, phar\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRegistered Stream Socket Transports\u003c/td\u003e\u003ctd class=\"v\"\u003etcp, udp, unix, udg, ssl, tls, tlsv1.0, tlsv1.1, tlsv1.2, tlsv1.3\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRegistered Stream Filters\u003c/td\u003e\u003ctd class=\"v\"\u003ezlib.*, convert.iconv.*, string.rot13, string.toupper, string.tolower, convert.*, consumed, dechunk\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"v\"\u003e\u003ctd\u003e\n\u003ca href=\"https://www.zend.com/\"\u003e\u003cimg src=\"data:image/png;base64,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\" alt=\"Zend logo\" /\u003e\u003c/a\u003e\nThis program makes use of the Zend Scripting Language Engine:\u003cbr /\u003eZend Engine v4.5.1, Copyright (c) Zend Technologies\n with Zend OPcache v8.5.1, Copyright (c), by Zend Technologies\n\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003chr /\u003e\n\u003ch1\u003eConfiguration\u003c/h1\u003e\n\u003ch2\u003e\u003ca name=\"module_apache2handler\" href=\"#module_apache2handler\"\u003eapache2handler\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eApache Version \u003c/td\u003e\u003ctd class=\"v\"\u003eApache/2.4.65 (Debian) \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eApache API Version \u003c/td\u003e\u003ctd class=\"v\"\u003e20120211 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eServer Administrator \u003c/td\u003e\u003ctd class=\"v\"\u003ewebmaster@localhost \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHostname:Port \u003c/td\u003e\u003ctd class=\"v\"\u003e172.18.0.3:80 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUser/Group \u003c/td\u003e\u003ctd class=\"v\"\u003ewww-data(33)/33 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMax Requests \u003c/td\u003e\u003ctd class=\"v\"\u003ePer Child: 0 - Keep Alive: on - Max Per Connection: 100 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTimeouts \u003c/td\u003e\u003ctd class=\"v\"\u003eConnection: 300 - Keep-Alive: 5 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eVirtual Server \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eServer Root \u003c/td\u003e\u003ctd class=\"v\"\u003e/etc/apache2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLoaded Modules \u003c/td\u003e\u003ctd class=\"v\"\u003ecore mod_so mod_watchdog http_core mod_log_config mod_logio mod_version mod_unixd mod_access_compat mod_alias mod_auth_basic mod_authn_core mod_authn_file mod_authz_core mod_authz_host mod_authz_user mod_autoindex mod_deflate mod_dir mod_env mod_filter mod_mime prefork mod_negotiation mod_php mod_reqtimeout mod_rewrite mod_setenvif mod_status \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eengine\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elast_modified\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003exbithack\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003eApache Environment\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eVariable\u003c/th\u003e\u003cth\u003eValue\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_HOST \u003c/td\u003e\u003ctd class=\"v\"\u003edvwa_dvwa_1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_USER_AGENT \u003c/td\u003e\u003ctd class=\"v\"\u003eMozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.17 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_ACCEPT \u003c/td\u003e\u003ctd class=\"v\"\u003e*/* \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_ACCEPT_LANGUAGE \u003c/td\u003e\u003ctd class=\"v\"\u003een \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_ACCEPT_ENCODING \u003c/td\u003e\u003ctd class=\"v\"\u003egzip \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP_CONNECTION \u003c/td\u003e\u003ctd class=\"v\"\u003eclose \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePATH \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_SIGNATURE \u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026lt;address\u0026gt;Apache/2.4.65 (Debian) Server at dvwa_dvwa_1 Port 80\u0026lt;/address\u0026gt;\n \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_SOFTWARE \u003c/td\u003e\u003ctd class=\"v\"\u003eApache/2.4.65 (Debian) \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_NAME \u003c/td\u003e\u003ctd class=\"v\"\u003edvwa_dvwa_1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_ADDR \u003c/td\u003e\u003ctd class=\"v\"\u003e172.18.0.3 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_PORT \u003c/td\u003e\u003ctd class=\"v\"\u003e80 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eREMOTE_ADDR \u003c/td\u003e\u003ctd class=\"v\"\u003e172.18.0.4 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDOCUMENT_ROOT \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eREQUEST_SCHEME \u003c/td\u003e\u003ctd class=\"v\"\u003ehttp \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCONTEXT_PREFIX \u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCONTEXT_DOCUMENT_ROOT \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_ADMIN \u003c/td\u003e\u003ctd class=\"v\"\u003ewebmaster@localhost \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSCRIPT_FILENAME \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html/phpinfo.php \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eREMOTE_PORT \u003c/td\u003e\u003ctd class=\"v\"\u003e48546 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGATEWAY_INTERFACE \u003c/td\u003e\u003ctd class=\"v\"\u003eCGI/1.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSERVER_PROTOCOL \u003c/td\u003e\u003ctd class=\"v\"\u003eHTTP/1.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eREQUEST_METHOD \u003c/td\u003e\u003ctd class=\"v\"\u003eGET \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eQUERY_STRING \u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eREQUEST_URI \u003c/td\u003e\u003ctd class=\"v\"\u003e//phpinfo.php \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSCRIPT_NAME \u003c/td\u003e\u003ctd class=\"v\"\u003e/phpinfo.php \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003eHTTP Headers Information\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003eHTTP Request Headers\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP Request \u003c/td\u003e\u003ctd class=\"v\"\u003eGET //phpinfo.php HTTP/1.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHost \u003c/td\u003e\u003ctd class=\"v\"\u003edvwa_dvwa_1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUser-Agent \u003c/td\u003e\u003ctd class=\"v\"\u003eMozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.17 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAccept \u003c/td\u003e\u003ctd class=\"v\"\u003e*/* \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAccept-Language \u003c/td\u003e\u003ctd class=\"v\"\u003een \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAccept-Encoding \u003c/td\u003e\u003ctd class=\"v\"\u003egzip \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eConnection \u003c/td\u003e\u003ctd class=\"v\"\u003eclose \u003c/td\u003e\u003c/tr\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003eHTTP Response Headers\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eX-Powered-By \u003c/td\u003e\u003ctd class=\"v\"\u003ePHP/8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSet-Cookie \u003c/td\u003e\u003ctd class=\"v\"\u003esecurity=low; path=/ \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSet-Cookie \u003c/td\u003e\u003ctd class=\"v\"\u003ePHPSESSID=56072347d8ff2f0bf48d4cc9f4d0bec1; expires=Tue, 13 Jan 2026 13:47:01 GMT; Max-Age=86400; path=/ \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eExpires \u003c/td\u003e\u003ctd class=\"v\"\u003eThu, 19 Nov 1981 08:52:00 GMT \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCache-Control \u003c/td\u003e\u003ctd class=\"v\"\u003eno-store, no-cache, must-revalidate \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePragma \u003c/td\u003e\u003ctd class=\"v\"\u003eno-cache \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_core\" href=\"#module_core\"\u003eCore\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Version \u003c/td\u003e\u003ctd class=\"v\"\u003e8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eallow_url_fopen\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eallow_url_include\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003earg_separator.input\u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026amp;\u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026amp;\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003earg_separator.output\u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026amp;\u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026amp;\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eauto_append_file\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eauto_globals_jit\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eauto_prepend_file\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ebrowscap\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edefault_charset\u003c/td\u003e\u003ctd class=\"v\"\u003eUTF-8\u003c/td\u003e\u003ctd class=\"v\"\u003eUTF-8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edefault_mimetype\u003c/td\u003e\u003ctd class=\"v\"\u003etext/html\u003c/td\u003e\u003ctd class=\"v\"\u003etext/html\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edisable_functions\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edisplay_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edisplay_startup_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edoc_root\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edocref_ext\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edocref_root\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eenable_dl\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eenable_post_data_reading\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eerror_append_string\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eerror_log\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eerror_log_mode\u003c/td\u003e\u003ctd class=\"v\"\u003e0644\u003c/td\u003e\u003ctd class=\"v\"\u003e0644\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eerror_prepend_string\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eerror_reporting\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eexpose_php\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eextension_dir\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/lib/php/extensions/no-debug-non-zts-20250925\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/lib/php/extensions/no-debug-non-zts-20250925\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efatal_error_backtraces\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efiber.stack_size\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efile_uploads\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehard_timeout\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehighlight.comment\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #FF8000\"\u003e#FF8000\u003c/span\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #FF8000\"\u003e#FF8000\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehighlight.default\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #0000BB\"\u003e#0000BB\u003c/span\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #0000BB\"\u003e#0000BB\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehighlight.html\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #000000\"\u003e#000000\u003c/span\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #000000\"\u003e#000000\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehighlight.keyword\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #007700\"\u003e#007700\u003c/span\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #007700\"\u003e#007700\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehighlight.string\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #DD0000\"\u003e#DD0000\u003c/span\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003cspan style=\"color: #DD0000\"\u003e#DD0000\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehtml_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eignore_repeated_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eignore_repeated_source\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eignore_user_abort\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eimplicit_flush\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003einclude_path\u003c/td\u003e\u003ctd class=\"v\"\u003e.:/usr/local/lib/php\u003c/td\u003e\u003ctd class=\"v\"\u003e.:/usr/local/lib/php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003einput_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003einternal_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elog_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003email.add_x_header\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003email.cr_lf_mode\u003c/td\u003e\u003ctd class=\"v\"\u003ecrlf\u003c/td\u003e\u003ctd class=\"v\"\u003ecrlf\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003email.force_extra_parameters\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003email.log\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003email.mixed_lf_and_crlf\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_execution_time\u003c/td\u003e\u003ctd class=\"v\"\u003e30\u003c/td\u003e\u003ctd class=\"v\"\u003e30\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_file_uploads\u003c/td\u003e\u003ctd class=\"v\"\u003e20\u003c/td\u003e\u003ctd class=\"v\"\u003e20\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_input_nesting_level\u003c/td\u003e\u003ctd class=\"v\"\u003e64\u003c/td\u003e\u003ctd class=\"v\"\u003e64\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_input_time\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_input_vars\u003c/td\u003e\u003ctd class=\"v\"\u003e1000\u003c/td\u003e\u003ctd class=\"v\"\u003e1000\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_memory_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emax_multipart_body_parts\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ememory_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e128M\u003c/td\u003e\u003ctd class=\"v\"\u003e128M\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopen_basedir\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eoutput_buffering\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eoutput_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eoutput_handler\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epost_max_size\u003c/td\u003e\u003ctd class=\"v\"\u003e8M\u003c/td\u003e\u003ctd class=\"v\"\u003e8M\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eprecision\u003c/td\u003e\u003ctd class=\"v\"\u003e14\u003c/td\u003e\u003ctd class=\"v\"\u003e14\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003erealpath_cache_size\u003c/td\u003e\u003ctd class=\"v\"\u003e4096K\u003c/td\u003e\u003ctd class=\"v\"\u003e4096K\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003erealpath_cache_ttl\u003c/td\u003e\u003ctd class=\"v\"\u003e120\u003c/td\u003e\u003ctd class=\"v\"\u003e120\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eregister_argc_argv\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ereport_memleaks\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ereport_zend_debug\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003erequest_order\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esendmail_from\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esendmail_path\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/sbin/sendmail -t -i\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/sbin/sendmail -t -i\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eserialize_precision\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eshort_open_tag\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSMTP\u003c/td\u003e\u003ctd class=\"v\"\u003elocalhost\u003c/td\u003e\u003ctd class=\"v\"\u003elocalhost\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esmtp_port\u003c/td\u003e\u003ctd class=\"v\"\u003e25\u003c/td\u003e\u003ctd class=\"v\"\u003e25\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esys_temp_dir\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esyslog.facility\u003c/td\u003e\u003ctd class=\"v\"\u003eLOG_USER\u003c/td\u003e\u003ctd class=\"v\"\u003eLOG_USER\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esyslog.filter\u003c/td\u003e\u003ctd class=\"v\"\u003eno-ctrl\u003c/td\u003e\u003ctd class=\"v\"\u003eno-ctrl\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esyslog.ident\u003c/td\u003e\u003ctd class=\"v\"\u003ephp\u003c/td\u003e\u003ctd class=\"v\"\u003ephp\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eunserialize_callback_func\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eupload_max_filesize\u003c/td\u003e\u003ctd class=\"v\"\u003e2M\u003c/td\u003e\u003ctd class=\"v\"\u003e2M\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eupload_tmp_dir\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euser_dir\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euser_ini.cache_ttl\u003c/td\u003e\u003ctd class=\"v\"\u003e300\u003c/td\u003e\u003ctd class=\"v\"\u003e300\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euser_ini.filename\u003c/td\u003e\u003ctd class=\"v\"\u003e.user.ini\u003c/td\u003e\u003ctd class=\"v\"\u003e.user.ini\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003evariables_order\u003c/td\u003e\u003ctd class=\"v\"\u003eEGPCS\u003c/td\u003e\u003ctd class=\"v\"\u003eEGPCS\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003exmlrpc_error_number\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003exmlrpc_errors\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.assertions\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.detect_unicode\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.enable_gc\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.exception_ignore_args\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.exception_string_param_max_len\u003c/td\u003e\u003ctd class=\"v\"\u003e15\u003c/td\u003e\u003ctd class=\"v\"\u003e15\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.max_allowed_stack_size\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.multibyte\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.reserved_stack_size\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.script_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezend.signal_check\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_ctype\" href=\"#module_ctype\"\u003ectype\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ectype functions \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_curl\" href=\"#module_curl\"\u003ecurl\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ecURL support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ecURL Information \u003c/td\u003e\u003ctd class=\"v\"\u003e8.14.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAge \u003c/td\u003e\u003ctd class=\"v\"\u003e11 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFeatures \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAsynchDNS \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCharConv \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDebug \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGSS-Negotiate \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eIDN \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eIPv6 \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ekrb4 \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLargefile \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibz \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eNTLM \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eNTLMWB \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSPNEGO \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSSL \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSSPI \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTLS-SRP \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP2 \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGSSAPI \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eKERBEROS5 \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUNIX_SOCKETS \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePSL \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTPS_PROXY \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMULTI_SSL \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBROTLI \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eALTSVC \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP3 \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUNICODE \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZSTD \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHSTS \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGSASL \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eProtocols \u003c/td\u003e\u003ctd class=\"v\"\u003edict, file, ftp, ftps, gopher, gophers, http, https, imap, imaps, ldap, ldaps, mqtt, pop3, pop3s, rtmp, rtmpe, rtmps, rtmpt, rtmpte, rtmpts, rtsp, scp, sftp, smb, smbs, smtp, smtps, telnet, tftp, ws, wss \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHost \u003c/td\u003e\u003ctd class=\"v\"\u003ex86_64-pc-linux-gnu \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSSL Version \u003c/td\u003e\u003ctd class=\"v\"\u003eOpenSSL/3.5.4 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZLib Version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.3.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibSSH Version \u003c/td\u003e\u003ctd class=\"v\"\u003elibssh2/1.11.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ecurl.cainfo\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_date\" href=\"#module_date\"\u003edate\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate/time support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003etimelib version \u003c/td\u003e\u003ctd class=\"v\"\u003e2022.14 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e\u0026quot;Olson\u0026quot; Timezone Database Version \u003c/td\u003e\u003ctd class=\"v\"\u003e2025.2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTimezone Database \u003c/td\u003e\u003ctd class=\"v\"\u003einternal \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDefault timezone \u003c/td\u003e\u003ctd class=\"v\"\u003eUTC \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate.default_latitude\u003c/td\u003e\u003ctd class=\"v\"\u003e31.7667\u003c/td\u003e\u003ctd class=\"v\"\u003e31.7667\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate.default_longitude\u003c/td\u003e\u003ctd class=\"v\"\u003e35.2333\u003c/td\u003e\u003ctd class=\"v\"\u003e35.2333\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate.sunrise_zenith\u003c/td\u003e\u003ctd class=\"v\"\u003e90.833333\u003c/td\u003e\u003ctd class=\"v\"\u003e90.833333\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate.sunset_zenith\u003c/td\u003e\u003ctd class=\"v\"\u003e90.833333\u003c/td\u003e\u003ctd class=\"v\"\u003e90.833333\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edate.timezone\u003c/td\u003e\u003ctd class=\"v\"\u003eUTC\u003c/td\u003e\u003ctd class=\"v\"\u003eUTC\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_dom\" href=\"#module_dom\"\u003edom\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDOM/XML \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDOM/XML API Version \u003c/td\u003e\u003ctd class=\"v\"\u003e20031129 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibxml Version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.9.14 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTML Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXPath Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXPointer Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSchema Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRelaxNG Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_fileinfo\" href=\"#module_fileinfo\"\u003efileinfo\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efileinfo support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibmagic \u003c/td\u003e\u003ctd class=\"v\"\u003e5.46 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_filter\" href=\"#module_filter\"\u003efilter\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInput Validation and Filtering \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efilter.default\u003c/td\u003e\u003ctd class=\"v\"\u003eunsafe_raw\u003c/td\u003e\u003ctd class=\"v\"\u003eunsafe_raw\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efilter.default_flags\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_gd\" href=\"#module_gd\"\u003egd\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGD Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGD Version \u003c/td\u003e\u003ctd class=\"v\"\u003ebundled (2.1.0 compatible) \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFreeType Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFreeType Linkage \u003c/td\u003e\u003ctd class=\"v\"\u003ewith freetype \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFreeType Version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.13.3 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGIF Read Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGIF Create Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eJPEG Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibJPEG Version \u003c/td\u003e\u003ctd class=\"v\"\u003e6b \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePNG Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibPNG Version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.6.48 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eWBMP Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXBM Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBMP Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTGA Read Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003egd.jpeg_ignore_warning\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_hash\" href=\"#module_hash\"\u003ehash\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ehash support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHashing Engines \u003c/td\u003e\u003ctd class=\"v\"\u003emd2 md4 md5 sha1 sha224 sha256 sha384 sha512/224 sha512/256 sha512 sha3-224 sha3-256 sha3-384 sha3-512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru snefru256 gost gost-crypto adler32 crc32 crc32b crc32c fnv132 fnv1a32 fnv164 fnv1a64 joaat murmur3a murmur3c murmur3f xxh32 xxh64 xxh3 xxh128 haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMHASH support \u003c/td\u003e\u003ctd class=\"v\"\u003eEnabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMHASH API Version \u003c/td\u003e\u003ctd class=\"v\"\u003eEmulated Support \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_iconv\" href=\"#module_iconv\"\u003eiconv\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv implementation \u003c/td\u003e\u003ctd class=\"v\"\u003eglibc \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv library version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.41 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv.input_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv.internal_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eiconv.output_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_json\" href=\"#module_json\"\u003ejson\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ejson support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_lexbor\" href=\"#module_lexbor\"\u003elexbor\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLexbor support \u003c/td\u003e\u003ctd class=\"v\"\u003eactive \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLexbor version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.5.0 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_libxml\" href=\"#module_libxml\"\u003elibxml\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibXML support \u003c/td\u003e\u003ctd class=\"v\"\u003eactive \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibXML Compiled Version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.9.14 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibXML Loaded Version \u003c/td\u003e\u003ctd class=\"v\"\u003e20914 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibXML streams \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_mbstring\" href=\"#module_mbstring\"\u003embstring\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMultibyte Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMultibyte string engine \u003c/td\u003e\u003ctd class=\"v\"\u003elibmbfl \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHTTP input encoding translation \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibmbfl version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.3.2 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003embstring extension makes use of \"streamable kanji code filter and converter\", which is distributed under the GNU Lesser General Public License version 2.1.\u003c/th\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMultibyte (japanese) regex support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMultibyte regex (oniguruma) version \u003c/td\u003e\u003ctd class=\"v\"\u003e6.9.9 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.detect_order\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.encoding_translation\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.http_input\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.http_output\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.http_output_conv_mimetypes\u003c/td\u003e\u003ctd class=\"v\"\u003e^(text/|application/xhtml\\+xml)\u003c/td\u003e\u003ctd class=\"v\"\u003e^(text/|application/xhtml\\+xml)\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.internal_encoding\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.language\u003c/td\u003e\u003ctd class=\"v\"\u003eneutral\u003c/td\u003e\u003ctd class=\"v\"\u003eneutral\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.regex_retry_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e1000000\u003c/td\u003e\u003ctd class=\"v\"\u003e1000000\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.regex_stack_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e100000\u003c/td\u003e\u003ctd class=\"v\"\u003e100000\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.strict_detection\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003embstring.substitute_character\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_mysqli\" href=\"#module_mysqli\"\u003emysqli\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMysqlI Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eClient API library version \u003c/td\u003e\u003ctd class=\"v\"\u003emysqlnd 8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eActive Persistent Links \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInactive Persistent Links \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eActive Links \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.allow_local_infile\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.allow_persistent\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.default_host\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.default_port\u003c/td\u003e\u003ctd class=\"v\"\u003e3306\u003c/td\u003e\u003ctd class=\"v\"\u003e3306\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.default_pw\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.default_socket\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.default_user\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.local_infile_directory\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.max_links\u003c/td\u003e\u003ctd class=\"v\"\u003eUnlimited\u003c/td\u003e\u003ctd class=\"v\"\u003eUnlimited\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.max_persistent\u003c/td\u003e\u003ctd class=\"v\"\u003eUnlimited\u003c/td\u003e\u003ctd class=\"v\"\u003eUnlimited\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqli.rollback_on_cached_plink\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_mysqlnd\" href=\"#module_mysqlnd\"\u003emysqlnd\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003emysqlnd \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eVersion \u003c/td\u003e\u003ctd class=\"v\"\u003emysqlnd 8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCompression \u003c/td\u003e\u003ctd class=\"v\"\u003esupported \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ecore SSL \u003c/td\u003e\u003ctd class=\"v\"\u003esupported \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eextended SSL \u003c/td\u003e\u003ctd class=\"v\"\u003esupported \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCommand buffer size \u003c/td\u003e\u003ctd class=\"v\"\u003e4096 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRead buffer size \u003c/td\u003e\u003ctd class=\"v\"\u003e32768 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRead timeout \u003c/td\u003e\u003ctd class=\"v\"\u003e86400 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCollecting statistics \u003c/td\u003e\u003ctd class=\"v\"\u003eYes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCollecting memory statistics \u003c/td\u003e\u003ctd class=\"v\"\u003eNo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTracing \u003c/td\u003e\u003ctd class=\"v\"\u003en/a \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLoaded plugins \u003c/td\u003e\u003ctd class=\"v\"\u003emysqlnd,debug_trace,auth_plugin_mysql_native_password,auth_plugin_mysql_clear_password,auth_plugin_caching_sha2_password,auth_plugin_sha256_password \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPI Extensions \u003c/td\u003e\u003ctd class=\"v\"\u003emysqli,pdo_mysql \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_openssl\" href=\"#module_openssl\"\u003eopenssl\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpenSSL support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpenSSL Library Version \u003c/td\u003e\u003ctd class=\"v\"\u003eOpenSSL 3.5.4 30 Sep 2025 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpenSSL Header Version \u003c/td\u003e\u003ctd class=\"v\"\u003eOpenSSL 3.5.4 30 Sep 2025 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpenssl default config \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/lib/ssl/openssl.cnf \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopenssl.cafile\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopenssl.capath\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopenssl.libctx\u003c/td\u003e\u003ctd class=\"v\"\u003ecustom\u003c/td\u003e\u003ctd class=\"v\"\u003ecustom\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_pcre\" href=\"#module_pcre\"\u003epcre\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePCRE (Perl Compatible Regular Expressions) Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePCRE Library Version \u003c/td\u003e\u003ctd class=\"v\"\u003e10.44 2024-06-07 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePCRE Unicode Version \u003c/td\u003e\u003ctd class=\"v\"\u003e15.0.0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePCRE JIT Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePCRE JIT Target \u003c/td\u003e\u003ctd class=\"v\"\u003ex86 64bit (little endian + unaligned) \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epcre.backtrack_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e1000000\u003c/td\u003e\u003ctd class=\"v\"\u003e1000000\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epcre.jit\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epcre.recursion_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e100000\u003c/td\u003e\u003ctd class=\"v\"\u003e100000\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_pdo\" href=\"#module_pdo\"\u003ePDO\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePDO support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePDO drivers \u003c/td\u003e\u003ctd class=\"v\"\u003esqlite, mysql \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_pdo_mysql\" href=\"#module_pdo_mysql\"\u003epdo_mysql\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePDO Driver for MySQL \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eClient API version \u003c/td\u003e\u003ctd class=\"v\"\u003emysqlnd 8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epdo_mysql.default_socket\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_pdo_sqlite\" href=\"#module_pdo_sqlite\"\u003epdo_sqlite\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePDO Driver for SQLite 3.x \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSQLite Library \u003c/td\u003e\u003ctd class=\"v\"\u003e3.46.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_phar\" href=\"#module_phar\"\u003ePhar\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePhar: PHP Archive support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePhar API version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.1.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePhar-based phar archives \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTar-based phar archives \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZIP-based phar archives \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003egzip compression \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ebzip2 compression \u003c/td\u003e\u003ctd class=\"v\"\u003edisabled (install ext/bz2) \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eNative OpenSSL support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"v\"\u003e\u003ctd\u003e\nPhar based on pear/PHP_Archive, original concept by Davey Shafik.\u003cbr /\u003ePhar fully realized by Gregory Beaver and Marcus Boerger.\u003cbr /\u003ePortions of tar implementation Copyright (c) 2003-2009 Tim Kientzle.\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ephar.cache_list\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ephar.readonly\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ephar.require_hash\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_posix\" href=\"#module_posix\"\u003eposix\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePOSIX support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_random\" href=\"#module_random\"\u003erandom\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eVersion \u003c/td\u003e\u003ctd class=\"v\"\u003e8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_reflection\" href=\"#module_reflection\"\u003eReflection\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eReflection \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_session\" href=\"#module_session\"\u003esession\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSession Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRegistered save handlers \u003c/td\u003e\u003ctd class=\"v\"\u003efiles user \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eRegistered serializer handlers \u003c/td\u003e\u003ctd class=\"v\"\u003ephp_serialize php php_binary \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.auto_start\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cache_expire\u003c/td\u003e\u003ctd class=\"v\"\u003e180\u003c/td\u003e\u003ctd class=\"v\"\u003e180\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cache_limiter\u003c/td\u003e\u003ctd class=\"v\"\u003enocache\u003c/td\u003e\u003ctd class=\"v\"\u003enocache\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_domain\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_httponly\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_lifetime\u003c/td\u003e\u003ctd class=\"v\"\u003e86400\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_partitioned\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_path\u003c/td\u003e\u003ctd class=\"v\"\u003e/\u003c/td\u003e\u003ctd class=\"v\"\u003e/\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_samesite\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.cookie_secure\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.gc_divisor\u003c/td\u003e\u003ctd class=\"v\"\u003e100\u003c/td\u003e\u003ctd class=\"v\"\u003e100\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.gc_maxlifetime\u003c/td\u003e\u003ctd class=\"v\"\u003e1440\u003c/td\u003e\u003ctd class=\"v\"\u003e1440\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.gc_probability\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.lazy_write\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.name\u003c/td\u003e\u003ctd class=\"v\"\u003ePHPSESSID\u003c/td\u003e\u003ctd class=\"v\"\u003ePHPSESSID\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.referer_check\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.save_handler\u003c/td\u003e\u003ctd class=\"v\"\u003efiles\u003c/td\u003e\u003ctd class=\"v\"\u003efiles\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.save_path\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.serialize_handler\u003c/td\u003e\u003ctd class=\"v\"\u003ephp\u003c/td\u003e\u003ctd class=\"v\"\u003ephp\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.sid_bits_per_character\u003c/td\u003e\u003ctd class=\"v\"\u003e4\u003c/td\u003e\u003ctd class=\"v\"\u003e4\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.sid_length\u003c/td\u003e\u003ctd class=\"v\"\u003e32\u003c/td\u003e\u003ctd class=\"v\"\u003e32\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.cleanup\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.enabled\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.freq\u003c/td\u003e\u003ctd class=\"v\"\u003e1%\u003c/td\u003e\u003ctd class=\"v\"\u003e1%\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.min_freq\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.name\u003c/td\u003e\u003ctd class=\"v\"\u003ePHP_SESSION_UPLOAD_PROGRESS\u003c/td\u003e\u003ctd class=\"v\"\u003ePHP_SESSION_UPLOAD_PROGRESS\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.upload_progress.prefix\u003c/td\u003e\u003ctd class=\"v\"\u003eupload_progress_\u003c/td\u003e\u003ctd class=\"v\"\u003eupload_progress_\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.use_cookies\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.use_only_cookies\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.use_strict_mode\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.use_trans_sid\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_simplexml\" href=\"#module_simplexml\"\u003eSimpleXML\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSimpleXML support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSchema support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_sodium\" href=\"#module_sodium\"\u003esodium\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esodium support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibsodium headers version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.0.18 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibsodium library version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.0.18 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_spl\" href=\"#module_spl\"\u003eSPL\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSPL support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInterfaces \u003c/td\u003e\u003ctd class=\"v\"\u003eOuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eClasses \u003c/td\u003e\u003ctd class=\"v\"\u003eAppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, CallbackFilterIterator, DirectoryIterator, DomainException, EmptyIterator, FilesystemIterator, FilterIterator, GlobIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, MultipleIterator, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveCallbackFilterIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RecursiveTreeIterator, RegexIterator, RuntimeException, SplDoublyLinkedList, SplFileInfo, SplFileObject, SplFixedArray, SplHeap, SplMinHeap, SplMaxHeap, SplObjectStorage, SplPriorityQueue, SplQueue, SplStack, SplTempFileObject, UnderflowException, UnexpectedValueException \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_sqlite3\" href=\"#module_sqlite3\"\u003esqlite3\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSQLite3 support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSQLite Library \u003c/td\u003e\u003ctd class=\"v\"\u003e3.46.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esqlite3.defensive\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esqlite3.extension_dir\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_standard\" href=\"#module_standard\"\u003estandard\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDynamic Library Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePath to sendmail \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/sbin/sendmail -t -i \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eassert.active\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eassert.bail\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eassert.callback\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eassert.exception\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eassert.warning\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eauto_detect_line_endings\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003edefault_socket_timeout\u003c/td\u003e\u003ctd class=\"v\"\u003e60\u003c/td\u003e\u003ctd class=\"v\"\u003e60\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efrom\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.trans_sid_hosts\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003esession.trans_sid_tags\u003c/td\u003e\u003ctd class=\"v\"\u003ea=href,area=href,frame=src,form=\u003c/td\u003e\u003ctd class=\"v\"\u003ea=href,area=href,frame=src,form=\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eunserialize_max_depth\u003c/td\u003e\u003ctd class=\"v\"\u003e4096\u003c/td\u003e\u003ctd class=\"v\"\u003e4096\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eurl_rewriter.hosts\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eurl_rewriter.tags\u003c/td\u003e\u003ctd class=\"v\"\u003eform=\u003c/td\u003e\u003ctd class=\"v\"\u003eform=\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euser_agent\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_tokenizer\" href=\"#module_tokenizer\"\u003etokenizer\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eTokenizer Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_uri\" href=\"#module_uri\"\u003euri\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eURI support \u003c/td\u003e\u003ctd class=\"v\"\u003eactive \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euriparser bundled version \u003c/td\u003e\u003ctd class=\"v\"\u003e0.9.9 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_xml\" href=\"#module_xml\"\u003exml\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXML Support \u003c/td\u003e\u003ctd class=\"v\"\u003eactive \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXML Namespace Support \u003c/td\u003e\u003ctd class=\"v\"\u003eactive \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elibxml2 Version \u003c/td\u003e\u003ctd class=\"v\"\u003e2.9.14 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_xmlreader\" href=\"#module_xmlreader\"\u003exmlreader\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXMLReader \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_xmlwriter\" href=\"#module_xmlwriter\"\u003exmlwriter\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXMLWriter \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_zend+opcache\" href=\"#module_zend+opcache\"\u003eZend OPcache\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpcode Caching \u003c/td\u003e\u003ctd class=\"v\"\u003eUp and Running \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOptimization \u003c/td\u003e\u003ctd class=\"v\"\u003eEnabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSHM Cache \u003c/td\u003e\u003ctd class=\"v\"\u003eEnabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFile Cache \u003c/td\u003e\u003ctd class=\"v\"\u003eDisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eJIT \u003c/td\u003e\u003ctd class=\"v\"\u003eDisabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eStartup \u003c/td\u003e\u003ctd class=\"v\"\u003eOK \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eShared memory model \u003c/td\u003e\u003ctd class=\"v\"\u003emmap \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCache hits \u003c/td\u003e\u003ctd class=\"v\"\u003e10912 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCache misses \u003c/td\u003e\u003ctd class=\"v\"\u003e6 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUsed memory \u003c/td\u003e\u003ctd class=\"v\"\u003e9251744 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFree memory \u003c/td\u003e\u003ctd class=\"v\"\u003e124965984 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eWasted memory \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInterned Strings Used memory \u003c/td\u003e\u003ctd class=\"v\"\u003e2442736 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInterned Strings Free memory \u003c/td\u003e\u003ctd class=\"v\"\u003e5945872 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCached scripts \u003c/td\u003e\u003ctd class=\"v\"\u003e6 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCached keys \u003c/td\u003e\u003ctd class=\"v\"\u003e8 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMax keys \u003c/td\u003e\u003ctd class=\"v\"\u003e16229 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOOM restarts \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHash keys restarts \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eManual restarts \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eStart time \u003c/td\u003e\u003ctd class=\"v\"\u003e2026-01-12T13:17:03+0000 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLast restart time \u003c/td\u003e\u003ctd class=\"v\"\u003enone \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLast force restart time \u003c/td\u003e\u003ctd class=\"v\"\u003enone \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.blacklist_filename\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.dups_fix\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.enable\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.enable_cli\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.enable_file_override\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.error_log\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.file_cache\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.file_cache_consistency_checks\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.file_cache_only\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.file_cache_read_only\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.file_update_protection\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.force_restart_timeout\u003c/td\u003e\u003ctd class=\"v\"\u003e180\u003c/td\u003e\u003ctd class=\"v\"\u003e180\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.huge_code_pages\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.interned_strings_buffer\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit\u003c/td\u003e\u003ctd class=\"v\"\u003edisable\u003c/td\u003e\u003ctd class=\"v\"\u003edisable\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_bisect_limit\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_blacklist_root_trace\u003c/td\u003e\u003ctd class=\"v\"\u003e16\u003c/td\u003e\u003ctd class=\"v\"\u003e16\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_blacklist_side_trace\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_buffer_size\u003c/td\u003e\u003ctd class=\"v\"\u003e64M\u003c/td\u003e\u003ctd class=\"v\"\u003e64M\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_debug\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_hot_func\u003c/td\u003e\u003ctd class=\"v\"\u003e127\u003c/td\u003e\u003ctd class=\"v\"\u003e127\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_hot_loop\u003c/td\u003e\u003ctd class=\"v\"\u003e61\u003c/td\u003e\u003ctd class=\"v\"\u003e61\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_hot_return\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_hot_side_exit\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_exit_counters\u003c/td\u003e\u003ctd class=\"v\"\u003e8192\u003c/td\u003e\u003ctd class=\"v\"\u003e8192\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_loop_unrolls\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003ctd class=\"v\"\u003e8\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_polymorphic_calls\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_recursive_calls\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_recursive_returns\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_root_traces\u003c/td\u003e\u003ctd class=\"v\"\u003e1024\u003c/td\u003e\u003ctd class=\"v\"\u003e1024\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_side_traces\u003c/td\u003e\u003ctd class=\"v\"\u003e128\u003c/td\u003e\u003ctd class=\"v\"\u003e128\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_max_trace_length\u003c/td\u003e\u003ctd class=\"v\"\u003e1024\u003c/td\u003e\u003ctd class=\"v\"\u003e1024\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.jit_prof_threshold\u003c/td\u003e\u003ctd class=\"v\"\u003e0.005\u003c/td\u003e\u003ctd class=\"v\"\u003e0.005\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.lockfile_path\u003c/td\u003e\u003ctd class=\"v\"\u003e/tmp\u003c/td\u003e\u003ctd class=\"v\"\u003e/tmp\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.log_verbosity_level\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003ctd class=\"v\"\u003e1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.max_accelerated_files\u003c/td\u003e\u003ctd class=\"v\"\u003e10000\u003c/td\u003e\u003ctd class=\"v\"\u003e10000\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.max_file_size\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.max_wasted_percentage\u003c/td\u003e\u003ctd class=\"v\"\u003e5\u003c/td\u003e\u003ctd class=\"v\"\u003e5\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.memory_consumption\u003c/td\u003e\u003ctd class=\"v\"\u003e128\u003c/td\u003e\u003ctd class=\"v\"\u003e128\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.opt_debug_level\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.optimization_level\u003c/td\u003e\u003ctd class=\"v\"\u003e0x7FFEBFFF\u003c/td\u003e\u003ctd class=\"v\"\u003e0x7FFEBFFF\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.preferred_memory_model\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.preload\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.preload_user\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.protect_memory\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.record_warnings\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.restrict_api\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.revalidate_freq\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003ctd class=\"v\"\u003e2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.revalidate_path\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.save_comments\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.use_cwd\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.validate_permission\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.validate_root\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eopcache.validate_timestamps\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003ctd class=\"v\"\u003eOn\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003e\u003ca name=\"module_zlib\" href=\"#module_zlib\"\u003ezlib\u003c/a\u003e\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZLib Support \u003c/td\u003e\u003ctd class=\"v\"\u003eenabled \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eStream Wrapper \u003c/td\u003e\u003ctd class=\"v\"\u003ecompress.zlib:// \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eStream Filter \u003c/td\u003e\u003ctd class=\"v\"\u003ezlib.inflate, zlib.deflate \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCompiled Version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.3.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLinked Version \u003c/td\u003e\u003ctd class=\"v\"\u003e1.3.1 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eDirective\u003c/th\u003e\u003cth\u003eLocal Value\u003c/th\u003e\u003cth\u003eMaster Value\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezlib.output_compression\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003ctd class=\"v\"\u003eOff\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezlib.output_compression_level\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003ctd class=\"v\"\u003e-1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ezlib.output_handler\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003eAdditional Modules\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eModule Name\u003c/th\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003eEnvironment\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eVariable\u003c/th\u003e\u003cth\u003eValue\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eHOSTNAME \u003c/td\u003e\u003ctd class=\"v\"\u003e7b31b6af550e \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_VERSION \u003c/td\u003e\u003ctd class=\"v\"\u003e8.5.1 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_CONFDIR \u003c/td\u003e\u003ctd class=\"v\"\u003e/etc/apache2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_INI_DIR \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/etc/php \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGPG_KEYS \u003c/td\u003e\u003ctd class=\"v\"\u003e1198C0117593497A5EC5C199286AF1F9897469DC 49D9AF6BC72A80D6691719C8AA23F5BE9C7097D4 D95C03BC702BE9515344AE3374E44BC9067701A5 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_LDFLAGS \u003c/td\u003e\u003ctd class=\"v\"\u003e-Wl,-O1 -pie \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePWD \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_LOG_DIR \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/log/apache2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLANG \u003c/td\u003e\u003ctd class=\"v\"\u003eC \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_SHA256 \u003c/td\u003e\u003ctd class=\"v\"\u003e3f5bf99ce81201f526d25e288eddb2cfa111d068950d1e9a869530054ff98815 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_PID_FILE \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/run/apache2/apache2.pid \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHPIZE_DEPS \u003c/td\u003e\u003ctd class=\"v\"\u003eautoconf \t\tdpkg-dev \t\tfile \t\tg++ \t\tgcc \t\tlibc-dev \t\tmake \t\tpkg-config \t\tre2c \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_URL \u003c/td\u003e\u003ctd class=\"v\"\u003ehttps://www.php.net/distributions/php-8.5.1.tar.xz \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_RUN_GROUP \u003c/td\u003e\u003ctd class=\"v\"\u003ewww-data \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_LOCK_DIR \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/lock/apache2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSHLVL \u003c/td\u003e\u003ctd class=\"v\"\u003e0 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_CFLAGS \u003c/td\u003e\u003ctd class=\"v\"\u003e-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_RUN_DIR \u003c/td\u003e\u003ctd class=\"v\"\u003e/var/run/apache2 \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_ENVVARS \u003c/td\u003e\u003ctd class=\"v\"\u003e/etc/apache2/envvars \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDB_SERVER \u003c/td\u003e\u003ctd class=\"v\"\u003edb \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAPACHE_RUN_USER \u003c/td\u003e\u003ctd class=\"v\"\u003ewww-data \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePATH \u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_ASC_URL \u003c/td\u003e\u003ctd class=\"v\"\u003ehttps://www.php.net/distributions/php-8.5.1.tar.xz.asc \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP_CPPFLAGS \u003c/td\u003e\u003ctd class=\"v\"\u003e-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003ePHP Variables\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eVariable\u003c/th\u003e\u003cth\u003eValue\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_COOKIE['security']\u003c/td\u003e\u003ctd class=\"v\"\u003elow\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_HOST']\u003c/td\u003e\u003ctd class=\"v\"\u003edvwa_dvwa_1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_USER_AGENT']\u003c/td\u003e\u003ctd class=\"v\"\u003eMozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.17\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_ACCEPT']\u003c/td\u003e\u003ctd class=\"v\"\u003e*/*\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_ACCEPT_LANGUAGE']\u003c/td\u003e\u003ctd class=\"v\"\u003een\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_ACCEPT_ENCODING']\u003c/td\u003e\u003ctd class=\"v\"\u003egzip\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['HTTP_CONNECTION']\u003c/td\u003e\u003ctd class=\"v\"\u003eclose\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['PATH']\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_SIGNATURE']\u003c/td\u003e\u003ctd class=\"v\"\u003e\u0026lt;address\u0026gt;Apache/2.4.65 (Debian) Server at dvwa_dvwa_1 Port 80\u0026lt;/address\u0026gt;\n\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_SOFTWARE']\u003c/td\u003e\u003ctd class=\"v\"\u003eApache/2.4.65 (Debian)\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_NAME']\u003c/td\u003e\u003ctd class=\"v\"\u003edvwa_dvwa_1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_ADDR']\u003c/td\u003e\u003ctd class=\"v\"\u003e172.18.0.3\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_PORT']\u003c/td\u003e\u003ctd class=\"v\"\u003e80\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REMOTE_ADDR']\u003c/td\u003e\u003ctd class=\"v\"\u003e172.18.0.4\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['DOCUMENT_ROOT']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REQUEST_SCHEME']\u003c/td\u003e\u003ctd class=\"v\"\u003ehttp\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['CONTEXT_PREFIX']\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['CONTEXT_DOCUMENT_ROOT']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_ADMIN']\u003c/td\u003e\u003ctd class=\"v\"\u003ewebmaster@localhost\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SCRIPT_FILENAME']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html/phpinfo.php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REMOTE_PORT']\u003c/td\u003e\u003ctd class=\"v\"\u003e48546\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['GATEWAY_INTERFACE']\u003c/td\u003e\u003ctd class=\"v\"\u003eCGI/1.1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SERVER_PROTOCOL']\u003c/td\u003e\u003ctd class=\"v\"\u003eHTTP/1.1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REQUEST_METHOD']\u003c/td\u003e\u003ctd class=\"v\"\u003eGET\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['QUERY_STRING']\u003c/td\u003e\u003ctd class=\"v\"\u003e\u003ci\u003eno value\u003c/i\u003e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REQUEST_URI']\u003c/td\u003e\u003ctd class=\"v\"\u003e//phpinfo.php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['SCRIPT_NAME']\u003c/td\u003e\u003ctd class=\"v\"\u003e/phpinfo.php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['PHP_SELF']\u003c/td\u003e\u003ctd class=\"v\"\u003e/phpinfo.php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REQUEST_TIME_FLOAT']\u003c/td\u003e\u003ctd class=\"v\"\u003e1768225621.7152\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_SERVER['REQUEST_TIME']\u003c/td\u003e\u003ctd class=\"v\"\u003e1768225621\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['HOSTNAME']\u003c/td\u003e\u003ctd class=\"v\"\u003e7b31b6af550e\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_VERSION']\u003c/td\u003e\u003ctd class=\"v\"\u003e8.5.1\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_CONFDIR']\u003c/td\u003e\u003ctd class=\"v\"\u003e/etc/apache2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_INI_DIR']\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/etc/php\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['GPG_KEYS']\u003c/td\u003e\u003ctd class=\"v\"\u003e1198C0117593497A5EC5C199286AF1F9897469DC 49D9AF6BC72A80D6691719C8AA23F5BE9C7097D4 D95C03BC702BE9515344AE3374E44BC9067701A5\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_LDFLAGS']\u003c/td\u003e\u003ctd class=\"v\"\u003e-Wl,-O1 -pie\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PWD']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/www/html\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_LOG_DIR']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/log/apache2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['LANG']\u003c/td\u003e\u003ctd class=\"v\"\u003eC\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_SHA256']\u003c/td\u003e\u003ctd class=\"v\"\u003e3f5bf99ce81201f526d25e288eddb2cfa111d068950d1e9a869530054ff98815\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_PID_FILE']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/run/apache2/apache2.pid\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHPIZE_DEPS']\u003c/td\u003e\u003ctd class=\"v\"\u003eautoconf \t\tdpkg-dev \t\tfile \t\tg++ \t\tgcc \t\tlibc-dev \t\tmake \t\tpkg-config \t\tre2c\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_URL']\u003c/td\u003e\u003ctd class=\"v\"\u003ehttps://www.php.net/distributions/php-8.5.1.tar.xz\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_RUN_GROUP']\u003c/td\u003e\u003ctd class=\"v\"\u003ewww-data\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_LOCK_DIR']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/lock/apache2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['SHLVL']\u003c/td\u003e\u003ctd class=\"v\"\u003e0\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_CFLAGS']\u003c/td\u003e\u003ctd class=\"v\"\u003e-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_RUN_DIR']\u003c/td\u003e\u003ctd class=\"v\"\u003e/var/run/apache2\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_ENVVARS']\u003c/td\u003e\u003ctd class=\"v\"\u003e/etc/apache2/envvars\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['DB_SERVER']\u003c/td\u003e\u003ctd class=\"v\"\u003edb\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['APACHE_RUN_USER']\u003c/td\u003e\u003ctd class=\"v\"\u003ewww-data\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PATH']\u003c/td\u003e\u003ctd class=\"v\"\u003e/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_ASC_URL']\u003c/td\u003e\u003ctd class=\"v\"\u003ehttps://www.php.net/distributions/php-8.5.1.tar.xz.asc\u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003e$_ENV['PHP_CPPFLAGS']\u003c/td\u003e\u003ctd class=\"v\"\u003e-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003chr /\u003e\n\u003ch1\u003ePHP Credits\u003c/h1\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003ePHP Group\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eThies C. Arntzen, Stig Bakken, Shane Caraveo, Andi Gutmans, Rasmus Lerdorf, Sam Ruby, Sascha Schumann, Zeev Suraski, Jim Winstead, Andrei Zmievski \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eLanguage Design \u0026amp; Concept\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAndi Gutmans, Rasmus Lerdorf, Zeev Suraski, Marcus Boerger \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003ePHP Authors\u003c/th\u003e\u003c/tr\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eContribution\u003c/th\u003e\u003cth\u003eAuthors\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZend Scripting Language Engine \u003c/td\u003e\u003ctd class=\"v\"\u003eAndi Gutmans, Zeev Suraski, Stanislav Malyshev, Marcus Boerger, Dmitry Stogov, Xinchen Hui, Nikita Popov \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eExtension Module API \u003c/td\u003e\u003ctd class=\"v\"\u003eAndi Gutmans, Zeev Suraski, Andrei Zmievski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUNIX Build and Modularization \u003c/td\u003e\u003ctd class=\"v\"\u003eStig Bakken, Sascha Schumann, Jani Taskinen, Peter Kokot \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eWindows Support \u003c/td\u003e\u003ctd class=\"v\"\u003eShane Caraveo, Zeev Suraski, Wez Furlong, Pierre-Alain Joye, Anatol Belski, Kalle Sommer Nielsen \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eServer API (SAPI) Abstraction Layer \u003c/td\u003e\u003ctd class=\"v\"\u003eAndi Gutmans, Shane Caraveo, Zeev Suraski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eStreams Abstraction Layer \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong, Sara Golemon \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Data Objects Layer \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong, Marcus Boerger, Sterling Hughes, George Schlossnagle, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOutput Handler \u003c/td\u003e\u003ctd class=\"v\"\u003eZeev Suraski, Thies C. Arntzen, Marcus Boerger, Michael Wallner \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eConsistent 64 bit support \u003c/td\u003e\u003ctd class=\"v\"\u003eAnthony Ferrara, Anatol Belski \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003eSAPI Modules\u003c/th\u003e\u003c/tr\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eContribution\u003c/th\u003e\u003cth\u003eAuthors\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eApache 2 Handler \u003c/td\u003e\u003ctd class=\"v\"\u003eIan Holsman, Justin Erenkrantz (based on Apache 2 Filter code) \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCGI / FastCGI \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Stig Bakken, Shane Caraveo, Dmitry Stogov \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCLI \u003c/td\u003e\u003ctd class=\"v\"\u003eEdin Kadribasic, Marcus Boerger, Johannes Schlueter, Moriyoshi Koizumi, Xinchen Hui \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eEmbed \u003c/td\u003e\u003ctd class=\"v\"\u003eEdin Kadribasic \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFastCGI Process Manager \u003c/td\u003e\u003ctd class=\"v\"\u003eAndrei Nigmatulin, dreamcat4, Antony Dovgal, Jerome Loyet \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003elitespeed \u003c/td\u003e\u003ctd class=\"v\"\u003eGeorge Wang \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ephpdbg \u003c/td\u003e\u003ctd class=\"v\"\u003eFelipe Pena, Joe Watkins, Bob Weinand \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003eModule Authors\u003c/th\u003e\u003c/tr\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003eModule\u003c/th\u003e\u003cth\u003eAuthors\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBC Math \u003c/td\u003e\u003ctd class=\"v\"\u003eAndi Gutmans \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eBzip2 \u003c/td\u003e\u003ctd class=\"v\"\u003eSterling Hughes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCalendar \u003c/td\u003e\u003ctd class=\"v\"\u003eShane Caraveo, Colin Viebrock, Hartmut Holzgraefe, Wez Furlong \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eCOM and .Net \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ectype \u003c/td\u003e\u003ctd class=\"v\"\u003eHartmut Holzgraefe \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ecURL \u003c/td\u003e\u003ctd class=\"v\"\u003eSterling Hughes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDate/Time Support \u003c/td\u003e\u003ctd class=\"v\"\u003eDerick Rethans \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDB-LIB (MS SQL, Sybase) \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong, Frank M. Kromann, Adam Baratz \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDBA \u003c/td\u003e\u003ctd class=\"v\"\u003eSascha Schumann, Marcus Boerger \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eDOM \u003c/td\u003e\u003ctd class=\"v\"\u003eChristian Stocker, Rob Richards, Marcus Boerger, Niels Dossche \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eenchant \u003c/td\u003e\u003ctd class=\"v\"\u003ePierre-Alain Joye, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eEXIF \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Marcus Boerger \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFFI \u003c/td\u003e\u003ctd class=\"v\"\u003eDmitry Stogov \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003efileinfo \u003c/td\u003e\u003ctd class=\"v\"\u003eIlia Alshanetsky, Pierre Alain Joye, Scott MacVicar, Derick Rethans, Anatol Belski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFirebird driver for PDO \u003c/td\u003e\u003ctd class=\"v\"\u003eArd Biesheuvel \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eFTP \u003c/td\u003e\u003ctd class=\"v\"\u003eStefan Esser, Andrew Skalski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGD imaging \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Stig Bakken, Jim Winstead, Jouni Ahto, Ilia Alshanetsky, Pierre-Alain Joye, Marcus Boerger, Mark Randall \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGetText \u003c/td\u003e\u003ctd class=\"v\"\u003eAlex Plotnick \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eGNU GMP support \u003c/td\u003e\u003ctd class=\"v\"\u003eStanislav Malyshev \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eIconv \u003c/td\u003e\u003ctd class=\"v\"\u003eRui Hirokawa, Stig Bakken, Moriyoshi Koizumi \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInput Filter \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Derick Rethans, Pierre-Alain Joye, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eInternationalization \u003c/td\u003e\u003ctd class=\"v\"\u003eEd Batutis, Vladimir Iordanov, Dmitry Lakhtyuk, Stanislav Malyshev, Vadim Savchuk, Kirti Velankar \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eJSON \u003c/td\u003e\u003ctd class=\"v\"\u003eJakub Zelenka, Omar Kilani, Scott MacVicar \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLDAP \u003c/td\u003e\u003ctd class=\"v\"\u003eAmitay Isaacs, Eric Warnke, Rasmus Lerdorf, Gerrit Thomson, Stig Venaas \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eLIBXML \u003c/td\u003e\u003ctd class=\"v\"\u003eChristian Stocker, Rob Richards, Marcus Boerger, Wez Furlong, Shane Caraveo \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMultibyte String Functions \u003c/td\u003e\u003ctd class=\"v\"\u003eTsukada Takuya, Rui Hirokawa \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMySQL driver for PDO \u003c/td\u003e\u003ctd class=\"v\"\u003eGeorge Schlossnagle, Wez Furlong, Ilia Alshanetsky, Johannes Schlueter \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMySQLi \u003c/td\u003e\u003ctd class=\"v\"\u003eZak Greant, Georg Richter, Andrey Hristov, Ulf Wendel \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eMySQLnd \u003c/td\u003e\u003ctd class=\"v\"\u003eAndrey Hristov, Ulf Wendel, Georg Richter, Johannes Schlüter \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eODBC driver for PDO \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eODBC \u003c/td\u003e\u003ctd class=\"v\"\u003eStig Bakken, Andreas Karajannis, Frank M. Kromann, Daniel R. Kalowsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpcache \u003c/td\u003e\u003ctd class=\"v\"\u003eAndi Gutmans, Zeev Suraski, Stanislav Malyshev, Dmitry Stogov, Xinchen Hui \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOpenSSL \u003c/td\u003e\u003ctd class=\"v\"\u003eStig Venaas, Wez Furlong, Sascha Kettler, Scott MacVicar, Eliot Lear \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003epcntl \u003c/td\u003e\u003ctd class=\"v\"\u003eJason Greene, Arnaud Le Blanc \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePerl Compatible Regexps \u003c/td\u003e\u003ctd class=\"v\"\u003eAndrei Zmievski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Archive \u003c/td\u003e\u003ctd class=\"v\"\u003eGregory Beaver, Marcus Boerger \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Data Objects \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong, Marcus Boerger, Sterling Hughes, George Schlossnagle, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP hash \u003c/td\u003e\u003ctd class=\"v\"\u003eSara Golemon, Rasmus Lerdorf, Stefan Esser, Michael Wallner, Scott MacVicar \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePosix \u003c/td\u003e\u003ctd class=\"v\"\u003eKristian Koehntopp \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePostgreSQL driver for PDO \u003c/td\u003e\u003ctd class=\"v\"\u003eEdin Kadribasic, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePostgreSQL \u003c/td\u003e\u003ctd class=\"v\"\u003eJouni Ahto, Zeev Suraski, Yasuo Ohgaki, Chris Kings-Lynne \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003erandom \u003c/td\u003e\u003ctd class=\"v\"\u003eGo Kudo, Tim Düsterhus, Guilliam Xavier, Christoph M. Becker, Jakub Zelenka, Bob Weinand, Máté Kocsis, and Original RNG implementators \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eReadline \u003c/td\u003e\u003ctd class=\"v\"\u003eThies C. Arntzen \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eReflection \u003c/td\u003e\u003ctd class=\"v\"\u003eMarcus Boerger, Timm Friebe, George Schlossnagle, Andrei Zmievski, Johannes Schlueter \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSessions \u003c/td\u003e\u003ctd class=\"v\"\u003eSascha Schumann, Andrei Zmievski \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eShared Memory Operations \u003c/td\u003e\u003ctd class=\"v\"\u003eSlava Poliakov, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSimpleXML \u003c/td\u003e\u003ctd class=\"v\"\u003eSterling Hughes, Marcus Boerger, Rob Richards \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSNMP \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Harrie Hazewinkel, Mike Jackson, Steven Lawrance, Johann Hanne, Boris Lytochkin \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSOAP \u003c/td\u003e\u003ctd class=\"v\"\u003eBrad Lafountain, Shane Caraveo, Dmitry Stogov \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSockets \u003c/td\u003e\u003ctd class=\"v\"\u003eChris Vandomelen, Sterling Hughes, Daniel Beulshausen, Jason Greene \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSodium \u003c/td\u003e\u003ctd class=\"v\"\u003eFrank Denis \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSPL \u003c/td\u003e\u003ctd class=\"v\"\u003eMarcus Boerger, Etienne Kneuss \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSQLite 3.x driver for PDO \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSQLite3 \u003c/td\u003e\u003ctd class=\"v\"\u003eScott MacVicar, Ilia Alshanetsky, Brad Dewar \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSystem V Message based IPC \u003c/td\u003e\u003ctd class=\"v\"\u003eWez Furlong \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSystem V Semaphores \u003c/td\u003e\u003ctd class=\"v\"\u003eTom May \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eSystem V Shared Memory \u003c/td\u003e\u003ctd class=\"v\"\u003eChristian Cartus \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003etidy \u003c/td\u003e\u003ctd class=\"v\"\u003eJohn Coggeshall, Ilia Alshanetsky \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003etokenizer \u003c/td\u003e\u003ctd class=\"v\"\u003eAndrei Zmievski, Johannes Schlueter \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003euri \u003c/td\u003e\u003ctd class=\"v\"\u003eMáté Kocsis, Tim Düsterhus, Ignace Nyamagana Butera, Arnaud Le Blanc, Dennis Snell, Niels Dossche, Nicolas Grekas \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXML \u003c/td\u003e\u003ctd class=\"v\"\u003eStig Bakken, Thies C. Arntzen, Sterling Hughes \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXMLReader \u003c/td\u003e\u003ctd class=\"v\"\u003eRob Richards \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXMLWriter \u003c/td\u003e\u003ctd class=\"v\"\u003eRob Richards, Pierre-Alain Joye \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eXSL \u003c/td\u003e\u003ctd class=\"v\"\u003eChristian Stocker, Rob Richards \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZip \u003c/td\u003e\u003ctd class=\"v\"\u003ePierre-Alain Joye, Remi Collet \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eZlib \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Stefan Roehrich, Zeev Suraski, Jade Nicoletti, Michael Wallner \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003ePHP Documentation\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eAuthors \u003c/td\u003e\u003ctd class=\"v\"\u003eMehdi Achour, Friedhelm Betz, Antony Dovgal, Nuno Lopes, Hannes Magnusson, Philip Olson, Georg Richter, Damien Seguy, Jakub Vrana, Adam Harvey \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eEditor \u003c/td\u003e\u003ctd class=\"v\"\u003ePeter Cowburn \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eUser Note Maintainers \u003c/td\u003e\u003ctd class=\"v\"\u003eDaniel P. Brown, Thiago Henrique Pojda \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eOther Contributors \u003c/td\u003e\u003ctd class=\"v\"\u003ePreviously active authors, editors and other contributors are listed in the manual. \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth\u003ePHP Quality Assurance Team\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eIlia Alshanetsky, Joerg Behrens, Antony Dovgal, Stefan Esser, Moriyoshi Koizumi, Magnus Maatta, Sebastian Nohn, Derick Rethans, Melvyn Sopacua, Pierre-Alain Joye, Dmitry Stogov, Felipe Pena, David Soria Parra, Stanislav Malyshev, Julien Pauli, Stephen Zarkos, Anatol Belski, Remi Collet, Ferenc Kovacs \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ctable\u003e\n\u003ctr class=\"h\"\u003e\u003cth colspan=\"2\"\u003eWebsites and Infrastructure team\u003c/th\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003ePHP Websites Team \u003c/td\u003e\u003ctd class=\"v\"\u003eRasmus Lerdorf, Hannes Magnusson, Philip Olson, Lukas Kahwe Smith, Pierre-Alain Joye, Kalle Sommer Nielsen, Peter Cowburn, Adam Harvey, Ferenc Kovacs, Levi Morrison \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eEvent Maintainers \u003c/td\u003e\u003ctd class=\"v\"\u003eDamien Seguy, Daniel P. Brown \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eNetwork Infrastructure \u003c/td\u003e\u003ctd class=\"v\"\u003eDaniel P. Brown \u003c/td\u003e\u003c/tr\u003e\n\u003ctr\u003e\u003ctd class=\"e\"\u003eWindows Infrastructure \u003c/td\u003e\u003ctd class=\"v\"\u003eAlex Schoenmaker \u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003ch2\u003ePHP License\u003c/h2\u003e\n\u003ctable\u003e\n\u003ctr class=\"v\"\u003e\u003ctd\u003e\n\u003cp\u003e\nThis program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file: LICENSE\n\u003c/p\u003e\n\u003cp\u003eThis program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.\n\u003c/p\u003e\n\u003cp\u003eIf you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact license@php.net.\n\u003c/p\u003e\n\u003c/td\u003e\u003c/tr\u003e\n\u003c/table\u003e\n\u003c/div\u003e\u003c/body\u003e\u003c/html\u003e","meta":{"paths":"/phpinfo.php"},"ip":"172.18.0.3","timestamp":"2026-01-12T13:47:01.735199288Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.17' 'http://dvwa_dvwa_1//phpinfo.php'","matcher-status":true}
+{"template":"http/misconfiguration/cookies-without-httponly.yaml","template-url":"https://cloud.projectdiscovery.io/public/cookies-without-httponly","template-id":"cookies-without-httponly","template-path":"/root/nuclei-templates/http/misconfiguration/cookies-without-httponly.yaml","info":{"name":"Cookies without HttpOnly attribute - Detect","author":["rj coleman","mr.bobo hp"],"tags":["misconfig","http","cookie","generic","vuln"],"description":"Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n","impact":"Lack of HttpOnly flag on cookies increases the risk of client-side attacks, compromising user session security and data privacy.\n","reference":["https://owasp.org/www-community/HttpOnly"],"severity":"info","metadata":{"verified":true,"max-request":1},"classification":{"cve-id":null,"cwe-id":null,"cvss-metrics":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"},"remediation":"Ensure that all cookies are set with the HttpOnly attribute to prevent client-side access.\n"},"type":"javascript","port":"80","url":"/http://dvwa_dvwa_1/","extracted-results":["security","PHPSESSID"],"request":"content = template.http_all_headers\nconst setCookieLines = content\n .split(/\\r\\n/)\n .filter(line =\u003e line.trim().toLowerCase().startsWith('set-cookie:'));\n\nconst nonHttpOnlyCookies = setCookieLines.filter(line =\u003e !line.toLowerCase().includes('httponly'));\n\nconst cookieNames = nonHttpOnlyCookies.map(line =\u003e {\n const match = line.match(/set-cookie:\\s*([^=]+)=/i);\n return match ? match[1] : null;\n}).filter(Boolean);\ncookieNames","response":"[security PHPSESSID]","timestamp":"2026-01-12T13:47:04.763761407Z","matcher-status":true}
+{"template":"http/misconfiguration/cookies-without-secure.yaml","template-url":"https://cloud.projectdiscovery.io/public/cookies-without-secure","template-id":"cookies-without-secure","template-path":"/root/nuclei-templates/http/misconfiguration/cookies-without-secure.yaml","info":{"name":"Cookies without Secure attribute - Detect","author":["vthiery","rj coleman"],"tags":["misconfig","http","cookie","generic","vuln"],"description":"Checks whether cookies in the HTTP response contain the Secure attribute. If the Secure flag is set, it means that the cookie can only be transmitted over HTTPS\n","impact":"Lack of Secure flag on cookies allows the cookie to be sent over unsecure HTTP, making it vulnerable to man-in-the-middle (MITM) attacks.\n","reference":["https://owasp.org/www-community/controls/SecureCookieAttribute"],"severity":"info","metadata":{"verified":true,"max-request":1},"classification":{"cve-id":null,"cwe-id":null,"cvss-metrics":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"},"remediation":"Ensure that all cookies are set with the Secure attribute to prevent MITM attacks.\n"},"type":"javascript","port":"80","url":"/http://dvwa_dvwa_1/","extracted-results":["PHPSESSID","security"],"request":"content = template.http_all_headers\nconst setCookieLines = content\n .split(/\\r\\n/)\n .filter(line =\u003e line.trim().toLowerCase().startsWith('set-cookie:'));\nconst nonSecureCookies = setCookieLines.filter(line =\u003e !line.toLowerCase().includes('secure'));\nconst cookieNames = nonSecureCookies.map(line =\u003e {\n const match = line.match(/set-cookie:\\s*([^=]+)=/i);\n return match ? match[1] : null;\n}).filter(Boolean);\ncookieNames","response":"[security PHPSESSID]","timestamp":"2026-01-12T13:47:04.765888864Z","matcher-status":true}
+{"template":"http/technologies/waf-detect.yaml","template-url":"https://cloud.projectdiscovery.io/public/waf-detect","template-id":"waf-detect","template-path":"/root/nuclei-templates/http/technologies/waf-detect.yaml","info":{"name":"WAF Detection","author":["dwisiswant0","lu4nx"],"tags":["waf","tech","misc","discovery"],"description":"A web application firewall was detected.","reference":["https://github.com/Ekultek/WhatWaf"],"severity":"info","metadata":{"max-request":1},"classification":{"cve-id":null,"cwe-id":["cwe-200"]}},"matcher-name":"apachegeneric","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"POST / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:137.0) Gecko/20100101 Firefox/137.0\r\nConnection: close\r\nContent-Length: 27\r\nContent-Type: application/x-www-form-urlencoded\r\nAccept-Encoding: gzip\r\n\r\n_=\u003cscript\u003ealert(1)\u003c/script\u003e","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:11 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=4255855046715a020e740fd6c5982eea; expires=Tue, 13 Jan 2026 13:47:11 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:11.742834986Z","curl-command":"curl -X 'POST' -d '_=\u003cscript\u003ealert(1)\u003c/script\u003e' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: dvwa_dvwa_1' -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:137.0) Gecko/20100101 Firefox/137.0' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/exposures/configs/git-config.yaml","template-url":"https://cloud.projectdiscovery.io/public/git-config","template-id":"git-config","template-path":"/root/nuclei-templates/http/exposures/configs/git-config.yaml","info":{"name":"Git Configuration - Detect","author":["pdteam","pikpikcu","mah3sec_","m4lwhere"],"tags":["config","git","exposure","vuln"],"description":"Git configuration was detected via the pattern /.git/config and log file on passed URLs.","severity":"medium","metadata":{"max-request":1},"classification":{"cve-id":null,"cwe-id":["cwe-200"],"cvss-metrics":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","cvss-score":5.3}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/.git/config","request":"GET /.git/config HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 262\r\nAccept-Ranges: bytes\r\nDate: Mon, 12 Jan 2026 13:47:33 GMT\r\nEtag: \"106-6483095a42fb8\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\n[core]\n\trepositoryformatversion = 0\n\tfilemode = true\n\tbare = false\n\tlogallrefupdates = true\n[remote \"origin\"]\n\turl = https://github.com/digininja/DVWA.git\n\tfetch = +refs/heads/*:refs/remotes/origin/*\n[branch \"master\"]\n\tremote = origin\n\tmerge = refs/heads/master\n","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:33.728029983Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/.git/config'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"strict-transport-security","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.701166695Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"x-frame-options","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.701369092Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"x-content-type-options","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.701534333Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"x-permitted-cross-domain-policies","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.701888075Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"referrer-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.702078854Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"clear-site-data","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.702230178Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"cross-origin-embedder-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.702425323Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"content-security-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.702707634Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"permissions-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.702920568Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"cross-origin-opener-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.703104437Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/http-missing-security-headers.yaml","template-url":"https://cloud.projectdiscovery.io/public/http-missing-security-headers","template-id":"http-missing-security-headers","template-path":"/root/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml","info":{"name":"HTTP Missing Security Headers","author":["socketz","geeknik","g4l1t0","convisoappsec","kurohost","dawid-czarnecki","forgedhallpass","jub0bs","userdehghani"],"tags":["misconfig","headers","generic","vuln"],"description":"This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n","severity":"info","metadata":{"max-request":1}},"matcher-name":"cross-origin-resource-policy","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:37 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=e093b997948f1ac1dcb798e12a607bc1; expires=Tue, 13 Jan 2026 13:47:37 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:37.703319933Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.8' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/misconfiguration/missing-cookie-samesite-strict.yaml","template-url":"https://cloud.projectdiscovery.io/public/missing-cookie-samesite-strict","template-id":"missing-cookie-samesite-strict","template-path":"/root/nuclei-templates/http/misconfiguration/missing-cookie-samesite-strict.yaml","info":{"name":"Missing Cookie SameSite Strict","author":["lucky0x0d","pulsesecurity.co.nz"],"tags":["misconfig","samesite","cookie","vuln"],"description":"Identified cookies that lacked the samesite=strict attribute, which prevented enforcement of restrictions on cross-domain cookie transmission.\n","reference":["https://pulsesecurity.co.nz/articles/samesite-lax-csrf"],"severity":"info","metadata":{"verified":true,"max-request":1},"classification":{"cve-id":null,"cwe-id":["cwe-693"],"cvss-metrics":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","extracted-results":["security=low; path=/ PHPSESSID=90af3b3f9792ec373da1611de12e09a8; expires=Tue, 13 Jan 2026 13:47:44 GMT; Max-Age=86400; path=/"],"request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:44 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=90af3b3f9792ec373da1611de12e09a8; expires=Tue, 13 Jan 2026 13:47:44 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:44.89826522Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/technologies/tech-detect.yaml","template-url":"https://cloud.projectdiscovery.io/public/tech-detect","template-id":"tech-detect","template-path":"/root/nuclei-templates/http/technologies/tech-detect.yaml","info":{"name":"Wappalyzer Technology Detection","author":["hakluke","righettod","matejsmycka"],"tags":["tech","discovery"],"severity":"info","metadata":{"max-request":1}},"matcher-name":"php","type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:44 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=90af3b3f9792ec373da1611de12e09a8; expires=Tue, 13 Jan 2026 13:47:44 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:44.943049534Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/exposures/configs/exposed-gitignore.yaml","template-url":"https://cloud.projectdiscovery.io/public/exposed-gitignore","template-id":"exposed-gitignore","template-path":"/root/nuclei-templates/http/exposures/configs/exposed-gitignore.yaml","info":{"name":"Gitignore Config - Detect","author":["thezakman","geeknik"],"tags":["exposure","tenable","config","git","vuln"],"description":"Gitignore configuration information was detected.","reference":["https://twitter.com/pratiky9967/status/1230001391701086208","https://www.tenable.com/plugins/was/98595"],"severity":"info","metadata":{"max-request":3},"classification":{"cve-id":null,"cwe-id":["cwe-200"],"cvss-metrics":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/.gitignore","request":"GET /.gitignore HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 293\r\nAccept-Ranges: bytes\r\nDate: Mon, 12 Jan 2026 13:47:46 GMT\r\nEtag: \"125-6483095a43784\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\n# Neither the config file or its backup should go\n# into the repo.\nconfig/config.inc.php.bak\nconfig/config.inc.php\n\n# Vim swap files\n.*swp\n\n# VS Code editor files\n*.code-workspace\n\n# Used by pytest\ntests/__pycache__/\n\n# Don't include any uploaded images\nhackable/uploads/*\n.DS_Store\n.DS_Store\n","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:46.707550872Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/.gitignore'","matcher-status":true}
+{"template":"http/exposures/configs/dockerfile-hidden-disclosure.yaml","template-url":"https://cloud.projectdiscovery.io/public/dockerfile-hidden-disclosure","template-id":"dockerfile-hidden-disclosure","template-path":"/root/nuclei-templates/http/exposures/configs/dockerfile-hidden-disclosure.yaml","info":{"name":"Dockerfile - Detect","author":["dhiyaneshdk"],"tags":["exposure","config","vuln"],"description":"Dockerfile was detected.","reference":["https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/dockerfile-hidden-disclosure.json"],"severity":"medium","metadata":{"max-request":3},"classification":{"cve-id":null,"cwe-id":["cwe-200"],"cvss-metrics":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","cvss-score":5.3}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/Dockerfile","request":"GET /Dockerfile HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 1014\r\nAccept-Ranges: bytes\r\nDate: Mon, 12 Jan 2026 13:47:48 GMT\r\nEtag: \"3f6-6483095a43784\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\nFROM docker.io/library/php:8-apache\n\nLABEL org.opencontainers.image.source=https://github.com/digininja/DVWA\nLABEL org.opencontainers.image.description=\"DVWA pre-built image.\"\nLABEL org.opencontainers.image.licenses=\"gpl-3.0\"\n\nWORKDIR /var/www/html\n\n# https://www.php.net/manual/en/image.installation.php\nRUN apt-get update \\\n \u0026\u0026 export DEBIAN_FRONTEND=noninteractive \\\n \u0026\u0026 apt-get install -y zlib1g-dev libpng-dev libjpeg-dev libfreetype6-dev iputils-ping git \\\n \u0026\u0026 apt-get clean -y \u0026\u0026 rm -rf /var/lib/apt/lists/* \\\n \u0026\u0026 docker-php-ext-configure gd --with-jpeg --with-freetype \\\n \u0026\u0026 a2enmod rewrite \\\n # Use pdo_sqlite instead of pdo_mysql if you want to use sqlite\n \u0026\u0026 docker-php-ext-install gd mysqli pdo pdo_mysql\n\nCOPY --from=composer:latest /usr/bin/composer /usr/local/bin/composer\nCOPY --chown=www-data:www-data . .\nCOPY --chown=www-data:www-data config/config.inc.php.dist config/config.inc.php\n\n# This is configuring the stuff for the API\nRUN cd /var/www/html/vulnerabilities/api \\\n \u0026\u0026 composer install \\\n","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:48.702201321Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/Dockerfile'","matcher-status":true}
+{"template":"http/miscellaneous/robots-txt-endpoint.yaml","template-url":"https://cloud.projectdiscovery.io/public/robots-txt-endpoint","template-id":"robots-txt-endpoint","template-path":"/root/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml","info":{"name":"robots.txt endpoint prober","author":["caspergn","pdteam","thezakman"],"tags":["miscellaneous","misc","generic","discovery"],"severity":"info","metadata":{"max-request":1,"verified":true}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/robots.txt","request":"GET /robots.txt HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ko-KR) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 25\r\nAccept-Ranges: bytes\r\nContent-Type: text/plain\r\nDate: Mon, 12 Jan 2026 13:47:50 GMT\r\nEtag: \"19-6483095a456b3\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\nUser-agent: *\nDisallow: /","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:50.690173834Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ko-KR) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27' 'http://dvwa_dvwa_1/robots.txt'","matcher-status":true}
+{"template":"http/technologies/apache/apache-detect.yaml","template-url":"https://cloud.projectdiscovery.io/public/apache-detect","template-id":"apache-detect","template-path":"/root/nuclei-templates/http/technologies/apache/apache-detect.yaml","info":{"name":"Apache Detection","author":["philippedelteil"],"tags":["tech","apache","discovery"],"description":"Some Apache servers have the version on the response header. The OpenSSL version can be also obtained","severity":"info","metadata":{"max-request":1}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","extracted-results":["Apache/2.4.65 (Debian)"],"request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:52 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=7d0b5e2e45eaad99975413dfab475cfa; expires=Tue, 13 Jan 2026 13:47:52 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:52.772447066Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/technologies/php-detect.yaml","template-url":"https://cloud.projectdiscovery.io/public/php-detect","template-id":"php-detect","template-path":"/root/nuclei-templates/http/technologies/php-detect.yaml","info":{"name":"PHP Detect","author":["y0no"],"tags":["tech","php","discovery"],"severity":"info","metadata":{"verified":true,"max-request":1,"vendor":"php","product":"php","shodan-query":"X-Powered-By: PHP"},"classification":{"cve-id":null,"cwe-id":null,"cpe":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*"}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/","extracted-results":["8.5.1"],"request":"GET / HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nCache-Control: no-cache, must-revalidate\r\nContent-Type: text/html;charset=utf-8\r\nDate: Mon, 12 Jan 2026 13:47:52 GMT\r\nExpires: Tue, 23 Jun 2009 12:00:00 GMT\r\nPragma: no-cache\r\nServer: Apache/2.4.65 (Debian)\r\nSet-Cookie: security=low; path=/\r\nSet-Cookie: PHPSESSID=7d0b5e2e45eaad99975413dfab475cfa; expires=Tue, 13 Jan 2026 13:47:52 GMT; Max-Age=86400; path=/\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/8.5.1\r\n\r\n\u003c!DOCTYPE html\u003e\n\n\u003chtml lang=\"en-GB\"\u003e\n\n\t\u003chead\u003e\n\t\t\u003cmeta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" /\u003e\n\n\t\t\u003ctitle\u003eWelcome :: Damn Vulnerable Web Application (DVWA)\u003c/title\u003e\n\n\t\t\u003clink rel=\"stylesheet\" type=\"text/css\" href=\"dvwa/css/main.css\" /\u003e\n\n\t\t\u003clink rel=\"icon\" type=\"\\image/ico\" href=\"favicon.ico\" /\u003e\n\n\t\t\u003cscript type=\"text/javascript\" src=\"dvwa/js/dvwaPage.js\"\u003e\u003c/script\u003e\n\n\t\u003c/head\u003e\n\n\t\u003cbody class=\"home light\"\u003e\n\t\t\u003cdiv id=\"container\"\u003e\n\n\t\t\t\u003cdiv id=\"header\"\u003e\n\n\t\t\t\t\u003cimg src=\"dvwa/images/logo.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003ca href=\"#\" onclick=\"javascript:toggleTheme();\" class=\"theme-icon\" title=\"Toggle theme between light and dark.\"\u003e\n \u003cimg src=\"dvwa/images/theme-light-dark.png\" alt=\"Damn Vulnerable Web Application\" /\u003e\n \u003c/a\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_menu\"\u003e\n\n\t\t\t\t\u003cdiv id=\"main_menu_padded\"\u003e\n\t\t\t\t\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"selected\"\u003e\u003ca href=\".\"\u003eHome\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"instructions.php\"\u003eInstructions\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"setup.php\"\u003eSetup / Reset DB\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/brute/\"\u003eBrute Force\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/exec/\"\u003eCommand Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csrf/\"\u003eCSRF\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/fi/.?page=include.php\"\u003eFile Inclusion\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/upload/\"\u003eFile Upload\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/captcha/\"\u003eInsecure CAPTCHA\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli/\"\u003eSQL Injection\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/sqli_blind/\"\u003eSQL Injection (Blind)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/weak_id/\"\u003eWeak Session IDs\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_d/\"\u003eXSS (DOM)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_r/\"\u003eXSS (Reflected)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/xss_s/\"\u003eXSS (Stored)\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/csp/\"\u003eCSP Bypass\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/javascript/\"\u003eJavaScript Attacks\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/open_redirect/\"\u003eOpen HTTP Redirect\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/cryptography/\"\u003eCryptography\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"vulnerabilities/api/\"\u003eAPI\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"security.php\"\u003eDVWA Security\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"phpinfo.php\"\u003ePHP Info\u003c/a\u003e\u003c/li\u003e\n\u003cli class=\"\"\u003e\u003ca href=\"about.php\"\u003eAbout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\u003cul class=\"menuBlocks\"\u003e\u003cli class=\"\"\u003e\u003ca href=\"logout.php\"\u003eLogout\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\t\t\t\t\u003c/div\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"main_body\"\u003e\n\n\t\t\t\t\n\u003cdiv class=\"body_padded\"\u003e\n\t\u003ch1\u003eWelcome to Damn Vulnerable Web Application!\u003c/h1\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\u003c/p\u003e\n\t\u003cp\u003eThe aim of DVWA is to \u003cem\u003epractice some of the most common web vulnerabilities\u003c/em\u003e, with \u003cem\u003evarious levels of difficultly\u003c/em\u003e, with a simple straightforward interface.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eGeneral Instructions\u003c/h2\u003e\n\t\u003cp\u003eIt is up to the user how they approach DVWA. Either by working through every module at a fixed level, or selecting any module and working up to reach the highest level they can before moving onto the next one. There is not a fixed object to complete a module; however users should feel that they have successfully exploited the system as best as they possible could by using that particular vulnerability.\u003c/p\u003e\n\t\u003cp\u003ePlease note, there are \u003cem\u003eboth documented and undocumented vulnerabilities\u003c/em\u003e with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\u003c/p\u003e\n\t\u003cp\u003eThere is a help button at the bottom of each page, which allows you to view hints \u0026 tips for that vulnerability. There are also additional links for further background reading, which relates to that security issue.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eWARNING!\u003c/h2\u003e\n\t\u003cp\u003eDamn Vulnerable Web Application is damn vulnerable! \u003cem\u003eDo not upload it to your hosting provider's public html folder or any Internet facing servers\u003c/em\u003e, as they will be compromised. It is recommend using a virtual machine (such as \u003ca href=\"https://www.virtualbox.org/\" target=\"_blank\"\u003eVirtualBox\u003c/a\u003e or \u003ca href=\"https://www.vmware.com/\" target=\"_blank\"\u003eVMware\u003c/a\u003e), which is set to NAT networking mode. Inside a guest machine, you can download and install \u003ca href=\"https://www.apachefriends.org/\" target=\"_blank\"\u003eXAMPP\u003c/a\u003e for the web server and database.\u003c/p\u003e\n\t\u003cbr /\u003e\n\t\u003ch3\u003eDisclaimer\u003c/h3\u003e\n\t\u003cp\u003eWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA it is not our responsibility it is the responsibility of the person/s who uploaded and installed it.\u003c/p\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\n\t\u003ch2\u003eMore Training Resources\u003c/h2\u003e\n\t\u003cp\u003eDVWA aims to cover the most commonly seen vulnerabilities found in today's web applications. However there are plenty of other issues with web applications. Should you wish to explore any additional attack vectors, or want more difficult challenges, you may wish to look into the following other projects:\u003c/p\u003e\n\t\u003cul\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://github.com/webpwnized/mutillidae\" target=\"_blank\"\u003eMutillidae\u003c/a\u003e\u003c/li\u003e\n\t\t\u003cli\u003e\u003ca href=\"https://owasp.org/www-project-vulnerable-web-applications-directory\" target=\"_blank\"\u003eOWASP Vulnerable Web Applications Directory\u003c/a\u003e\u003c/li\u003e\n\t\u003c/ul\u003e\n\t\u003chr /\u003e\n\t\u003cbr /\u003e\n\u003c/div\u003e\n\t\t\t\t\u003cbr /\u003e\u003cbr /\u003e\n\t\t\t\t\n\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv class=\"clear\"\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"system_info\"\u003e\n\t\t\t\t\u003cdiv align=\"left\"\u003e\u003cem\u003eUsername:\u003c/em\u003e Unknown\u003cbr /\u003e\u003cem\u003eSecurity Level:\u003c/em\u003e \u003cem\u003eSecurity Level:\u003c/em\u003e low\u003cbr /\u003e\u003cem\u003eLocale:\u003c/em\u003e en\u003cbr /\u003e\u003cem\u003eSQLi DB:\u003c/em\u003e mysql\u003c/div\u003e\n\t\t\t\u003c/div\u003e\n\n\t\t\t\u003cdiv id=\"footer\"\u003e\n\n\t\t\t\t\u003cp\u003eDamn Vulnerable Web Application (DVWA)\u003c/p\u003e\n\t\t\t\t\u003cscript src='dvwa/js/add_event_listeners.js'\u003e\u003c/script\u003e\n\n\t\t\t\u003c/div\u003e\n\n\t\t\u003c/div\u003e\n\n\t\u003c/body\u003e\n\n\u003c/html\u003e","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:52.776049114Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/'","matcher-status":true}
+{"template":"http/exposures/files/readme-md.yaml","template-url":"https://cloud.projectdiscovery.io/public/readme-md","template-id":"readme-md","template-path":"/root/nuclei-templates/http/exposures/files/readme-md.yaml","info":{"name":"README.md file disclosure","author":["ambassify"],"tags":["exposure","markdown","files","vuln"],"description":"Internal documentation file often used in projects which can contain sensitive information.","severity":"info","metadata":{"max-request":1,"shodan-query":"html:\"README.MD\""}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/README.md","request":"GET /README.md HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:139.0) Gecko/20100101 Firefox/139.0\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 33054\r\nAccept-Ranges: bytes\r\nContent-Type: text/markdown\r\nDate: Mon, 12 Jan 2026 13:47:53 GMT\r\nEtag: \"811e-6483095a43f50\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\n# DAMN VULNERABLE WEB APPLICATION\n\nDamn Vulnerable Web Application (DVWA) is a PHP/MariaDB web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students \u0026 teachers to learn about web application security in a controlled class room environment.\n\nThe aim of DVWA is to **practice some of the most common web vulnerabilities**, with **various levels of difficulty**, with a simple straightforward interface.\nPlease note, there are **both documented and undocumented vulnerabilities** with this software. This is intentional. You are encouraged to try and discover as many issues as possible.\n- - -\n\n## WARNING!\n\nDamn Vulnerable Web Application is damn vulnerable! **Do not upload it to your hosting provider's public html folder or any Internet facing servers**, as they will be compromised. It is recommended using a virtual machine (such as [VirtualBox](https://www.virtualbox.org/) or [VMware](https://www.vmware.com/)), which is set to NAT networking mode. Inside a guest machine, you can download and install [XAMPP](https://www.apachefriends.org/) for the web server and database.\n\n### Disclaimer\n\nWe do not take responsibility for the way in which any one uses this application (DVWA). We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVWA on to live web servers. If your web server is compromised via an installation of DVWA, it is not our responsibility, it is the responsibility of the person/s who uploaded and installed it.\n\n- - -\n\n## License\n\nThis file is part of Damn Vulnerable Web Application (DVWA).\n\nDamn Vulnerable Web Application (DVWA) is free software: you can redistribute it and/or modify\nit under the terms of the GNU General Public License as published by\nthe Free Software Foundation, either version 3 of the License, or\n(at your option) any later version.\n\nDamn Vulnerable Web Application (DVWA) is distributed in the hope that it will be useful,\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\nGNU General Public License for more details.\n\nYou should have received a copy of the GNU General Public License\nalong with Damn Vulnerable Web Application (DVWA). If not, see \u003chttps://www.gnu.org/licenses/\u003e.\n\n- - -\n\n## Internationalisation\n\nThis file is available in multiple languages:\n\n- Arabic: [العربية](README.ar.md)\n- Chinese: [简体中文](README.zh.md)\n- French: [Français](README.fr.md)\n- Korean: [한국어](README.ko.md)\n- Persian: [فارسی](README.fa.md)\n- Polish: [Polski](README.pl.md)\n- Portuguese: [Português](README.pt.md)\n- Spanish: [Español](README.es.md)\n- Turkish: [Türkçe](README.tr.md)\n- Indonesia: [Indonesia](README.id.md)\n- Vietnamese: [Vietnamese](README.vi.md)\n- Italian: [Italiano](README.it.md)\n\nIf you would like to contribute a translation, please submit a PR. Note though, this does not mean just run it through Google Translate and send that in, those will be rejected. Submit your translated version by adding a new 'README.xx.md' file where xx is the two-letter code of your desired language (based on [ISO 639-1](https://en.wikipedia.org/wiki/List_of_ISO_639-1_codes)).\n\n- - -\n\n## Download\n\nWhile there are various versions of DVWA around, the only supported version is the latest source from the official GitHub repository. You can either clone it from the repo:\n\n```sh\ngit clone https://github.com/digininja/DVWA.git\n```\n\nOr [download a ZIP of the files](https://github.com/digininja/DVWA/archive/master.zip).\n\n- - -\n\n## Installation\n\n### Automated Installation 🛠️\n\n**Note, this is not an official DVWA script, it was written by [IamCarron](https://github.com/iamCarron/). A lot of work went into creating the script and, when it was created, it did not do anything malicious, however it is recommended you review the script before blindly running it on your system, just in case. Please report any bugs to [IamCarron](https://github.com/iamCarron/), not here.**\n\nAn automated configuration script for DVWA on Debian-based machines, including Kali, Ubuntu, Kubuntu, Linux Mint, Zorin OS...\n\n**Note: This script requires root privileges and is tailored for Debian-based systems. Ensure you are running it as the root user.**\n\n#### Installation Requirements\n\n- **Operating System:** Debian-based system (Kali, Ubuntu, Kubuntu, Linux Mint, Zorin OS)\n- **Privileges:** Execute as root user\n\n#### Installation Steps\n\n##### One-Liner\n\nThis will download an install script written by [@IamCarron](https://github.com/IamCarron) and run it automatically. This would not be included here if we did not trust the author and the script as it was when we reviewed it, but there is always the chance of someone going rogue, and so if you don't feel safe running someone else's code without reviewing it yourself, follow the manual process and you can review it once downloaded.\n\n```sh\nsudo bash -c \"$(curl --fail --show-error --silent --location https://raw.githubusercontent.com/IamCarron/DVWA-Script/main/Install-DVWA.sh)\"\n```\n\n##### Manually Running the Script\n\n1. **Download the script:**\n\n ```sh\n wget https://raw.githubusercontent.com/IamCarron/DVWA-Script/main/Install-DVWA.sh\n ```\n\n2. **Make the script executable:**\n\n ```sh\n chmod +x Install-DVWA.sh\n ```\n\n3. **Run the script as root:**\n\n ```sh\n sudo ./Install-DVWA.sh\n ```\n\n### Installation Videos\n\n- [Installing DVWA on Kali running in VirtualBox](https://www.youtube.com/watch?v=WkyDxNJkgQ4)\n- [Installing DVWA on Windows using XAMPP](https://youtu.be/Yzksa_WjnY0)\n- [Installing Damn Vulnerable Web Application (DVWA) on Windows 10](https://www.youtube.com/watch?v=cak2lQvBRAo)\n\n### Windows + XAMPP\n\nThe easiest way to install DVWA is to download and install [XAMPP](https://www.apachefriends.org/) if you do not already have a web server setup.\n\nXAMPP is a very easy to install Apache Distribution for Linux, Solaris, Windows and Mac OS X. The package includes the Apache web server, MySQL, PHP, Perl, a FTP server and phpMyAdmin.\n\nThis [video](https://youtu.be/Yzksa_WjnY0) walks you through the installation process for Windows but it should be similar for other OSs.\n\n### Docker\n\nThanks to [hoang-himself](https://github.com/hoang-himself) and [JGillam](https://github.com/JGillam), every commit to the `master` branch causes a Docker image to be built and ready to be pulled down from GitHub Container Registry.\n\nFor more information on what you are getting, you can browse [the prebuilt Docker images](https://github.com/digininja/DVWA/pkgs/container/dvwa).\n\n#### Getting Started\n\nPrerequisites: Docker and Docker Compose.\n\n- If you are using Docker Desktop, both of these should be already installed.\n- If you prefer Docker Engine on Linux, make sure to follow their [installation guide](https://docs.docker.com/engine/install/#server).\n\n**We provide support for the latest Docker release as shown above.**\nIf you are using Linux and the Docker package that came with your package manager, it will probably work too, but support will only be best-effort.\n\nUpgrading Docker from the package manager version to upstream requires that you uninstall the old versions as seen in their manuals for [Ubuntu](https://docs.docker.com/engine/install/ubuntu/#uninstall-old-versions), [Fedora](https://docs.docker.com/engine/install/fedora/#uninstall-old-versions) and others.\nYour Docker data (containers, images, volumes, etc.) should not be affected, but in case you do run into a problem, make sure to [tell Docker](https://www.docker.com/support) and use search engines in the mean time.\n\nThen, to get started:\n\n1. Run `docker version` and `docker compose version` to see if you have Docker and Docker Compose properly installed. You should be able to see their versions in the output.\n\n For example:\n\n ```text\n \u003e\u003e\u003e docker version\n Client:\n [...]\n Version: 23.0.5\n [...]\n\n Server: Docker Desktop 4.19.0 (106363)\n Engine:\n [...]\n Version: 23.0.5\n [...]\n\n \u003e\u003e\u003e docker compose version\n Docker Compose version v2.17.3\n ```\n\n If you don't see anything or get a command not found error, follow the prerequisites to setup Docker and Docker Compose.\n\n2. Clone or download this repository and extract (see [Download](#download)).\n3. Open a terminal of your choice and change its working directory into this folder (`DVWA`).\n4. Run `docker compose up -d`.\n\nDVWA is now available at `http://localhost:4280`.\n\n**Notice that for running DVWA in containers, the web server is listening on port 4280 instead of the usual port of 80.**\nFor more information on this decision, see [I want to run DVWA on a different port](#i-want-to-run-dvwa-on-a-different-port).\n\n#### Local Build\n\nIf you made local changes and want to build the project from local, go to `compose.yml` and change `pull_policy: always` to `pull_policy: build`.\n\nRunning `docker compose up -d` should trigger Docker to build an image from local regardless of what is available in the registry.\n\nSee also: [`pull_policy`](https://github.com/compose-spec/compose-spec/blob/master/05-services.md#pull_policy).\n\n#### Serve local files\n\nIf your making local changes and don't want to build the project for every change :\n1. Go to `compose.yml` and uncomment :\n ```\n # volumes:\n # - ./:/var/www/html\n ```\n2. Run `cp config/config.inc.php.dist config/config.inc.php` to copy the default config file.\n3. Run `docker compose up -d` and changes to local files will reflect on the container.\n\n### PHP Versions\n\nIdeally you should be using the latest stable version of PHP as that is the version that this app will be developed and tested on.\n\nSupport will not be given for anyone trying to use PHP 5.x.\n\nVersions less than 7.3 have known issues that will cause problems, most of the app will work, but random things may not. Unless you have a very good reason for using such an old version, support will not be given.\n\n### Linux Packages\n\nIf you are using a Debian based Linux distribution, you will need to install the following packages _(or their equivalent)_:\n\n- apache2\n- libapache2-mod-php\n- mariadb-server\n- mariadb-client\n- php php-mysqli\n- php-gd\n\nI would recommend doing an update before this, just so you make sure you are going to get the latest version of everything.\n\n```sh\napt update\napt install -y apache2 mariadb-server mariadb-client php php-mysqli php-gd libapache2-mod-php\n```\n\nThe site will work with MySQL instead of MariaDB but we strongly recommend MariaDB as it works out of the box whereas you have to make changes to get MySQL to work correctly.\n\n### Apache Modules\n\nIf you want to use the API lab you must have the Apache module `mod_rewrite` enabled. To do this in Linux run:\n\n```\na2enmod rewrite\n```\n\nAnd then restart Apache with:\n\n```\napachectl restart\n```\n\n### Vendor Files\n\nIf you want to use the API module you will need to install a set of vendor files using [Composer](https://getcomposer.org/).\n\nFirst, make sure you have Composer installed. There seem to be backward compatibility issues so I always get the latest version from here:\n\nhttps://getcomposer.org/doc/00-intro.md\n\nFollow the instructions the site gives to get it installed.\n\nNow go into the `vulnerabilities/api` directory and run:\n\n```\ncomposer.phar install\n```\n\nIf you did not install Composer to the system path, make sure you reference its full location.\n\n## Configurations\n\n### Config File\n\nDVWA ships with a dummy copy of its config file which you will need to copy into place and then make the appropriate changes. On Linux, assuming you are in the DVWA directory, this can be done as follows:\n\n`cp config/config.inc.php.dist config/config.inc.php`\n\nOn Windows, this can be a bit harder if you are hiding file extensions, if you are unsure about this, this blog post explains more about it:\n\n[How to Make Windows Show File Extensions](https://www.howtogeek.com/205086/beginner-how-to-make-windows-show-file-extensions/)\n\n### Config with environment variables\n\nInstead of modifying the configuration file, you can also set most settings using environment variables. In a Docker or Kubernetes deployment, this allows you to modify the configuration without creating a new Docker image. You'll find the variables in the [config/config.inc.php.dist](config/config.inc.php.dist) file.\n\nIf you want to set the default security level to \"low\", simply add the following line to the [compose.yml](./compose.yml) file:\n\n```yml\nenvironment:\n - DB_SERVER=db\n - DEFAULT_SECURITY_LEVEL=low\n```\n\n### Database Setup\n\nTo set up the database, simply click on the `Setup DVWA` button in the main menu, then click on the `Create / Reset Database` button. This will create / reset the database for you with some data in.\n\nIf you receive an error while trying to create your database, make sure your database credentials are correct within `./config/config.inc.php`. _This differs from config.inc.php.dist, which is an example file._\n\nThe variables are set to the following by default:\n\n```php\n$_DVWA[ 'db_server'] = '127.0.0.1';\n$_DVWA[ 'db_port'] = '3306';\n$_DVWA[ 'db_user' ] = 'dvwa';\n$_DVWA[ 'db_password' ] = 'p@ssw0rd';\n$_DVWA[ 'db_database' ] = 'dvwa';\n```\n\nNote, if you are using MariaDB rather than MySQL (MariaDB is default in Kali), then you can't use the database root user, you must create a new database user. To do this, connect to the database as the root user then use the following commands:\n\n```mariadb\nMariaDB [(none)]\u003e create database dvwa;\nQuery OK, 1 row affected (0.00 sec)\n\nMariaDB [(none)]\u003e create user dvwa@localhost identified by 'p@ssw0rd';\nQuery OK, 0 rows affected (0.01 sec)\n\nMariaDB [(none)]\u003e grant all on dvwa.* to dvwa@localhost;\nQuery OK, 0 rows affected (0.01 sec)\n\nMariaDB [(none)]\u003e flush privileges;\nQuery OK, 0 rows affected (0.00 sec)\n```\n\n### Disable Authentication\n\nSome tools don't work well with authentication so can't be used with DVWA. To get around this, there is a config option to disable authentication checking. To do this, simply set the following in the config file:\n\n```php\n$_DVWA[ 'disable_authentication' ] = true;\n```\n\nYou will also need to set the security level to one that is appropriate to the testing you want to do:\n\n```php\n$_DVWA[ 'default_security_level' ] = 'low';\n```\n\nIn this state, you can access all the features without needing to log in and set any cookies.\n\n### Folder Permissions\n\n- `./hackable/uploads/` - Needs to be writeable by the web service (for File Upload).\n\n### PHP Configuration\n\nOn Linux systems, likely found in `/etc/php/x.x/fpm/php.ini` or `/etc/php/x.x/apache2/php.ini`.\n\n- To allow Remote File Inclusions (RFI):\n - `allow_url_include = on` [[allow_url_include](https://secure.php.net/manual/en/filesystem.configuration.php#ini.allow-url-include)]\n - `allow_url_fopen = on` [[allow_url_fopen](https://secure.php.net/manual/en/filesystem.configuration.php#ini.allow-url-fopen)]\n\n- To make sure PHP shows all error messages:\n - `display_errors = on` [[display_errors](https://secure.php.net/manual/en/errorfunc.configuration.php#ini.display-errors)]\n - `display_startup_errors = on` [[display_startup_errors](https://secure.php.net/manual/en/errorfunc.configuration.php#ini.display-startup-errors)]\n\nMake sure you restart the php service or Apache after making the changes.\n\n### reCAPTCHA\n\nThis is only required for the \"Insecure CAPTCHA\" lab, if you aren't playing with that lab, you can ignore this section.\n\nGenerated a pair of API keys from \u003chttps://www.google.com/recaptcha/admin/create\u003e.\n\nThese then go in the following sections of `./config/config.inc.php`:\n\n- `$_DVWA[ 'recaptcha_public_key' ]`\n- `$_DVWA[ 'recaptcha_private_key' ]`\n\n### Default Credentials\n\n**Default username = `admin`**\n\n**Default password = `password`**\n\n_...can easily be brute forced ;)_\n\nLogin URL: \u003chttp://127.0.0.1/login.php\u003e\n\n_Note: This will be different if you installed DVWA into a different directory._\n\n- - -\n\n## Troubleshooting\n\nThese assume you are on a Debian based distro, such as Debian, Ubuntu and Kali. For other distros, follow along, but update the command where appropriate.\n\nIf you'd rather watch a video than read words, the most common issues are covered in the video [Fixing DVWA Setup Issues](https://youtu.be/C-kig5qrPSA?si=_a4Bop505-1tXb_F).\n\n### Containers\n\n#### I want to access the logs\n\nIf you are using Docker Desktop, logs can be accessed from the graphical application.\nSome minor details may change with newer versions, but the access method should be the same.\n\n\n\n\nLogs can also be accessed from the terminal.\n\n1. Open a terminal and change its working directory to DVWA\n2. Show the merged logs\n\n ```sh\n docker compose logs\n ```\n\n In case you want to export the logs to a file, e.g. `dvwa.log`\n\n ```sh\n docker compose logs \u003e dvwa.log\n ```\n\n#### I want to run DVWA on a different port\n\nWe don't use port 80 by default for a few reasons:\n\n- Some users might already be running something on port 80.\n- Some users might be using a rootless container engine (like Podman), and 80 is a privileged port (\u003c 1024). Additional configuration (e.g. setting `net.ipv4.ip_unprivileged_port_start`) is required, but you will have to research on your own.\n\nYou can expose DVWA on a different port by changing the port binding in the `compose.yml` file.\nFor example, you can change\n\n```yml\nports:\n - 127.0.0.1:4280:80\n```\n\nto\n\n```yml\nports:\n - 127.0.0.1:8806:80\n```\n\nDVWA is now accessible at `http://localhost:8806`.\n\nIn cases in which you want DVWA to not only be accessible exclusively from your own device, but\non your local network too (e.g. because you are setting up a test machine for a workshop), you\ncan remove the `127.0.0.1:` from the port mapping (or replace it with you LAN IP). This way it\nwill listen on all available device. The safe default should always be to only listen on your\nlocal loopback device. After all, it is a damn vulnerable web application, running on your machine.\n\n#### DVWA auto starts when Docker runs\n\nThe included [`compose.yml`](./compose.yml) file automatically runs DVWA and its database when Docker starts.\n\nTo disable this, you can delete or comment out the `restart: unless-stopped` lines in the [`compose.yml`](./compose.yml) file.\n\nIf you want to disable this behavior temporarily, you can run `docker compose stop`, or use Docker Desktop, find `dvwa` and click Stop.\nAdditionally, you can delete the containers, or run `docker compose down`.\n\n### Log files\n\nOn Linux systems Apache generates two log files by default, `access.log` and `error.log` and on Debian based system these are usually found in `/var/log/apache2/`.\n\nWhen submitting error reports, problems, anything like that, please include at least the last five lines from each of these files. On Debian based systems you can get these like this:\n\n```sh\ntail -n 5 /var/log/apache2/access.log /var/log/apache2/error.log\n```\n\n### I browsed to the site and got a 404 or Apache2 default page\n\n[Video Help](https://youtu.be/C-kig5qrPSA?si=wTS3Aj8fycW3Idfr\u0026t=141)\n\nIf you are having this problem you need to understand file locations. By default, the Apache document root (the place it starts looking for web content) is `/var/www/html`. If you put the file `hello.txt` in this directory, to access it you would browse to `http://localhost/hello.txt`.\n\nIf you created a directory and put the file in there - `/var/www/html/mydir/hello.txt` - you would then need to browse to `http://localhost/mydir/hello.txt`.\n\nLinux is by default case sensitive and so in the example above, if you tried to browse to any of these, you would get a `404 Not Found`:\n\n- `http://localhost/MyDir/hello.txt`\n- `http://localhost/mydir/Hello.txt`\n- `http://localhost/MYDIR/hello.txt`\n\nHow does this affect DVWA? Most people use git to clone DVWA into `/var/www/html`, this gives them the directory `/var/www/html/DVWA/` with all the DVWA files inside it. They then browse to `http://localhost/` and get either a `404` or the default Apache welcome page. As the files are in DVWA, you must browse to `http://localhost/DVWA`.\n\nThe other common mistake is to browse to `http://localhost/dvwa` which will give a `404` because `dvwa` is not `DVWA` as far as Linux directory matching is concerned.\n\nSo after setup, if you try to visit the site and get a `404`, think about where you installed the files to, where they are relative to the document root, and what the case of the directory you used is.\n\n### I browsed to the site and got a blank screen\n\n[Video Help](https://youtu.be/C-kig5qrPSA?si=wTS3Aj8fycW3Idfr\u0026t=243)\n\nThis is usually one configuration issue hiding another issue. By default, PHP does not display errors, and so if you forgot to turn error display on during the setup process, any other problems, such as failure to connect to the database, will stop the app from loading but the message to tell you what is wrong will be hidden.\n\nTo fix this, make sure you set `display_errors` and `display_startup_errors` as covered in [PHP Configuration](#php-configuration) and then restart Apache.\n\n### \"Access denied\" running setup\n\nIf you see the following when running the setup script it means the username or password in the config file do not match those configured on the database. [Video Help](https://youtu.be/C-kig5qrPSA?si=_a4Bop505-1tXb_F\u0026t=973)\n\n```mariadb\nDatabase Error #1045: Access denied for user 'notdvwa'@'localhost' (using password: YES).\n```\n\nThe error is telling you that you are using the username `notdvwa`.\n\nThe following error says you have pointed the config file at the wrong database. [Video Help](https://youtu.be/C-kig5qrPSA?si=_a4Bop505-1tXb_F\u0026t=630)\n\n```mariadb\nSQL: Access denied for user 'dvwa'@'localhost' to database 'notdvwa'\n```\n\nIt is saying that you are using the user `dvwa` and trying to connect to the database `notdvwa`.\n\nThe first thing to do is to double check what you think you put in the config file is what is actually there.\n\nIf it matches what you expect, the next thing to do is to check you can log in as the user on the command line. Assuming you have a database user of `dvwa` and a password of `p@ssw0rd`, run the following command:\n\n```sh\nmysql -u dvwa -pp@ssw0rd -D dvwa\n```\n\n_Note: There is no space after the -p_\n\nIf you see the following, the password is correct:\n\n```mariadb\nWelcome to the MariaDB monitor. Commands end with ; or \\g.\nYour MariaDB connection id is 14\nServer version: 10.3.22-MariaDB-0ubuntu0.19.10.1 Ubuntu 19.10\n\nCopyright (c) 2000, 2018, Oracle, MariaDB Corporation Ab and others.\n\nType 'help;' or '\\h' for help. Type '\\c' to clear the current input statement.\n\nMariaDB [dvwa]\u003e\n```\n\nAs you can connect on the command line, it is likely something wrong in the config file, double check that and then raise an issue if you still can't get things working.\n\nIf you see the following, the username or password you are using is wrong. Repeat the [Database Setup](#database-setup) steps and make sure you use the same username and password throughout the process.\n\n```mariadb\nERROR 1045 (28000): Access denied for user 'dvwa'@'localhost' (using password: YES)\n```\n\nIf you get the following, the user credentials are correct but the user does not have access to the database. Again, repeat the setup steps and check the database name you are using.\n\n```mariadb\nERROR 1044 (42000): Access denied for user 'dvwa'@'localhost' to database 'dvwa'\n```\n\nThe final error you could get is this:\n\n```mariadb\nERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)\n```\n\nThis is not an authentication issue but tells you that the database server is not running. Start it with the following\n\n```sh\nsudo service mysql start\n```\n\n### Connection Refused\n\n[Video Help](https://youtu.be/C-kig5qrPSA?si=_a4Bop505-1tXb_F\u0026t=444)\n\nAn error similar to this one:\n\n```mariadb\nFatal error: Uncaught mysqli_sql_exception: Connection refused in /var/sites/dvwa/non-secure/htdocs/dvwa/includes/dvwaPage.inc.php:535\n```\n\nMeans your database server is not running or you've got the wrong IP address in the config file.\n\nCheck this line in the config file to see where the database server is expected to be:\n\n```php\n$_DVWA[ 'db_server' ] = '127.0.0.1';\n```\n\nThen go to this server and check that it is running. In Linux this can be done with:\n\n```sh\nsystemctl status mariadb.service\n```\n\nAnd you are looking for something like this, the important bit is that it says `active (running)`.\n\n```sh\n● mariadb.service - MariaDB 10.5.19 database server\n Loaded: loaded (/lib/systemd/system/mariadb.service; enabled; preset: enabled)\n Active: active (running) since Thu 2024-03-14 16:04:25 GMT; 1 week 5 days ago\n```\n\nIf it is not running, you can start it with:\n\n```sh\nsudo systemctl stop mariadb.service \n```\n\nNote the `sudo` and make sure you put your Linux user password in if requested.\n\nIn Windows, check the status in the XAMPP console.\n\n### Unknown authentication method\n\nWith the most recent versions of MySQL, PHP can no longer talk to the database in its default configuration. If you try to run the setup script and get the following message it means you have configuration.\n\n```mariadb\nDatabase Error #2054: The server requested authentication method unknown to the client.\n```\n\nYou have two options, the easiest is to uninstall MySQL and install MariaDB. The following is the official guide from the MariaDB project:\n\n\u003chttps://mariadb.com/resources/blog/how-to-migrate-from-mysql-to-mariadb-on-linux-in-five-steps/\u003e\n\nAlternatively, follow these steps:\n\n1. As root, edit the following file: `/etc/mysql/mysql.conf.d/mysqld.cnf`\n1. Under the line `[mysqld]`, add the following:\n `default-authentication-plugin=mysql_native_password`\n1. Restart the database: `sudo service mysql restart`\n1. Check the authentication method for your database user:\n\n ```sql\n mysql\u003e select Host,User, plugin from mysql.user where mysql.user.User = 'dvwa';\n +-----------+------------------+-----------------------+\n | Host | User | plugin |\n +-----------+------------------+-----------------------+\n | localhost | dvwa | caching_sha2_password |\n +-----------+------------------+-----------------------+\n 1 rows in set (0.00 sec)\n ```\n\n1. You'll likely see `caching_sha2_password`. If you do, run the following command:\n\n ```sql\n mysql\u003e ALTER USER dvwa@localhost IDENTIFIED WITH mysql_native_password BY 'p@ssw0rd';\n ```\n\n1. Re-running the check, you should now see `mysql_native_password`.\n\n ```sql\n mysql\u003e select Host,User, plugin from mysql.user where mysql.user.User = 'dvwa';\n +-----------+------+-----------------------+\n | Host | User | plugin |\n +-----------+------+-----------------------+\n | localhost | dvwa | mysql_native_password |\n +-----------+------+-----------------------+\n 1 row in set (0.00 sec)\n ```\n\nAfter all that, the setup process should now work as normal.\n\nIf you want more information see the following page: \u003chttps://www.php.net/manual/en/mysqli.requirements.php\u003e.\n\n### Database Error #2002: No such file or directory\n\nThe database server is not running. In a Debian based distro this can be done with:\n\n```sh\nsudo service mysql start\n```\n\n### Errors \"MySQL server has gone away\" and \"Packets out of order\"\n\nThere are a few reasons you could be getting these errors, but the most likely is the version of database server you are running is not compatible with the version of PHP.\n\nThis is most commonly found when you are running the latest version of MySQL as PHP and it do not get on well. Best advice, ditch MySQL and install MariaDB as this is not something we can support.\n\nFor more information, see:\n\n\u003chttps://www.ryadel.com/en/fix-mysql-server-gone-away-packets-order-similar-mysql-related-errors/\u003e\n\n### Why can't the database connect on CentOS?\n\nYou may be running into problems with SELinux. Either disable SELinux or run this command to allow the web server to talk to the database:\n\n```sh\nsetsebool -P httpd_can_network_connect_db 1\n```\n\n### MariaDB Docker does not start\n\nIf you see the following error in the Docker logs while trying to start MariaDB, it is likely due to the host machine not having enough memory. If you are using this in a hosted environment, the best solution is to step up a machine size to get more memory and to try again.\n\n```\n[Note] [Entrypoint]: Entrypoint script for MariaDB Server 1:10.11.15+maria~ubu2204 started.\n[Warn] [Entrypoint]: /sys/fs/cgroup///memory.pressure not writable, functionality unavailable to MariaDB\n```\n\nYou might also need to add the following line to the volums section of your `compose.yml` file:\n\n```\n- /sys/fs/cgroup/memory.pressure:/sys/fs/cgroup/memory.pressure\n```\n\nDoing that would change the volumes section of a default config file to the following:\n\n```\n volumes:\n - dvwa:/var/lib/mysql\n - /sys/fs/cgroup/memory.pressure:/sys/fs/cgroup/memory.pressure\n```\n\nFor more information on why this works, see [this issue](https://github.com/MariaDB/mariadb-docker/issues/626).\n\n### Anything Else\n\nFor the latest troubleshooting information please read both open and closed tickets in the git repo:\n\n\u003chttps://github.com/digininja/DVWA/issues\u003e\n\nBefore submitting a ticket, please make sure you are running the latest version of the code from the repo. This is not the latest release, this is the latest code from the master branch.\n\nIf raising a ticket, please submit at least the following information:\n\n- Operating System\n- The last 5 lines from the web server error log directly after whatever error you are reporting occurs\n- If it is a database authentication problem, go through the steps above and screenshot each step. Submit these along with a screenshot of the section of the config file showing the database user and password.\n- A full description of what is going wrong, what you expect to happen, and what you have tried to do to fix it. \"login broken\" is no enough for us to understand your problem and to help fix it.\n\n- - -\n\n## Tutorials\n\nI am going to try to put together some tutorial videos that walk through some of the vulnerabilities and show how to detect them and then how to exploit them. Here are the ones I've made so far:\n\n[Finding and Exploiting Reflected XSS](https://youtu.be/V4MATqtdxss)\n\n- - -\n\n## SQLite3 SQL Injection\n\n_Support for this is limited, before raising issues, please ensure you are prepared to work on debugging, do not simply claim \"it does not work\"._\n\nBy default, SQLi and Blind SQLi are done against the MariaDB/MySQL server used by the site but it is possible to switch to do the SQLi testing against SQLite3 instead.\n\nI am not going to cover how to get SQLite3 working with PHP, but it should be a simple case of installing the `php-sqlite3` package and making sure it is enabled.\n\nTo make the switch, simply edit the config file and add or edit these lines:\n\n```php\n$_DVWA[\"SQLI_DB\"] = \"sqlite\";\n$_DVWA[\"SQLITE_DB\"] = \"sqli.db\";\n```\n\nBy default it uses the file `database/sqli.db`, if you mess it up, simply copy `database/sqli.db.dist` over the top.\n\nThe challenges are exactly the same as for MariaDB, they just run against SQLite3 instead.\n\n- - -\n\n👨💻 Contributors\n-----\n\nThanks for all your contributions and keeping this project updated. :heart:\n\nIf you have an idea, some kind of improvement or just simply want to collaborate, you are welcome to contribute and participate in the Project, feel free to send your PR.\n\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://github.com/digininja/DVWA/graphs/contributors\"\u003e\n \u003cimg src=\"https://contrib.rocks/image?repo=digininja/DVWA\u0026max=500\"\u003e\n\u003c/a\u003e\n\u003c/p\u003e\n\n- - -\n\n## Reporting Vulnerabilities\n\nTo put it simply, please don't!\n\nOnce a year or so, someone will submit a report for a vulnerability they've found in the app, some are well written, sometimes better than I've seen in paid pen test reports, some are just \"you are missing headers, pay me\".\n\nIn 2023, this elevated to a whole new level when someone decided to request a CVE for one of the vulnerabities, they were given [CVE-2023-39848](https://nvd.nist.gov/vuln/detail/CVE-2023-39848). Much hilarity ensued and time was wasted getting this corrected.\n\nThe app has vulnerabilities, it is deliberate. Most are the well documented ones that you work through as lessons, others are \"hidden\" ones, ones to find on your own. If you really want to show off your skills at finding the hidden extras, write a blog post or create a video as there are probably people out there who would be interested in learning about them and about how your found them. If you send us the link, we may even include it in the references.\n\n## Links\n\nProject Home: \u003chttps://github.com/digininja/DVWA\u003e\n\n_Created by the DVWA team_\n","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:53.698142904Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:139.0) Gecko/20100101 Firefox/139.0' 'http://dvwa_dvwa_1/README.md'","matcher-status":true}
+{"template":"http/miscellaneous/robots-txt.yaml","template-url":"https://cloud.projectdiscovery.io/public/robots-txt","template-id":"robots-txt","template-path":"/root/nuclei-templates/http/miscellaneous/robots-txt.yaml","info":{"name":"robots.txt file","author":["caspergn","thezakman"],"tags":["miscellaneous","misc","generic","vuln"],"severity":"info","metadata":{"max-request":2}},"type":"http","port":"80","scheme":"http","url":"/http://dvwa_dvwa_1/","path":"http://dvwa_dvwa_1/","matched-at":"http://dvwa_dvwa_1/robots.txt","request":"GET /robots.txt HTTP/1.1\r\nHost: dvwa_dvwa_1\r\nUser-Agent: Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n","response":"HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 25\r\nAccept-Ranges: bytes\r\nContent-Type: text/plain\r\nDate: Mon, 12 Jan 2026 13:47:53 GMT\r\nEtag: \"19-6483095a456b3\"\r\nLast-Modified: Mon, 12 Jan 2026 13:09:26 GMT\r\nServer: Apache/2.4.65 (Debian)\r\n\r\nUser-agent: *\nDisallow: /","ip":"172.18.0.3","timestamp":"2026-01-12T13:47:53.701952935Z","curl-command":"curl -X 'GET' -d '' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36' 'http://dvwa_dvwa_1/robots.txt'","matcher-status":true}
+{"template":"dns/nameserver-fingerprint.yaml","template-url":"https://cloud.projectdiscovery.io/public/nameserver-fingerprint","template-id":"nameserver-fingerprint","template-path":"/root/nuclei-templates/dns/nameserver-fingerprint.yaml","info":{"name":"NS Record Detection","author":["pdteam"],"tags":["dns","ns","discovery"],"description":"An NS record was detected. An NS record delegates a subdomain to a set of name servers.","severity":"info","metadata":{"max-request":1},"classification":{"cve-id":null,"cwe-id":["cwe-200"]}},"type":"dns","extracted-results":["j.root-servers.net.","a.root-servers.net.","m.root-servers.net.","g.root-servers.net.","h.root-servers.net.","i.root-servers.net.","c.root-servers.net.","d.root-servers.net.","k.root-servers.net.","e.root-servers.net.","l.root-servers.net.","b.root-servers.net.","f.root-servers.net."],"request":";; opcode: QUERY, status: NOERROR, id: 22389\n;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n\n;; QUESTION SECTION:\n;.\tIN\t NS\n","response":";; opcode: QUERY, status: NOERROR, id: 22389\n;; flags: qr rd ra; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 512\n\n;; QUESTION SECTION:\n;.\tIN\t NS\n\n;; ANSWER SECTION:\n.\t87203\tIN\tNS\tk.root-servers.net.\n.\t87203\tIN\tNS\te.root-servers.net.\n.\t87203\tIN\tNS\tl.root-servers.net.\n.\t87203\tIN\tNS\ta.root-servers.net.\n.\t87203\tIN\tNS\tm.root-servers.net.\n.\t87203\tIN\tNS\tg.root-servers.net.\n.\t87203\tIN\tNS\th.root-servers.net.\n.\t87203\tIN\tNS\ti.root-servers.net.\n.\t87203\tIN\tNS\tc.root-servers.net.\n.\t87203\tIN\tNS\tb.root-servers.net.\n.\t87203\tIN\tNS\tf.root-servers.net.\n.\t87203\tIN\tNS\tj.root-servers.net.\n.\t87203\tIN\tNS\td.root-servers.net.\n","timestamp":"2026-01-12T13:48:00.687696659Z","matcher-status":true}
diff --git a/unittests/scans/openvas/no_vuln.xml b/unittests/scans/openvas/no_vuln.xml
index 7f0ea2e69c9..544cfdb6c13 100644
--- a/unittests/scans/openvas/no_vuln.xml
+++ b/unittests/scans/openvas/no_vuln.xml
@@ -1 +1,146 @@
-
gpsHP-scan2023-10-04T21:34:09.251181Z00HP-scanXML9.0descendingseverityapply_overrides=0 levels=hml rows=-1 min_qod=70 first=1 sort-reverse=severity notes=1 overrides=1nistNVD Vulnerability Severity RatingsNone0.00.0Low0.13.9Medium4.06.9High7.010.0Done000000HP-scan0Target0Network Source Interfacesource_iface2023-09-25T10:46:09Z2023-09-25T10:46:09ZCoordinated Universal TimeUTC0000000000000000002023-09-25T10:54:26Z
\ No newline at end of file
+
+
+
+ gps
+
+ HP-scan
+
+ 2023-10-04T21:34:09.251181Z
+
+ 0
+ 0
+
+ HP-scan
+
+
+ XML
+
+
+
+ 9.0
+
+
+
+ descending
+ severity
+
+
+
+ apply_overrides=0 levels=hml rows=-1 min_qod=70 first=1 sort-reverse=severity notes=1 overrides=1
+
+
+
+ nist
+ NVD Vulnerability Severity Ratings
+
+ None
+ 0.0
+ 0.0
+
+
+ Low
+ 0.1
+ 3.9
+
+
+ Medium
+ 4.0
+ 6.9
+
+
+ High
+ 7.0
+ 10.0
+
+
+ Done
+
+ 0
+
+
+ 0
+
+
+ 0
+
+
+ 0
+
+
+ 0
+
+
+ 0
+
+
+ HP-scan
+
+
+ 0
+ Target
+
+
+
+
+
+
+
+
+
+ 0
+
+
+
+ Network Source Interface
+
+ source_iface
+
+
+
+
+ 2023-09-25T10:46:09Z
+ 2023-09-25T10:46:09Z
+ Coordinated Universal Time
+ UTC
+
+ 0
+
+
+
+ 0
+ 0
+ 0
+
+ 0
+ 0
+
+
+ 0
+ 0
+
+
+ 0
+ 0
+
+
+ 0
+ 0
+
+
+ 0
+ 0
+
+
+ 0
+ 0
+
+
+
+ 0
+ 0
+
+
+ 2023-09-25T10:54:26Z
+
+
+
diff --git a/unittests/scans/spotbugs/no_finding.xml b/unittests/scans/spotbugs/no_finding.xml
index 739fcc75b7c..6d4d001f3c4 100644
--- a/unittests/scans/spotbugs/no_finding.xml
+++ b/unittests/scans/spotbugs/no_finding.xml
@@ -1,8 +1,76 @@
-
-
- C:\Users\s.gioria\Documents\GoatKotlin\target\classesc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-web\2.4.0\spring-boot-starter-web-2.4.0.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter\2.4.0\spring-boot-starter-2.4.0.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot\2.4.0\spring-boot-2.4.0.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-autoconfigure\2.4.0\spring-boot-autoconfigure-2.4.0.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-logging\2.4.0\spring-boot-starter-logging-2.4.0.jarc:\workspace\tools\m2repository\ch\qos\logback\logback-classic\1.2.3\logback-classic-1.2.3.jarc:\workspace\tools\m2repository\ch\qos\logback\logback-core\1.2.3\logback-core-1.2.3.jarc:\workspace\tools\m2repository\org\apache\logging\log4j\log4j-to-slf4j\2.13.3\log4j-to-slf4j-2.13.3.jarc:\workspace\tools\m2repository\org\apache\logging\log4j\log4j-api\2.13.3\log4j-api-2.13.3.jarc:\workspace\tools\m2repository\org\slf4j\jul-to-slf4j\1.7.30\jul-to-slf4j-1.7.30.jarc:\workspace\tools\m2repository\jakarta\annotation\jakarta.annotation-api\1.3.5\jakarta.annotation-api-1.3.5.jarc:\workspace\tools\m2repository\org\yaml\snakeyaml\1.27\snakeyaml-1.27.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-json\2.4.0\spring-boot-starter-json-2.4.0.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\datatype\jackson-datatype-jdk8\2.11.3\jackson-datatype-jdk8-2.11.3.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\datatype\jackson-datatype-jsr310\2.11.3\jackson-datatype-jsr310-2.11.3.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\module\jackson-module-parameter-names\2.11.3\jackson-module-parameter-names-2.11.3.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-tomcat\2.4.0\spring-boot-starter-tomcat-2.4.0.jarc:\workspace\tools\m2repository\org\apache\tomcat\embed\tomcat-embed-core\9.0.39\tomcat-embed-core-9.0.39.jarc:\workspace\tools\m2repository\org\glassfish\jakarta.el\3.0.3\jakarta.el-3.0.3.jarc:\workspace\tools\m2repository\org\apache\tomcat\embed\tomcat-embed-websocket\9.0.39\tomcat-embed-websocket-9.0.39.jarc:\workspace\tools\m2repository\org\springframework\spring-web\5.3.1\spring-web-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-beans\5.3.1\spring-beans-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-webmvc\5.3.1\spring-webmvc-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-aop\5.3.1\spring-aop-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-context\5.3.1\spring-context-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-expression\5.3.1\spring-expression-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-webflux\2.4.0\spring-boot-starter-webflux-2.4.0.jarc:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-reactor-netty\2.4.0\spring-boot-starter-reactor-netty-2.4.0.jarc:\workspace\tools\m2repository\io\projectreactor\netty\reactor-netty-http\1.0.1\reactor-netty-http-1.0.1.jarc:\workspace\tools\m2repository\io\netty\netty-codec-http\4.1.54.Final\netty-codec-http-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-common\4.1.54.Final\netty-common-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-buffer\4.1.54.Final\netty-buffer-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-transport\4.1.54.Final\netty-transport-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-codec\4.1.54.Final\netty-codec-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-handler\4.1.54.Final\netty-handler-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-codec-http2\4.1.54.Final\netty-codec-http2-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-resolver-dns\4.1.54.Final\netty-resolver-dns-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-resolver\4.1.54.Final\netty-resolver-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-codec-dns\4.1.54.Final\netty-codec-dns-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-transport-native-epoll\4.1.54.Final\netty-transport-native-epoll-4.1.54.Final-linux-x86_64.jarc:\workspace\tools\m2repository\io\netty\netty-transport-native-unix-common\4.1.54.Final\netty-transport-native-unix-common-4.1.54.Final.jarc:\workspace\tools\m2repository\io\projectreactor\netty\reactor-netty-core\1.0.1\reactor-netty-core-1.0.1.jarc:\workspace\tools\m2repository\io\netty\netty-handler-proxy\4.1.54.Final\netty-handler-proxy-4.1.54.Final.jarc:\workspace\tools\m2repository\io\netty\netty-codec-socks\4.1.54.Final\netty-codec-socks-4.1.54.Final.jarc:\workspace\tools\m2repository\org\springframework\spring-webflux\5.3.1\spring-webflux-5.3.1.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\module\jackson-module-kotlin\2.11.3\jackson-module-kotlin-2.11.3.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-databind\2.11.3\jackson-databind-2.11.3.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-core\2.11.3\jackson-core-2.11.3.jarc:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-annotations\2.11.3\jackson-annotations-2.11.3.jarc:\workspace\tools\m2repository\io\projectreactor\kotlin\reactor-kotlin-extensions\1.1.0\reactor-kotlin-extensions-1.1.0.jarc:\workspace\tools\m2repository\io\projectreactor\reactor-core\3.4.0\reactor-core-3.4.0.jarc:\workspace\tools\m2repository\org\reactivestreams\reactive-streams\1.0.3\reactive-streams-1.0.3.jarc:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-reflect\1.4.10\kotlin-reflect-1.4.10.jarc:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib\1.4.10\kotlin-stdlib-1.4.10.jarc:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-common\1.4.10\kotlin-stdlib-common-1.4.10.jarc:\workspace\tools\m2repository\org\jetbrains\annotations\13.0\annotations-13.0.jarc:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-jdk8\1.4.10\kotlin-stdlib-jdk8-1.4.10.jarc:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-jdk7\1.4.10\kotlin-stdlib-jdk7-1.4.10.jarc:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-reactor\1.4.1\kotlinx-coroutines-reactor-1.4.1.jarc:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-core\1.4.1\kotlinx-coroutines-core-1.4.1.jarc:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-reactive\1.4.1\kotlinx-coroutines-reactive-1.4.1.jarc:\workspace\tools\m2repository\org\slf4j\slf4j-api\1.7.30\slf4j-api-1.7.30.jarc:\workspace\tools\m2repository\org\springframework\spring-core\5.3.1\spring-core-5.3.1.jarc:\workspace\tools\m2repository\org\springframework\spring-jcl\5.3.1\spring-jcl-5.3.1.jarc:\workspace\tools\m2repository\com\squareup\okhttp3\okhttp\4.10.0-RC1\okhttp-4.10.0-RC1.jarc:\workspace\tools\m2repository\com\squareup\okio\okio\2.9.0\okio-2.9.0.jar
-
- C:\Users\s.gioria\Documents\GoatKotlin\src\main\kotlin
- C:\Users\s.gioria\Documents\GoatKotlin\target\generated-sources\annotationsC:\Users\s.gioria\Documents\GoatKotlin\target
-
-
\ No newline at end of file
+
+
+
+ C:\Users\s.gioria\Documents\GoatKotlin\target\classes
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-web\2.4.0\spring-boot-starter-web-2.4.0.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter\2.4.0\spring-boot-starter-2.4.0.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot\2.4.0\spring-boot-2.4.0.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-autoconfigure\2.4.0\spring-boot-autoconfigure-2.4.0.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-logging\2.4.0\spring-boot-starter-logging-2.4.0.jar
+ c:\workspace\tools\m2repository\ch\qos\logback\logback-classic\1.2.3\logback-classic-1.2.3.jar
+ c:\workspace\tools\m2repository\ch\qos\logback\logback-core\1.2.3\logback-core-1.2.3.jar
+ c:\workspace\tools\m2repository\org\apache\logging\log4j\log4j-to-slf4j\2.13.3\log4j-to-slf4j-2.13.3.jar
+ c:\workspace\tools\m2repository\org\apache\logging\log4j\log4j-api\2.13.3\log4j-api-2.13.3.jar
+ c:\workspace\tools\m2repository\org\slf4j\jul-to-slf4j\1.7.30\jul-to-slf4j-1.7.30.jar
+ c:\workspace\tools\m2repository\jakarta\annotation\jakarta.annotation-api\1.3.5\jakarta.annotation-api-1.3.5.jar
+ c:\workspace\tools\m2repository\org\yaml\snakeyaml\1.27\snakeyaml-1.27.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-json\2.4.0\spring-boot-starter-json-2.4.0.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\datatype\jackson-datatype-jdk8\2.11.3\jackson-datatype-jdk8-2.11.3.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\datatype\jackson-datatype-jsr310\2.11.3\jackson-datatype-jsr310-2.11.3.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\module\jackson-module-parameter-names\2.11.3\jackson-module-parameter-names-2.11.3.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-tomcat\2.4.0\spring-boot-starter-tomcat-2.4.0.jar
+ c:\workspace\tools\m2repository\org\apache\tomcat\embed\tomcat-embed-core\9.0.39\tomcat-embed-core-9.0.39.jar
+ c:\workspace\tools\m2repository\org\glassfish\jakarta.el\3.0.3\jakarta.el-3.0.3.jar
+ c:\workspace\tools\m2repository\org\apache\tomcat\embed\tomcat-embed-websocket\9.0.39\tomcat-embed-websocket-9.0.39.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-web\5.3.1\spring-web-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-beans\5.3.1\spring-beans-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-webmvc\5.3.1\spring-webmvc-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-aop\5.3.1\spring-aop-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-context\5.3.1\spring-context-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-expression\5.3.1\spring-expression-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-webflux\2.4.0\spring-boot-starter-webflux-2.4.0.jar
+ c:\workspace\tools\m2repository\org\springframework\boot\spring-boot-starter-reactor-netty\2.4.0\spring-boot-starter-reactor-netty-2.4.0.jar
+ c:\workspace\tools\m2repository\io\projectreactor\netty\reactor-netty-http\1.0.1\reactor-netty-http-1.0.1.jar
+ c:\workspace\tools\m2repository\io\netty\netty-codec-http\4.1.54.Final\netty-codec-http-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-common\4.1.54.Final\netty-common-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-buffer\4.1.54.Final\netty-buffer-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-transport\4.1.54.Final\netty-transport-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-codec\4.1.54.Final\netty-codec-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-handler\4.1.54.Final\netty-handler-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-codec-http2\4.1.54.Final\netty-codec-http2-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-resolver-dns\4.1.54.Final\netty-resolver-dns-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-resolver\4.1.54.Final\netty-resolver-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-codec-dns\4.1.54.Final\netty-codec-dns-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-transport-native-epoll\4.1.54.Final\netty-transport-native-epoll-4.1.54.Final-linux-x86_64.jar
+ c:\workspace\tools\m2repository\io\netty\netty-transport-native-unix-common\4.1.54.Final\netty-transport-native-unix-common-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\projectreactor\netty\reactor-netty-core\1.0.1\reactor-netty-core-1.0.1.jar
+ c:\workspace\tools\m2repository\io\netty\netty-handler-proxy\4.1.54.Final\netty-handler-proxy-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\io\netty\netty-codec-socks\4.1.54.Final\netty-codec-socks-4.1.54.Final.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-webflux\5.3.1\spring-webflux-5.3.1.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\module\jackson-module-kotlin\2.11.3\jackson-module-kotlin-2.11.3.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-databind\2.11.3\jackson-databind-2.11.3.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-core\2.11.3\jackson-core-2.11.3.jar
+ c:\workspace\tools\m2repository\com\fasterxml\jackson\core\jackson-annotations\2.11.3\jackson-annotations-2.11.3.jar
+ c:\workspace\tools\m2repository\io\projectreactor\kotlin\reactor-kotlin-extensions\1.1.0\reactor-kotlin-extensions-1.1.0.jar
+ c:\workspace\tools\m2repository\io\projectreactor\reactor-core\3.4.0\reactor-core-3.4.0.jar
+ c:\workspace\tools\m2repository\org\reactivestreams\reactive-streams\1.0.3\reactive-streams-1.0.3.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-reflect\1.4.10\kotlin-reflect-1.4.10.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib\1.4.10\kotlin-stdlib-1.4.10.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-common\1.4.10\kotlin-stdlib-common-1.4.10.jar
+ c:\workspace\tools\m2repository\org\jetbrains\annotations\13.0\annotations-13.0.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-jdk8\1.4.10\kotlin-stdlib-jdk8-1.4.10.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlin\kotlin-stdlib-jdk7\1.4.10\kotlin-stdlib-jdk7-1.4.10.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-reactor\1.4.1\kotlinx-coroutines-reactor-1.4.1.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-core\1.4.1\kotlinx-coroutines-core-1.4.1.jar
+ c:\workspace\tools\m2repository\org\jetbrains\kotlinx\kotlinx-coroutines-reactive\1.4.1\kotlinx-coroutines-reactive-1.4.1.jar
+ c:\workspace\tools\m2repository\org\slf4j\slf4j-api\1.7.30\slf4j-api-1.7.30.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-core\5.3.1\spring-core-5.3.1.jar
+ c:\workspace\tools\m2repository\org\springframework\spring-jcl\5.3.1\spring-jcl-5.3.1.jar
+ c:\workspace\tools\m2repository\com\squareup\okhttp3\okhttp\4.10.0-RC1\okhttp-4.10.0-RC1.jar
+ c:\workspace\tools\m2repository\com\squareup\okio\okio\2.9.0\okio-2.9.0.jar
+
+ C:\Users\s.gioria\Documents\GoatKotlin\src\main\kotlin
+ C:\Users\s.gioria\Documents\GoatKotlin\target\generated-sources\annotations
+ C:\Users\s.gioria\Documents\GoatKotlin\target
+
+
diff --git a/unittests/scans/ssl_labs/ssl_labs_3des_v1.5.0.json b/unittests/scans/ssl_labs/ssl_labs_3des_v1.5.0.json
index 9d9cdfdbe97..10c20c2dd04 100644
--- a/unittests/scans/ssl_labs/ssl_labs_3des_v1.5.0.json
+++ b/unittests/scans/ssl_labs/ssl_labs_3des_v1.5.0.json
@@ -1,3 +1,1989 @@
[
-{"host":"3des.badssl.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634250781167,"testTime":1634250908125,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"104.154.89.105","serverName":"105.89.154.104.bc.googleusercontent.com","statusMessage":"Ready","grade":"C","gradeTrustIgnored":"C","hasWarnings":true,"isExceptional":false,"progress":100,"duration":126738,"delegation":1,"details":{"hostStartTime":1634250781167,"certChains":[{"id":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"],"trustPaths":[{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Mozilla","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Apple","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Android","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Java","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Windows","isTrusted":true}]}],"issues":0,"noSni":false},{"id":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trustPaths":[{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]}],"issues":2,"noSni":true}],"protocols":[{"id":769,"name":"TLS","version":"1.0"},{"id":770,"name":"TLS","version":"1.1"},{"id":771,"name":"TLS","version":"1.2"}],"suites":[{"protocol":769,"list":[{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":22,"name":"TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1}],"preference":true},{"protocol":770,"list":[{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":22,"name":"TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1}],"preference":true},{"protocol":771,"list":[{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":22,"name":"TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1}],"preference":true}],"noSniSuites":{"protocol":769,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},"namedGroups":{"list":[{"id":23,"name":"secp256r1","bits":256,"namedGroupType":"EC"}]},"serverSignature":"nginx/1.10.3 (Ubuntu)","prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":true,"renegSupport":2,"sessionResumption":1,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"http/1.1","supportsAlpn":true,"alpnProtocols":"http/1.1","sessionTickets":1,"ocspStapling":false,"sniRequired":true,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":1,"supportsAead":false,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Client does not support DH parameters > 1024 bits","attempts":1,"protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":-1,"dhG":-1,"dhYs":-1,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":22,"suiteName":"TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":49170,"suiteName":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":true,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"dhPrimes":["bbbc2dcad84674907c43fcf580e9cfdbd958a3f568b42d4b08eed4eb0fb3504c6c030276e710800c5ccbbaa8922614c5beeca565a5fdf1d287a2bc049be6778060e91a92a757e3048f68b076f7d36cc8f29ba5df81dc2ca725ece66270cc9a5035d8ceceef9ea0274a63ab1e58fafd4988d0f65d146757da071df045cfe16b9b"],"dhUsesKnownPrimes":2,"dhYsReuse":false,"ecdhParameterReuse":false,"logjam":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"status":"absent","directives":{}},"hstsPreloads":[{"source":"Chrome","hostname":"3des.badssl.com","status":"absent","sourceTime":1634249761945},{"source":"Edge","hostname":"3des.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"Firefox","hostname":"3des.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"IE","hostname":"3des.badssl.com","status":"absent","sourceTime":1634249703484}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://3des.badssl.com/","statusCode":200,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: 3des.badssl.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Server: nginx/1.10.3 (Ubuntu)","Date: Thu, 14 Oct 2021 22:33:10 GMT","Content-Type: text/html","Content-Length: 483","Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT","Connection: close","ETag: \"6164d5db-1e3\"","Cache-Control: no-store","Accept-Ranges: bytes"],"responseHeaders":[{"name":"Server","value":"nginx/1.10.3 (Ubuntu)"},{"name":"Date","value":"Thu, 14 Oct 2021 22:33:10 GMT"},{"name":"Content-Type","value":"text/html"},{"name":"Content-Length","value":"483"},{"name":"Last-Modified","value":"Tue, 12 Oct 2021 00:24:59 GMT"},{"name":"Connection","value":"close"},{"name":"ETag","value":"\"6164d5db-1e3\""},{"name":"Cache-Control","value":"no-store"},{"name":"Accept-Ranges","value":"bytes"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"zeroRTTEnabled":-1,"zombiePoodle":1,"goldenDoodle":1,"supportsCBC":true,"zeroLengthPaddingOracle":1,"sleepingPoodle":1}}],"certs":[{"id":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","subject":"CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US","serialNumber":"0af06cda37a60b641342f0a1eb1d59fd","commonNames":["*.badssl.com"],"altNames":["*.badssl.com","badssl.com"],"notBefore":1584921600000,"notAfter":1652788800000,"issuerSubject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/ssca-sha2-g6.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":0,"sct":true,"sha1Hash":"1845b216efd0839a1851a957325da336217049cb","sha256Hash":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"},{"id":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","subject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","serialNumber":"01fda3eb6eca75c888438b724bcfbc91","commonNames":["DigiCert SHA2 Secure Server CA"],"notBefore":1362744000000,"notAfter":1678276800000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/DigiCertGlobalRootCA.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"1fb86b1168ec743154062e8c9cc5b171a4b7ccb4","sha256Hash":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","pinSha256":"5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"},{"id":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","subject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","serialNumber":"083be056904246b1a1756ac95991c74a","commonNames":["DigiCert Global Root CA"],"notBefore":1163116800000,"notAfter":1952035200000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":256,"sct":false,"sha1Hash":"a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436","sha256Hash":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","pinSha256":"r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQG\r\nEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw\r\nHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAw\r\nMDAwMDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3\r\ndy5kaWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkq\r\nhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsBCSDMAZOn\r\nTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97nh6Vfe63SKMI2tavegw5\r\nBmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt43C/dxC//AH2hdmoRBBYMql1GNXRor5H\r\n4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7PT19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y\r\n7vrTC0LUq7dBMtoM1O/4gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQAB\r\no2MwYTAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbRTLtm\r\n8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUwDQYJKoZIhvcNAQEF\r\nBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/EsrhMAtudXH/vTBH1jLuG2cenTnmCmr\r\nEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIt\r\ntep3Sp+dWOIrWcBAI+0tKIJFPnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886\r\nUAb3LujEV0lsYSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"},{"id":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","subject":"CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US","serialNumber":"00cdbc5a4aec9767b1","commonNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"altNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"notBefore":1470691025000,"notAfter":1533763025000,"issuerSubject":"CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":12,"sct":false,"sha1Hash":"3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9","sha256Hash":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"}]}
-]
+ {
+ "host": "3des.badssl.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634250781167,
+ "testTime": 1634250908125,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "104.154.89.105",
+ "serverName": "105.89.154.104.bc.googleusercontent.com",
+ "statusMessage": "Ready",
+ "grade": "C",
+ "gradeTrustIgnored": "C",
+ "hasWarnings": true,
+ "isExceptional": false,
+ "progress": 100,
+ "duration": 126738,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634250781167,
+ "certChains": [
+ {
+ "id": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": true
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ },
+ {
+ "id": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ }
+ ],
+ "issues": 2,
+ "noSni": true
+ }
+ ],
+ "protocols": [
+ {
+ "id": 769,
+ "name": "TLS",
+ "version": "1.0"
+ },
+ {
+ "id": 770,
+ "name": "TLS",
+ "version": "1.1"
+ },
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 22,
+ "name": "TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 770,
+ "list": [
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 22,
+ "name": "TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 22,
+ "name": "TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ }
+ ],
+ "preference": true
+ }
+ ],
+ "noSniSuites": {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ "namedGroups": {
+ "list": [
+ {
+ "id": 23,
+ "name": "secp256r1",
+ "bits": 256,
+ "namedGroupType": "EC"
+ }
+ ]
+ },
+ "serverSignature": "nginx/1.10.3 (Ubuntu)",
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": true,
+ "renegSupport": 2,
+ "sessionResumption": 1,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "http/1.1",
+ "sessionTickets": 1,
+ "ocspStapling": false,
+ "sniRequired": true,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 1,
+ "supportsAead": false,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Client does not support DH parameters > 1024 bits",
+ "attempts": 1,
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": -1,
+ "dhG": -1,
+ "dhYs": -1,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 22,
+ "suiteName": "TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 49170,
+ "suiteName": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": true,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": 1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "dhPrimes": [
+ "bbbc2dcad84674907c43fcf580e9cfdbd958a3f568b42d4b08eed4eb0fb3504c6c030276e710800c5ccbbaa8922614c5beeca565a5fdf1d287a2bc049be6778060e91a92a757e3048f68b076f7d36cc8f29ba5df81dc2ca725ece66270cc9a5035d8ceceef9ea0274a63ab1e58fafd4988d0f65d146757da071df045cfe16b9b"
+ ],
+ "dhUsesKnownPrimes": 2,
+ "dhYsReuse": false,
+ "ecdhParameterReuse": false,
+ "logjam": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "status": "absent",
+ "directives": {}
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "3des.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249761945
+ },
+ {
+ "source": "Edge",
+ "hostname": "3des.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "Firefox",
+ "hostname": "3des.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "IE",
+ "hostname": "3des.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://3des.badssl.com/",
+ "statusCode": 200,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: 3des.badssl.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Server: nginx/1.10.3 (Ubuntu)",
+ "Date: Thu, 14 Oct 2021 22:33:10 GMT",
+ "Content-Type: text/html",
+ "Content-Length: 483",
+ "Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT",
+ "Connection: close",
+ "ETag: \"6164d5db-1e3\"",
+ "Cache-Control: no-store",
+ "Accept-Ranges: bytes"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Server",
+ "value": "nginx/1.10.3 (Ubuntu)"
+ },
+ {
+ "name": "Date",
+ "value": "Thu, 14 Oct 2021 22:33:10 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html"
+ },
+ {
+ "name": "Content-Length",
+ "value": "483"
+ },
+ {
+ "name": "Last-Modified",
+ "value": "Tue, 12 Oct 2021 00:24:59 GMT"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "ETag",
+ "value": "\"6164d5db-1e3\""
+ },
+ {
+ "name": "Cache-Control",
+ "value": "no-store"
+ },
+ {
+ "name": "Accept-Ranges",
+ "value": "bytes"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "zeroRTTEnabled": -1,
+ "zombiePoodle": 1,
+ "goldenDoodle": 1,
+ "supportsCBC": true,
+ "zeroLengthPaddingOracle": 1,
+ "sleepingPoodle": 1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "subject": "CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US",
+ "serialNumber": "0af06cda37a60b641342f0a1eb1d59fd",
+ "commonNames": [
+ "*.badssl.com"
+ ],
+ "altNames": [
+ "*.badssl.com",
+ "badssl.com"
+ ],
+ "notBefore": 1584921600000,
+ "notAfter": 1652788800000,
+ "issuerSubject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/ssca-sha2-g6.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": true,
+ "sha1Hash": "1845b216efd0839a1851a957325da336217049cb",
+ "sha256Hash": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "subject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "serialNumber": "01fda3eb6eca75c888438b724bcfbc91",
+ "commonNames": [
+ "DigiCert SHA2 Secure Server CA"
+ ],
+ "notBefore": 1362744000000,
+ "notAfter": 1678276800000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/DigiCertGlobalRootCA.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "1fb86b1168ec743154062e8c9cc5b171a4b7ccb4",
+ "sha256Hash": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "pinSha256": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "subject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "serialNumber": "083be056904246b1a1756ac95991c74a",
+ "commonNames": [
+ "DigiCert Global Root CA"
+ ],
+ "notBefore": 1163116800000,
+ "notAfter": 1952035200000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 256,
+ "sct": false,
+ "sha1Hash": "a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436",
+ "sha256Hash": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "pinSha256": "r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "subject": "CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US",
+ "serialNumber": "00cdbc5a4aec9767b1",
+ "commonNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "altNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "notBefore": 1470691025000,
+ "notAfter": 1533763025000,
+ "issuerSubject": "CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 12,
+ "sct": false,
+ "sha1Hash": "3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9",
+ "sha256Hash": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/ssl_labs/ssl_labs_dh1024_v1.5.0.json b/unittests/scans/ssl_labs/ssl_labs_dh1024_v1.5.0.json
index 5029546c42c..b9fbcf1bee9 100644
--- a/unittests/scans/ssl_labs/ssl_labs_dh1024_v1.5.0.json
+++ b/unittests/scans/ssl_labs/ssl_labs_dh1024_v1.5.0.json
@@ -1,3 +1,2005 @@
[
-{"host":"dh1024.badssl.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634250932604,"testTime":1634251018432,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"104.154.89.105","serverName":"105.89.154.104.bc.googleusercontent.com","statusMessage":"Ready","grade":"B","gradeTrustIgnored":"B","hasWarnings":false,"isExceptional":false,"progress":100,"duration":85623,"delegation":1,"details":{"hostStartTime":1634250932604,"certChains":[{"id":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"],"trustPaths":[{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Mozilla","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Apple","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Android","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Java","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Windows","isTrusted":true}]}],"issues":0,"noSni":false},{"id":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trustPaths":[{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]}],"issues":2,"noSni":true}],"protocols":[{"id":769,"name":"TLS","version":"1.0"},{"id":770,"name":"TLS","version":"1.1"},{"id":771,"name":"TLS","version":"1.2"}],"suites":[{"protocol":769,"list":[{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true},{"protocol":770,"list":[{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true},{"protocol":771,"list":[{"id":158,"name":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":159,"name":"TLS_DHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":103,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":107,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true}],"noSniSuites":{"protocol":769,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},"serverSignature":"nginx/1.10.3 (Ubuntu)","prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":true,"renegSupport":2,"sessionResumption":1,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"http/1.1","supportsAlpn":true,"alpnProtocols":"http/1.1","sessionTickets":1,"ocspStapling":false,"sniRequired":true,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Client does not support DH parameters > 1024 bits","attempts":1,"protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":-1,"dhG":-1,"dhYs":-1,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":true,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":-1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"dhPrimes":["9d3493b92001a44265dc3a58782bc6dca22c8f88d4dfb26c69886f3f04c3a2f32875f32ff8fb86ea3dc858dd20e0b5a80ec6a7fd9f8f2152a380675f45b384b6ed43b67ca8617aa2b4548262b6cbf08ea18b7092e16a7896de4cf6b2acd08bd1fb8166c9c7f7d734c8c6251ef831960a2628f7f617a398b72e0a61a906efdc8b"],"dhUsesKnownPrimes":0,"dhYsReuse":false,"logjam":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"status":"absent","directives":{}},"hstsPreloads":[{"source":"Chrome","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634249761945},{"source":"Edge","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"Firefox","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"IE","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634249703484}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://dh1024.badssl.com/","statusCode":200,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: dh1024.badssl.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Server: nginx/1.10.3 (Ubuntu)","Date: Thu, 14 Oct 2021 22:35:41 GMT","Content-Type: text/html","Content-Length: 573","Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT","Connection: close","ETag: \"6164d5db-23d\"","Cache-Control: no-store","Accept-Ranges: bytes"],"responseHeaders":[{"name":"Server","value":"nginx/1.10.3 (Ubuntu)"},{"name":"Date","value":"Thu, 14 Oct 2021 22:35:41 GMT"},{"name":"Content-Type","value":"text/html"},{"name":"Content-Length","value":"573"},{"name":"Last-Modified","value":"Tue, 12 Oct 2021 00:24:59 GMT"},{"name":"Connection","value":"close"},{"name":"ETag","value":"\"6164d5db-23d\""},{"name":"Cache-Control","value":"no-store"},{"name":"Accept-Ranges","value":"bytes"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"zeroRTTEnabled":-1,"zombiePoodle":-1,"goldenDoodle":-1,"supportsCBC":true,"zeroLengthPaddingOracle":-1,"sleepingPoodle":-1}}],"certs":[{"id":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","subject":"CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US","serialNumber":"0af06cda37a60b641342f0a1eb1d59fd","commonNames":["*.badssl.com"],"altNames":["*.badssl.com","badssl.com"],"notBefore":1584921600000,"notAfter":1652788800000,"issuerSubject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/ssca-sha2-g6.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":0,"sct":true,"sha1Hash":"1845b216efd0839a1851a957325da336217049cb","sha256Hash":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"},{"id":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","subject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","serialNumber":"01fda3eb6eca75c888438b724bcfbc91","commonNames":["DigiCert SHA2 Secure Server CA"],"notBefore":1362744000000,"notAfter":1678276800000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/DigiCertGlobalRootCA.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"1fb86b1168ec743154062e8c9cc5b171a4b7ccb4","sha256Hash":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","pinSha256":"5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"},{"id":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","subject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","serialNumber":"083be056904246b1a1756ac95991c74a","commonNames":["DigiCert Global Root CA"],"notBefore":1163116800000,"notAfter":1952035200000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":256,"sct":false,"sha1Hash":"a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436","sha256Hash":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","pinSha256":"r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"},{"id":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","subject":"CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US","serialNumber":"00cdbc5a4aec9767b1","commonNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"altNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"notBefore":1470691025000,"notAfter":1533763025000,"issuerSubject":"CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":12,"sct":false,"sha1Hash":"3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9","sha256Hash":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"}]}
-]
+ {
+ "host": "dh1024.badssl.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634250932604,
+ "testTime": 1634251018432,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "104.154.89.105",
+ "serverName": "105.89.154.104.bc.googleusercontent.com",
+ "statusMessage": "Ready",
+ "grade": "B",
+ "gradeTrustIgnored": "B",
+ "hasWarnings": false,
+ "isExceptional": false,
+ "progress": 100,
+ "duration": 85623,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634250932604,
+ "certChains": [
+ {
+ "id": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": true
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ },
+ {
+ "id": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ }
+ ],
+ "issues": 2,
+ "noSni": true
+ }
+ ],
+ "protocols": [
+ {
+ "id": 769,
+ "name": "TLS",
+ "version": "1.0"
+ },
+ {
+ "id": 770,
+ "name": "TLS",
+ "version": "1.1"
+ },
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 770,
+ "list": [
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 158,
+ "name": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 159,
+ "name": "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 103,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 107,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ }
+ ],
+ "noSniSuites": {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ "serverSignature": "nginx/1.10.3 (Ubuntu)",
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": true,
+ "renegSupport": 2,
+ "sessionResumption": 1,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "http/1.1",
+ "sessionTickets": 1,
+ "ocspStapling": false,
+ "sniRequired": true,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Client does not support DH parameters > 1024 bits",
+ "attempts": 1,
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": -1,
+ "dhG": -1,
+ "dhYs": -1,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": true,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": -1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "dhPrimes": [
+ "9d3493b92001a44265dc3a58782bc6dca22c8f88d4dfb26c69886f3f04c3a2f32875f32ff8fb86ea3dc858dd20e0b5a80ec6a7fd9f8f2152a380675f45b384b6ed43b67ca8617aa2b4548262b6cbf08ea18b7092e16a7896de4cf6b2acd08bd1fb8166c9c7f7d734c8c6251ef831960a2628f7f617a398b72e0a61a906efdc8b"
+ ],
+ "dhUsesKnownPrimes": 0,
+ "dhYsReuse": false,
+ "logjam": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "status": "absent",
+ "directives": {}
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249761945
+ },
+ {
+ "source": "Edge",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "Firefox",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "IE",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://dh1024.badssl.com/",
+ "statusCode": 200,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: dh1024.badssl.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Server: nginx/1.10.3 (Ubuntu)",
+ "Date: Thu, 14 Oct 2021 22:35:41 GMT",
+ "Content-Type: text/html",
+ "Content-Length: 573",
+ "Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT",
+ "Connection: close",
+ "ETag: \"6164d5db-23d\"",
+ "Cache-Control: no-store",
+ "Accept-Ranges: bytes"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Server",
+ "value": "nginx/1.10.3 (Ubuntu)"
+ },
+ {
+ "name": "Date",
+ "value": "Thu, 14 Oct 2021 22:35:41 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html"
+ },
+ {
+ "name": "Content-Length",
+ "value": "573"
+ },
+ {
+ "name": "Last-Modified",
+ "value": "Tue, 12 Oct 2021 00:24:59 GMT"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "ETag",
+ "value": "\"6164d5db-23d\""
+ },
+ {
+ "name": "Cache-Control",
+ "value": "no-store"
+ },
+ {
+ "name": "Accept-Ranges",
+ "value": "bytes"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "zeroRTTEnabled": -1,
+ "zombiePoodle": -1,
+ "goldenDoodle": -1,
+ "supportsCBC": true,
+ "zeroLengthPaddingOracle": -1,
+ "sleepingPoodle": -1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "subject": "CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US",
+ "serialNumber": "0af06cda37a60b641342f0a1eb1d59fd",
+ "commonNames": [
+ "*.badssl.com"
+ ],
+ "altNames": [
+ "*.badssl.com",
+ "badssl.com"
+ ],
+ "notBefore": 1584921600000,
+ "notAfter": 1652788800000,
+ "issuerSubject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/ssca-sha2-g6.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": true,
+ "sha1Hash": "1845b216efd0839a1851a957325da336217049cb",
+ "sha256Hash": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "subject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "serialNumber": "01fda3eb6eca75c888438b724bcfbc91",
+ "commonNames": [
+ "DigiCert SHA2 Secure Server CA"
+ ],
+ "notBefore": 1362744000000,
+ "notAfter": 1678276800000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/DigiCertGlobalRootCA.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "1fb86b1168ec743154062e8c9cc5b171a4b7ccb4",
+ "sha256Hash": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "pinSha256": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "subject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "serialNumber": "083be056904246b1a1756ac95991c74a",
+ "commonNames": [
+ "DigiCert Global Root CA"
+ ],
+ "notBefore": 1163116800000,
+ "notAfter": 1952035200000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 256,
+ "sct": false,
+ "sha1Hash": "a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436",
+ "sha256Hash": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "pinSha256": "r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "subject": "CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US",
+ "serialNumber": "00cdbc5a4aec9767b1",
+ "commonNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "altNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "notBefore": 1470691025000,
+ "notAfter": 1533763025000,
+ "issuerSubject": "CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 12,
+ "sct": false,
+ "sha1Hash": "3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9",
+ "sha256Hash": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/ssl_labs/ssl_labs_multiple_v1.5.0.json b/unittests/scans/ssl_labs/ssl_labs_multiple_v1.5.0.json
index ccf992dec46..33aaca21aaf 100644
--- a/unittests/scans/ssl_labs/ssl_labs_multiple_v1.5.0.json
+++ b/unittests/scans/ssl_labs/ssl_labs_multiple_v1.5.0.json
@@ -1,7 +1,6286 @@
[
-{"host":"defectdojo.mevitae.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634286894971,"testTime":1634286967009,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"51.132.215.114","statusMessage":"Ready","grade":"A+","gradeTrustIgnored":"A+","hasWarnings":false,"isExceptional":true,"progress":100,"duration":71687,"delegation":1,"details":{"hostStartTime":1634286894971,"certChains":[{"id":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"],"trustPaths":[{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Mozilla","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Apple","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Android","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Java","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Windows","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]}],"issues":0,"noSni":false}],"protocols":[{"id":771,"name":"TLS","version":"1.2"},{"id":772,"name":"TLS","version":"1.3"}],"suites":[{"protocol":771,"list":[{"id":49199,"name":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":49200,"name":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":52392,"name":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"}],"preference":true,"chaCha20Preference":false},{"protocol":772,"list":[{"id":4866,"name":"TLS_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":4867,"name":"TLS_CHACHA20_POLY1305_SHA256","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":4865,"name":"TLS_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"}],"preference":true,"chaCha20Preference":false}],"namedGroups":{"list":[{"id":29,"name":"x25519","bits":256,"namedGroupType":"EC"},{"id":23,"name":"secp256r1","bits":256,"namedGroupType":"EC"},{"id":30,"name":"x448","bits":224,"namedGroupType":"EC"},{"id":25,"name":"secp521r1","bits":521,"namedGroupType":"EC"},{"id":24,"name":"secp384r1","bits":384,"namedGroupType":"EC"}],"preference":true},"prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":false,"renegSupport":2,"sessionResumption":2,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"h2 http/1.1","supportsAlpn":true,"alpnProtocols":"h2 http/1.1","sessionTickets":0,"ocspStapling":false,"sniRequired":false,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":false,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"ecdhParameterReuse":false,"logjam":false,"chaCha20Preference":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"header":"max-age=15724800; includeSubDomains","status":"present","maxAge":15724800,"includeSubDomains":true,"directives":{"includesubdomains":"","max-age":"15724800"}},"hstsPreloads":[{"source":"Chrome","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634286362807},{"source":"Edge","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634286303393},{"source":"Firefox","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634286303393},{"source":"IE","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634286303393}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://defectdojo.mevitae.com/","statusCode":302,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: defectdojo.mevitae.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 302 Found","responseHeadersRaw":["Date: Fri, 15 Oct 2021 08:35:07 GMT","Content-Type: text/html; charset=utf-8","Content-Length: 0","Connection: close","Location: /login?next=/","X-Frame-Options: DENY","X-Content-Type-Options: nosniff","X-XSS-Protection: 1; mode=block","Referrer-Policy: same-origin","Vary: Cookie","Strict-Transport-Security: max-age=15724800; includeSubDomains"],"responseHeaders":[{"name":"Date","value":"Fri, 15 Oct 2021 08:35:07 GMT"},{"name":"Content-Type","value":"text/html; charset=utf-8"},{"name":"Content-Length","value":"0"},{"name":"Connection","value":"close"},{"name":"Location","value":"/login?next=/"},{"name":"X-Frame-Options","value":"DENY"},{"name":"X-Content-Type-Options","value":"nosniff"},{"name":"X-XSS-Protection","value":"1; mode=block"},{"name":"Referrer-Policy","value":"same-origin"},{"name":"Vary","value":"Cookie"},{"name":"Strict-Transport-Security","value":"max-age=15724800; includeSubDomains"}],"fragileServer":false},{"requestUrl":"https://defectdojo.mevitae.com/login?next=/","statusCode":200,"requestLine":"GET /login?next=/ HTTP/1.1","requestHeaders":["Host: defectdojo.mevitae.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Date: Fri, 15 Oct 2021 08:35:08 GMT","Content-Type: text/html; charset=utf-8","Content-Length: 14387","Connection: close","Expires: Fri, 15 Oct 2021 08:35:08 GMT","Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private","Vary: Cookie","X-Frame-Options: DENY","X-Content-Type-Options: nosniff","X-XSS-Protection: 1; mode=block","Referrer-Policy: same-origin","Set-Cookie: csrftoken=HBKSaqFbola5BCcovUiXjVAzIGRNRRTe9199jbrM2CAicJlAAtTKsXBpjEUsoV9j; expires=Fri, 14 Oct 2022 08:35:08 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure","Strict-Transport-Security: max-age=15724800; includeSubDomains"],"responseHeaders":[{"name":"Date","value":"Fri, 15 Oct 2021 08:35:08 GMT"},{"name":"Content-Type","value":"text/html; charset=utf-8"},{"name":"Content-Length","value":"14387"},{"name":"Connection","value":"close"},{"name":"Expires","value":"Fri, 15 Oct 2021 08:35:08 GMT"},{"name":"Cache-Control","value":"max-age=0, no-cache, no-store, must-revalidate, private"},{"name":"Vary","value":"Cookie"},{"name":"X-Frame-Options","value":"DENY"},{"name":"X-Content-Type-Options","value":"nosniff"},{"name":"X-XSS-Protection","value":"1; mode=block"},{"name":"Referrer-Policy","value":"same-origin"},{"name":"Set-Cookie","value":"csrftoken=HBKSaqFbola5BCcovUiXjVAzIGRNRRTe9199jbrM2CAicJlAAtTKsXBpjEUsoV9j; expires=Fri, 14 Oct 2022 08:35:08 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure"},{"name":"Strict-Transport-Security","value":"max-age=15724800; includeSubDomains"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"implementsTLS13MandatoryCS":true,"zeroRTTEnabled":0,"zombiePoodle":1,"goldenDoodle":1,"supportsCBC":false,"zeroLengthPaddingOracle":1,"sleepingPoodle":1}}],"certs":[{"id":"71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","subject":"CN=skf.mevitae.com","serialNumber":"0329489b282e20d595971c60174d072022f3","commonNames":["skf.mevitae.com"],"altNames":["defectdojo.mevitae.com","dependency-track.mevitae.com","skf.mevitae.com"],"notBefore":1631799892000,"notAfter":1639575891000,"issuerSubject":"CN=R3, O=Let's Encrypt, C=US","sigAlg":"SHA256withRSA","revocationInfo":2,"ocspURIs":["http://r3.o.lencr.org"],"revocationStatus":2,"crlRevocationStatus":4,"ocspRevocationStatus":2,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":0,"sct":true,"sha1Hash":"7979351ae5fdb82e685f574df8ff733412568719","sha256Hash":"71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","pinSha256":"HgGgw37Y1W4J2GyPIhfPzqPIxtoq27BUmlVR4tv5qxI=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nTUuo8qtCAI4=\r\n-----END CERTIFICATE-----\n"},{"id":"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","subject":"CN=R3, O=Let's Encrypt, C=US","serialNumber":"00912b084acf0c18a753f6d62e25a75f5a","commonNames":["R3"],"notBefore":1599177600000,"notAfter":1757952000000,"issuerSubject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","sigAlg":"SHA256withRSA","revocationInfo":1,"crlURIs":["http://x1.c.lencr.org/"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":4,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"a053375bfe84e8b748782c7cee15827a6af5a405","sha256Hash":"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","pinSha256":"jQJTbIh0grw0/1TkHSumWb+Fs0Ggogr621gT3PvPKG0=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UE\r\nBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQD\r\nEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQG\r\nEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEB\r\nAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXI\r\no9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzh\r\nm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpy\r\nb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3\r\nP51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIB\r\nBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB\r\n/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0\r\nWeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gx\r\nLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIG\r\nA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5H\r\nPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8\r\nkc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz\r\nCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEK\r\nIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/\r\nwFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4\r\njnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJo\r\ni5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxP\r\nFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB\r\n3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\r\n-----END CERTIFICATE-----\n"},{"id":"6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","subject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","serialNumber":"4001772137d4e942b8ee76aa3c640ab7","commonNames":["ISRG Root X1"],"notBefore":1611170043000,"notAfter":1727720043000,"issuerSubject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","sigAlg":"SHA256withRSA","revocationInfo":1,"crlURIs":["http://crl.identrust.com/DSTROOTCAX3CRL.crl"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":4,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"933c6ddee95c9c41a40f9f50493d82be03ad87bf","sha256Hash":"6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","pinSha256":"C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=","keyAlg":"RSA","keySize":4096,"keyStrength":4096,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n6GtPAQw4dy753ec5\r\n-----END CERTIFICATE-----\n"},{"id":"96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6","subject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","serialNumber":"008210cfb0d240e3594463e0bb63828b00","commonNames":["ISRG Root X1"],"notBefore":1433415878000,"notAfter":2064567878000,"issuerSubject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"cabd2a79a1076a31f21d253635cb039d4329a5e8","sha256Hash":"96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6","pinSha256":"C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=","keyAlg":"RSA","keySize":4096,"keyStrength":4096,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nm+kXQ99b21/+jh5Xos1AnX5iItreGCc=\r\n-----END CERTIFICATE-----\n"},{"id":"0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739","subject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","serialNumber":"44afb080d6a327ba893039862ef8406b","commonNames":["DST Root CA X3"],"notBefore":970348339000,"notAfter":1633010475000,"issuerSubject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":260,"sct":false,"sha1Hash":"dac9024f54d8f6df94935fb1732638ca6ad77c13","sha256Hash":"0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739","pinSha256":"Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIDSjCCAjKgAwIBAgIQRK+wgNajJ7qJMDmGLvhAazANBgkqhkiG9w0BAQUFADA/MSQwIgYDVQQK\r\nExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4X\r\nDTAwMDkzMDIxMTIxOVoXDTIxMDkzMDE0MDExNVowPzEkMCIGA1UEChMbRGlnaXRhbCBTaWduYXR1\r\ncmUgVHJ1c3QgQ28uMRcwFQYDVQQDEw5EU1QgUm9vdCBDQSBYMzCCASIwDQYJKoZIhvcNAQEBBQAD\r\nggEPADCCAQoCggEBAN+v6ZdQCINXtMxiZfaQguzH0yxrMMpb7NnDfcdAwRgUi+DoM3ZJKuM/IUmT\r\nrE4Orz5Iy2Xu/NMhD2XSKtkyj4zl93ewEnu1lcCJo6m67XMuegwGMoOifooUMM0RoOEqOLl5CjH9\r\nUL2AZd+3UWODyOKIYepLYYHsUmu5ouJLGiifSKOeDNoJjj4XLh7dIN9bxiqKqy69cK3FCxolkHRy\r\nxXtqqzTWMIn/5WgTe1QLyNau7Fqckh49ZLOMxt+/yUFw7BZy1SbsOFU5Q9D8/RhcQPGX69Wam40d\r\nutolucbY38EVAjqr2m7xPi71XAicPNaDaeQQmxkqtilX4+U9m5/wAl0CAwEAAaNCMEAwDwYDVR0T\r\nAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFMSnsaR7LHH62+FLkHX/xBVghYkQ\r\nMA0GCSqGSIb3DQEBBQUAA4IBAQCjGiybFwBcqR7uKGY3Or+Dxz9LwwmglSBd49lZRNI+DT69ikug\r\ndB/OEIKcdBodfpga3csTS7MgROSR6cz8faXbauX+5v3gTt23ADq1cEmv8uXrAvHRAosZy5Q6XkjE\r\nGB5YGV8eAlrwDPGxrancWYaLbumR9YbK+rlmM6pZW87ipxZzR8srzJmwN0jP41ZL9c8PDHIyh8bw\r\nRLtTcm1D9SZImlJnt1ir/md2cXjbDaJWFBM5JDGFoqgCWjBH4d1QB7wCCZAA62RjYJsWvIjJEubS\r\nfZGL+T0yjWW06XyxV3bqxbYoOb8VZRzI9neWagqNdwvYkQsEjgfbKbYK7p2CNTUQ\r\n-----END CERTIFICATE-----\n"}]}
-,
-{"host":"dh1024.badssl.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634286891697,"testTime":1634286978819,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"104.154.89.105","serverName":"105.89.154.104.bc.googleusercontent.com","statusMessage":"Ready","grade":"B","gradeTrustIgnored":"B","hasWarnings":false,"isExceptional":false,"progress":100,"duration":87023,"delegation":1,"details":{"hostStartTime":1634286891697,"certChains":[{"id":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"],"trustPaths":[{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Mozilla","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Apple","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Android","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Java","isTrusted":true}]},{"certIds":["9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Windows","isTrusted":true}]}],"issues":0,"noSni":false},{"id":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trustPaths":[{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]}],"issues":2,"noSni":true}],"protocols":[{"id":769,"name":"TLS","version":"1.0"},{"id":770,"name":"TLS","version":"1.1"},{"id":771,"name":"TLS","version":"1.2"}],"suites":[{"protocol":769,"list":[{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true},{"protocol":770,"list":[{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true},{"protocol":771,"list":[{"id":158,"name":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":159,"name":"TLS_DHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":103,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":107,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":1024,"dhBits":128,"dhP":128,"dhG":1,"dhYs":128,"q":1}],"preference":true}],"noSniSuites":{"protocol":769,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},"serverSignature":"nginx/1.10.3 (Ubuntu)","prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":true,"renegSupport":2,"sessionResumption":1,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"http/1.1","supportsAlpn":true,"alpnProtocols":"http/1.1","sessionTickets":1,"ocspStapling":false,"sniRequired":true,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":127,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Client does not support DH parameters > 1024 bits","attempts":1,"protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":-1,"dhG":-1,"dhYs":-1,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":103,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":8192,"dhBits":1024,"dhP":128,"dhG":1,"dhYs":128,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":true,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":-1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"dhPrimes":["9d3493b92001a44265dc3a58782bc6dca22c8f88d4dfb26c69886f3f04c3a2f32875f32ff8fb86ea3dc858dd20e0b5a80ec6a7fd9f8f2152a380675f45b384b6ed43b67ca8617aa2b4548262b6cbf08ea18b7092e16a7896de4cf6b2acd08bd1fb8166c9c7f7d734c8c6251ef831960a2628f7f617a398b72e0a61a906efdc8b"],"dhUsesKnownPrimes":0,"dhYsReuse":false,"logjam":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"status":"absent","directives":{}},"hstsPreloads":[{"source":"Chrome","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634286362807},{"source":"Edge","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634286303393},{"source":"Firefox","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634286303393},{"source":"IE","hostname":"dh1024.badssl.com","status":"absent","sourceTime":1634286303393}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://dh1024.badssl.com/","statusCode":200,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: dh1024.badssl.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Server: nginx/1.10.3 (Ubuntu)","Date: Fri, 15 Oct 2021 08:35:00 GMT","Content-Type: text/html","Content-Length: 573","Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT","Connection: close","ETag: \"6164d5db-23d\"","Cache-Control: no-store","Accept-Ranges: bytes"],"responseHeaders":[{"name":"Server","value":"nginx/1.10.3 (Ubuntu)"},{"name":"Date","value":"Fri, 15 Oct 2021 08:35:00 GMT"},{"name":"Content-Type","value":"text/html"},{"name":"Content-Length","value":"573"},{"name":"Last-Modified","value":"Tue, 12 Oct 2021 00:24:59 GMT"},{"name":"Connection","value":"close"},{"name":"ETag","value":"\"6164d5db-23d\""},{"name":"Cache-Control","value":"no-store"},{"name":"Accept-Ranges","value":"bytes"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"zeroRTTEnabled":-1,"zombiePoodle":-1,"goldenDoodle":-1,"supportsCBC":true,"zeroLengthPaddingOracle":-1,"sleepingPoodle":-1}}],"certs":[{"id":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","subject":"CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US","serialNumber":"0af06cda37a60b641342f0a1eb1d59fd","commonNames":["*.badssl.com"],"altNames":["*.badssl.com","badssl.com"],"notBefore":1584921600000,"notAfter":1652788800000,"issuerSubject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/ssca-sha2-g6.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":0,"sct":true,"sha1Hash":"1845b216efd0839a1851a957325da336217049cb","sha256Hash":"9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"},{"id":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","subject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","serialNumber":"01fda3eb6eca75c888438b724bcfbc91","commonNames":["DigiCert SHA2 Secure Server CA"],"notBefore":1362744000000,"notAfter":1678276800000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/DigiCertGlobalRootCA.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":2,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"1fb86b1168ec743154062e8c9cc5b171a4b7ccb4","sha256Hash":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","pinSha256":"5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"},{"id":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","subject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","serialNumber":"083be056904246b1a1756ac95991c74a","commonNames":["DigiCert Global Root CA"],"notBefore":1163116800000,"notAfter":1952035200000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":256,"sct":false,"sha1Hash":"a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436","sha256Hash":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","pinSha256":"r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"},{"id":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","subject":"CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US","serialNumber":"00cdbc5a4aec9767b1","commonNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"altNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"notBefore":1470691025000,"notAfter":1533763025000,"issuerSubject":"CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":12,"sct":false,"sha1Hash":"3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9","sha256Hash":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"}]}
-,
-{"host":"revoked.badssl.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634286893880,"testTime":1634287030951,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"104.154.89.105","serverName":"105.89.154.104.bc.googleusercontent.com","statusMessage":"Ready","grade":"T","gradeTrustIgnored":"B","hasWarnings":false,"isExceptional":false,"progress":100,"duration":136965,"delegation":1,"details":{"hostStartTime":1634286893880,"certChains":[{"id":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"],"trustPaths":[{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"validity check failed"}]}],"issues":0,"noSni":false},{"id":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trustPaths":[{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]}],"issues":2,"noSni":true}],"protocols":[{"id":769,"name":"TLS","version":"1.0"},{"id":770,"name":"TLS","version":"1.1"},{"id":771,"name":"TLS","version":"1.2"}],"suites":[{"protocol":769,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},{"protocol":770,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},{"protocol":771,"list":[{"id":49199,"name":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"id":49200,"name":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"id":158,"name":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256},{"id":159,"name":"TLS_DHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256},{"id":49191,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49192,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":103,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":107,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":156,"name":"TLS_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"q":1},{"id":157,"name":"TLS_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"q":1},{"id":60,"name":"TLS_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"q":1},{"id":61,"name":"TLS_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true}],"namedGroups":{"list":[{"id":23,"name":"secp256r1","bits":256,"namedGroupType":"EC"}]},"serverSignature":"nginx/1.10.3 (Ubuntu)","prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":true,"renegSupport":2,"sessionResumption":1,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"http/1.1","supportsAlpn":true,"alpnProtocols":"http/1.1","sessionTickets":1,"ocspStapling":false,"sniRequired":true,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Client does not support DH parameters > 1024 bits","attempts":1,"protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":-1,"dhG":-1,"dhYs":-1,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":true,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"dhPrimes":["b9e5e830ab79110c49ff919fbf2301d0725d7a6455edd482ccacb5aa0644e864ebc5ce3a689860ed9503bb9a7789877e3e8e16d79a07475ccd8575f759e88570a5e7f5f1ae0d181a3c8df3a85695f094f7c6217c756e5326eb9c35a62c93b94e8579781d2fa97e62a20ebecf96301cab61e0fa507250efcc6135f78ebbb196178f8d4f9b98d003cbe37446e9b1d5a18e53b267cb8e67bc25607451b752a383ea21f12fb99a9d28bee93a8a9afd09a744ea26a5c4bc1e68af83dd69209374dee028a1b03731b83d8ae43c04bed1358cc8ef45c15f618baa370da8c82b98e9aed8313a925706ccec507e09f6e57959a907bb31f3a7c9d44c888bf850d6e5bee163"],"dhUsesKnownPrimes":0,"dhYsReuse":false,"ecdhParameterReuse":false,"logjam":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"status":"absent","directives":{}},"hstsPreloads":[{"source":"Chrome","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634286362807},{"source":"Edge","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634286303393},{"source":"Firefox","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634286303393},{"source":"IE","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634286303393}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://revoked.badssl.com/","statusCode":200,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: revoked.badssl.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Server: nginx/1.10.3 (Ubuntu)","Date: Fri, 15 Oct 2021 08:35:02 GMT","Content-Type: text/html","Content-Length: 575","Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT","Connection: close","ETag: \"6164d5db-23f\"","Cache-Control: no-store","Accept-Ranges: bytes"],"responseHeaders":[{"name":"Server","value":"nginx/1.10.3 (Ubuntu)"},{"name":"Date","value":"Fri, 15 Oct 2021 08:35:02 GMT"},{"name":"Content-Type","value":"text/html"},{"name":"Content-Length","value":"575"},{"name":"Last-Modified","value":"Tue, 12 Oct 2021 00:24:59 GMT"},{"name":"Connection","value":"close"},{"name":"ETag","value":"\"6164d5db-23f\""},{"name":"Cache-Control","value":"no-store"},{"name":"Accept-Ranges","value":"bytes"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"zeroRTTEnabled":-1,"zombiePoodle":1,"goldenDoodle":1,"supportsCBC":true,"zeroLengthPaddingOracle":1,"sleepingPoodle":1}}],"certs":[{"id":"a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","subject":"CN=revoked.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US","serialNumber":"0371b58a86f6ce9c3ecb7bf42f9208fc","commonNames":["revoked.badssl.com"],"altNames":["revoked.badssl.com","www.revoked.badssl.com"],"notBefore":1570147200000,"notAfter":1633694400000,"issuerSubject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/ssca-sha2-g6.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":4,"sct":true,"sha1Hash":"23fc13ba6f27bf8dd1761bda7bb41921f59c21f7","sha256Hash":"a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","pinSha256":"xpENC6nt31kzNBSf7f6HOF83tiU1S7Q5XAriyN9I4Xw=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIGvzCCBaegAwIBAgIQA3G1iob2zpw+y3v0L5II/DANBgkqhkiG9w0BAQsFADBNMQswCQYDVQQG\r\nEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5EaWdpQ2VydCBTSEEyIFNlY3Vy\r\nZSBTZXJ2ZXIgQ0EwHhcNMTkxMDA0MDAwMDAwWhcNMjExMDA4MTIwMDAwWjB0MQswCQYDVQQGEwJV\r\nUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEVMBMGA1UEBxMMV2FsbnV0IENyZWVrMRwwGgYDVQQKExNM\r\ndWNhcyBHYXJyb24gVG9ycmVzMRswGQYDVQQDExJyZXZva2VkLmJhZHNzbC5jb20wggEiMA0GCSqG\r\nSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Ljkn9nZW+vmCL6At8tAyGZlV3IlElvdzI6/3pF4+dL9Z\r\nec1fC+eP+wMZv4+eY9L/Anx2/hbpAvyGkF+YXNaaui6V6NilxfScnae53rhKcWL9Kih9Aq9G1g0d\r\ncWHZTNuXFQA09FOBvI6UOd7YvkJ/JOoCU8ZbgD4RLtLZC20Yhqwh1nfZSKlPo1sd86U2ZNZNH0a3\r\n8zUQ9XtFOt2kGNu9o07DEJsZhOWWlZtd51ZyqyeFaRTc4V42zWnKc8CCB338fo0u+8vJeS6XNkMP\r\nFpRFDr3TCWvZ4AP+KgAQm5c48FMRXo165qG+LjKp/2NPoMbqNbhZ5KtDokjAGggRvmzDAgMBAAGj\r\nggNyMIIDbjAfBgNVHSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUOE25xq19\r\nbGjCX3XXG27LpumeOq0wNQYDVR0RBC4wLIIScmV2b2tlZC5iYWRzc2wuY29tghZ3d3cucmV2b2tl\r\nZC5iYWRzc2wuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH\r\nAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1n\r\nNi5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwG\r\nA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0\r\nLmNvbS9DUFMwCAYGZ4EMAQIDMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0cDovL29j\r\nc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v\r\nRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5\r\nAgQCBIIBbQSCAWkBZwB1AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABbZjwwc8A\r\nAAQDAEYwRAIgWPi87t5MzJnvLDJGmCppeQwyHa1VkvAG811Mg19KbcsCIDpbsejn8Feo/pD1g3xU\r\nHm9y2a5K3ZT2qOI+FfwaNcm7AHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFt\r\nmPDCOgAABAMARzBFAiEAmciNTmK3x9F52b+jyQonojj5PR3UTX7I1EY2yrbyDVsCIDhrUCuwgpjK\r\nzdEkKXC8pTrPT750awtW28nCTZLaCVb1AHYARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2\r\ngagAAAFtmPDBQQAABAMARzBFAiEAwXnVkwbWLzukEmOVbs8IQHiQaERcC3RD7IrKHt4dUvMCIFfU\r\nv6IL18E/ROuuFQYDwZrvDpbCjJdvFw9Cb++GhzzBMA0GCSqGSIb3DQEBCwUAA4IBAQAXzncD0qMl\r\nuMFZDLOxPzev4B56a0EW7X5YJnyy32UVms+VAp5TDDN1kAxmphecVWRc5DpEn+acXM3hHzx0hBfb\r\nYYpAANy96MRgGg3qYIN14OV8QzGIIxCRVDzH3f7kQR1bgZvCQC6fs3JnRJ8lOhCFNnktylrwV1p4\r\n8DxxBULjI1oYtXKikEdxs7ZgulOIoVFCSPtzF+MeSwyqYv8IOCMAvbctgnsuo0eekLyVlJOTe7Cw\r\n+hjz5nYX5yCc2wFu0vlL0kw8d6DaS1isZBZ5p7fCfVZfW4WLJdgxYgATKoTkxVFpcTOr4TodGE3G\r\n8fOu6G/BknS9r3g5pLpWaNc6NtqK\r\n-----END CERTIFICATE-----\n"},{"id":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","subject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","serialNumber":"01fda3eb6eca75c888438b724bcfbc91","commonNames":["DigiCert SHA2 Secure Server CA"],"notBefore":1362744000000,"notAfter":1678276800000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/DigiCertGlobalRootCA.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"1fb86b1168ec743154062e8c9cc5b171a4b7ccb4","sha256Hash":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","pinSha256":"5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"},{"id":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","subject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","serialNumber":"083be056904246b1a1756ac95991c74a","commonNames":["DigiCert Global Root CA"],"notBefore":1163116800000,"notAfter":1952035200000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":256,"sct":false,"sha1Hash":"a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436","sha256Hash":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","pinSha256":"r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"},{"id":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","subject":"CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US","serialNumber":"00cdbc5a4aec9767b1","commonNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"altNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"notBefore":1470691025000,"notAfter":1533763025000,"issuerSubject":"CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":12,"sct":false,"sha1Hash":"3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9","sha256Hash":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"}]}
-]
+ {
+ "host": "defectdojo.mevitae.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634286894971,
+ "testTime": 1634286967009,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "51.132.215.114",
+ "statusMessage": "Ready",
+ "grade": "A+",
+ "gradeTrustIgnored": "A+",
+ "hasWarnings": false,
+ "isExceptional": true,
+ "progress": 100,
+ "duration": 71687,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634286894971,
+ "certChains": [
+ {
+ "id": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ }
+ ],
+ "protocols": [
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ },
+ {
+ "id": 772,
+ "name": "TLS",
+ "version": "1.3"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 49199,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 49200,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 52392,
+ "name": "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ }
+ ],
+ "preference": true,
+ "chaCha20Preference": false
+ },
+ {
+ "protocol": 772,
+ "list": [
+ {
+ "id": 4866,
+ "name": "TLS_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 4867,
+ "name": "TLS_CHACHA20_POLY1305_SHA256",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 4865,
+ "name": "TLS_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ }
+ ],
+ "preference": true,
+ "chaCha20Preference": false
+ }
+ ],
+ "namedGroups": {
+ "list": [
+ {
+ "id": 29,
+ "name": "x25519",
+ "bits": 256,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 23,
+ "name": "secp256r1",
+ "bits": 256,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 30,
+ "name": "x448",
+ "bits": 224,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 25,
+ "name": "secp521r1",
+ "bits": 521,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 24,
+ "name": "secp384r1",
+ "bits": 384,
+ "namedGroupType": "EC"
+ }
+ ],
+ "preference": true
+ },
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": false,
+ "renegSupport": 2,
+ "sessionResumption": 2,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "h2 http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "h2 http/1.1",
+ "sessionTickets": 0,
+ "ocspStapling": false,
+ "sniRequired": false,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": false,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": 1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "ecdhParameterReuse": false,
+ "logjam": false,
+ "chaCha20Preference": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "header": "max-age=15724800; includeSubDomains",
+ "status": "present",
+ "maxAge": 15724800,
+ "includeSubDomains": true,
+ "directives": {
+ "includesubdomains": "",
+ "max-age": "15724800"
+ }
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634286362807
+ },
+ {
+ "source": "Edge",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "Firefox",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "IE",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://defectdojo.mevitae.com/",
+ "statusCode": 302,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: defectdojo.mevitae.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 302 Found",
+ "responseHeadersRaw": [
+ "Date: Fri, 15 Oct 2021 08:35:07 GMT",
+ "Content-Type: text/html; charset=utf-8",
+ "Content-Length: 0",
+ "Connection: close",
+ "Location: /login?next=/",
+ "X-Frame-Options: DENY",
+ "X-Content-Type-Options: nosniff",
+ "X-XSS-Protection: 1; mode=block",
+ "Referrer-Policy: same-origin",
+ "Vary: Cookie",
+ "Strict-Transport-Security: max-age=15724800; includeSubDomains"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Date",
+ "value": "Fri, 15 Oct 2021 08:35:07 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html; charset=utf-8"
+ },
+ {
+ "name": "Content-Length",
+ "value": "0"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "Location",
+ "value": "/login?next=/"
+ },
+ {
+ "name": "X-Frame-Options",
+ "value": "DENY"
+ },
+ {
+ "name": "X-Content-Type-Options",
+ "value": "nosniff"
+ },
+ {
+ "name": "X-XSS-Protection",
+ "value": "1; mode=block"
+ },
+ {
+ "name": "Referrer-Policy",
+ "value": "same-origin"
+ },
+ {
+ "name": "Vary",
+ "value": "Cookie"
+ },
+ {
+ "name": "Strict-Transport-Security",
+ "value": "max-age=15724800; includeSubDomains"
+ }
+ ],
+ "fragileServer": false
+ },
+ {
+ "requestUrl": "https://defectdojo.mevitae.com/login?next=/",
+ "statusCode": 200,
+ "requestLine": "GET /login?next=/ HTTP/1.1",
+ "requestHeaders": [
+ "Host: defectdojo.mevitae.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Date: Fri, 15 Oct 2021 08:35:08 GMT",
+ "Content-Type: text/html; charset=utf-8",
+ "Content-Length: 14387",
+ "Connection: close",
+ "Expires: Fri, 15 Oct 2021 08:35:08 GMT",
+ "Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private",
+ "Vary: Cookie",
+ "X-Frame-Options: DENY",
+ "X-Content-Type-Options: nosniff",
+ "X-XSS-Protection: 1; mode=block",
+ "Referrer-Policy: same-origin",
+ "Set-Cookie: csrftoken=HBKSaqFbola5BCcovUiXjVAzIGRNRRTe9199jbrM2CAicJlAAtTKsXBpjEUsoV9j; expires=Fri, 14 Oct 2022 08:35:08 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure",
+ "Strict-Transport-Security: max-age=15724800; includeSubDomains"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Date",
+ "value": "Fri, 15 Oct 2021 08:35:08 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html; charset=utf-8"
+ },
+ {
+ "name": "Content-Length",
+ "value": "14387"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "Expires",
+ "value": "Fri, 15 Oct 2021 08:35:08 GMT"
+ },
+ {
+ "name": "Cache-Control",
+ "value": "max-age=0, no-cache, no-store, must-revalidate, private"
+ },
+ {
+ "name": "Vary",
+ "value": "Cookie"
+ },
+ {
+ "name": "X-Frame-Options",
+ "value": "DENY"
+ },
+ {
+ "name": "X-Content-Type-Options",
+ "value": "nosniff"
+ },
+ {
+ "name": "X-XSS-Protection",
+ "value": "1; mode=block"
+ },
+ {
+ "name": "Referrer-Policy",
+ "value": "same-origin"
+ },
+ {
+ "name": "Set-Cookie",
+ "value": "csrftoken=HBKSaqFbola5BCcovUiXjVAzIGRNRRTe9199jbrM2CAicJlAAtTKsXBpjEUsoV9j; expires=Fri, 14 Oct 2022 08:35:08 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure"
+ },
+ {
+ "name": "Strict-Transport-Security",
+ "value": "max-age=15724800; includeSubDomains"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "implementsTLS13MandatoryCS": true,
+ "zeroRTTEnabled": 0,
+ "zombiePoodle": 1,
+ "goldenDoodle": 1,
+ "supportsCBC": false,
+ "zeroLengthPaddingOracle": 1,
+ "sleepingPoodle": 1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "subject": "CN=skf.mevitae.com",
+ "serialNumber": "0329489b282e20d595971c60174d072022f3",
+ "commonNames": [
+ "skf.mevitae.com"
+ ],
+ "altNames": [
+ "defectdojo.mevitae.com",
+ "dependency-track.mevitae.com",
+ "skf.mevitae.com"
+ ],
+ "notBefore": 1631799892000,
+ "notAfter": 1639575891000,
+ "issuerSubject": "CN=R3, O=Let's Encrypt, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 2,
+ "ocspURIs": [
+ "http://r3.o.lencr.org"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 4,
+ "ocspRevocationStatus": 2,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": true,
+ "sha1Hash": "7979351ae5fdb82e685f574df8ff733412568719",
+ "sha256Hash": "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "pinSha256": "HgGgw37Y1W4J2GyPIhfPzqPIxtoq27BUmlVR4tv5qxI=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nTUuo8qtCAI4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "subject": "CN=R3, O=Let's Encrypt, C=US",
+ "serialNumber": "00912b084acf0c18a753f6d62e25a75f5a",
+ "commonNames": [
+ "R3"
+ ],
+ "notBefore": 1599177600000,
+ "notAfter": 1757952000000,
+ "issuerSubject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 1,
+ "crlURIs": [
+ "http://x1.c.lencr.org/"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 4,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "a053375bfe84e8b748782c7cee15827a6af5a405",
+ "sha256Hash": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "pinSha256": "jQJTbIh0grw0/1TkHSumWb+Fs0Ggogr621gT3PvPKG0=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "subject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "serialNumber": "4001772137d4e942b8ee76aa3c640ab7",
+ "commonNames": [
+ "ISRG Root X1"
+ ],
+ "notBefore": 1611170043000,
+ "notAfter": 1727720043000,
+ "issuerSubject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 1,
+ "crlURIs": [
+ "http://crl.identrust.com/DSTROOTCAX3CRL.crl"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 4,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "933c6ddee95c9c41a40f9f50493d82be03ad87bf",
+ "sha256Hash": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "pinSha256": "C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=",
+ "keyAlg": "RSA",
+ "keySize": 4096,
+ "keyStrength": 4096,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n6GtPAQw4dy753ec5\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6",
+ "subject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "serialNumber": "008210cfb0d240e3594463e0bb63828b00",
+ "commonNames": [
+ "ISRG Root X1"
+ ],
+ "notBefore": 1433415878000,
+ "notAfter": 2064567878000,
+ "issuerSubject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "cabd2a79a1076a31f21d253635cb039d4329a5e8",
+ "sha256Hash": "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6",
+ "pinSha256": "C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=",
+ "keyAlg": "RSA",
+ "keySize": 4096,
+ "keyStrength": 4096,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nm+kXQ99b21/+jh5Xos1AnX5iItreGCc=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739",
+ "subject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "serialNumber": "44afb080d6a327ba893039862ef8406b",
+ "commonNames": [
+ "DST Root CA X3"
+ ],
+ "notBefore": 970348339000,
+ "notAfter": 1633010475000,
+ "issuerSubject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 260,
+ "sct": false,
+ "sha1Hash": "dac9024f54d8f6df94935fb1732638ca6ad77c13",
+ "sha256Hash": "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739",
+ "pinSha256": "Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ },
+ {
+ "host": "dh1024.badssl.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634286891697,
+ "testTime": 1634286978819,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "104.154.89.105",
+ "serverName": "105.89.154.104.bc.googleusercontent.com",
+ "statusMessage": "Ready",
+ "grade": "B",
+ "gradeTrustIgnored": "B",
+ "hasWarnings": false,
+ "isExceptional": false,
+ "progress": 100,
+ "duration": 87023,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634286891697,
+ "certChains": [
+ {
+ "id": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": true
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ },
+ {
+ "id": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ }
+ ],
+ "issues": 2,
+ "noSni": true
+ }
+ ],
+ "protocols": [
+ {
+ "id": 769,
+ "name": "TLS",
+ "version": "1.0"
+ },
+ {
+ "id": 770,
+ "name": "TLS",
+ "version": "1.1"
+ },
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 770,
+ "list": [
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 158,
+ "name": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 159,
+ "name": "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 103,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 107,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 1024,
+ "dhBits": 128,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ }
+ ],
+ "noSniSuites": {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ "serverSignature": "nginx/1.10.3 (Ubuntu)",
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": true,
+ "renegSupport": 2,
+ "sessionResumption": 1,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "http/1.1",
+ "sessionTickets": 1,
+ "ocspStapling": false,
+ "sniRequired": true,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 127,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Client does not support DH parameters > 1024 bits",
+ "attempts": 1,
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": -1,
+ "dhG": -1,
+ "dhYs": -1,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 103,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "11639c1d157454bd24c549a1d73f2540130f52d7c4567508c84687a9ddb64ef7",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 8192,
+ "dhBits": 1024,
+ "dhP": 128,
+ "dhG": 1,
+ "dhYs": 128,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": true,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": -1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "dhPrimes": [
+ "9d3493b92001a44265dc3a58782bc6dca22c8f88d4dfb26c69886f3f04c3a2f32875f32ff8fb86ea3dc858dd20e0b5a80ec6a7fd9f8f2152a380675f45b384b6ed43b67ca8617aa2b4548262b6cbf08ea18b7092e16a7896de4cf6b2acd08bd1fb8166c9c7f7d734c8c6251ef831960a2628f7f617a398b72e0a61a906efdc8b"
+ ],
+ "dhUsesKnownPrimes": 0,
+ "dhYsReuse": false,
+ "logjam": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "status": "absent",
+ "directives": {}
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286362807
+ },
+ {
+ "source": "Edge",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "Firefox",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "IE",
+ "hostname": "dh1024.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://dh1024.badssl.com/",
+ "statusCode": 200,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: dh1024.badssl.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Server: nginx/1.10.3 (Ubuntu)",
+ "Date: Fri, 15 Oct 2021 08:35:00 GMT",
+ "Content-Type: text/html",
+ "Content-Length: 573",
+ "Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT",
+ "Connection: close",
+ "ETag: \"6164d5db-23d\"",
+ "Cache-Control: no-store",
+ "Accept-Ranges: bytes"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Server",
+ "value": "nginx/1.10.3 (Ubuntu)"
+ },
+ {
+ "name": "Date",
+ "value": "Fri, 15 Oct 2021 08:35:00 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html"
+ },
+ {
+ "name": "Content-Length",
+ "value": "573"
+ },
+ {
+ "name": "Last-Modified",
+ "value": "Tue, 12 Oct 2021 00:24:59 GMT"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "ETag",
+ "value": "\"6164d5db-23d\""
+ },
+ {
+ "name": "Cache-Control",
+ "value": "no-store"
+ },
+ {
+ "name": "Accept-Ranges",
+ "value": "bytes"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "zeroRTTEnabled": -1,
+ "zombiePoodle": -1,
+ "goldenDoodle": -1,
+ "supportsCBC": true,
+ "zeroLengthPaddingOracle": -1,
+ "sleepingPoodle": -1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "subject": "CN=*.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US",
+ "serialNumber": "0af06cda37a60b641342f0a1eb1d59fd",
+ "commonNames": [
+ "*.badssl.com"
+ ],
+ "altNames": [
+ "*.badssl.com",
+ "badssl.com"
+ ],
+ "notBefore": 1584921600000,
+ "notAfter": 1652788800000,
+ "issuerSubject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/ssca-sha2-g6.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": true,
+ "sha1Hash": "1845b216efd0839a1851a957325da336217049cb",
+ "sha256Hash": "9094c2bdfa697b4503daad1167eb20a5a471ea98d01f76547263fc9eaec7c8f2",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "subject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "serialNumber": "01fda3eb6eca75c888438b724bcfbc91",
+ "commonNames": [
+ "DigiCert SHA2 Secure Server CA"
+ ],
+ "notBefore": 1362744000000,
+ "notAfter": 1678276800000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/DigiCertGlobalRootCA.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 2,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "1fb86b1168ec743154062e8c9cc5b171a4b7ccb4",
+ "sha256Hash": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "pinSha256": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "subject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "serialNumber": "083be056904246b1a1756ac95991c74a",
+ "commonNames": [
+ "DigiCert Global Root CA"
+ ],
+ "notBefore": 1163116800000,
+ "notAfter": 1952035200000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 256,
+ "sct": false,
+ "sha1Hash": "a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436",
+ "sha256Hash": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "pinSha256": "r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "subject": "CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US",
+ "serialNumber": "00cdbc5a4aec9767b1",
+ "commonNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "altNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "notBefore": 1470691025000,
+ "notAfter": 1533763025000,
+ "issuerSubject": "CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 12,
+ "sct": false,
+ "sha1Hash": "3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9",
+ "sha256Hash": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIE8DCCAtigAwIBAgIJAM28Wkrsl2exMA0GCSqGSIb3DQEBCwUAMH8xCzAJBgNVBAYTAlVTMRMw\r\nEQYDVQQIDApDYWxpZm9ybmlhMRYwFAYDVQQHDA1TYW4gRnJhbmNpc2NvMQ8wDQYDVQQKDAZCYWRT\r\nU0wxMjAwBgNVBAMMKUJhZFNTTCBJbnRlcm1lZGlhdGUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4X\r\nDTE2MDgwODIxMTcwNVoXDTE4MDgwODIxMTcwNVowgagxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApD\r\nYWxpZm9ybmlhMRYwFAYDVQQHDA1TYW4gRnJhbmNpc2NvMTYwNAYDVQQKDC1CYWRTU0wgRmFsbGJh\r\nY2suIFVua25vd24gc3ViZG9tYWluIG9yIG5vIFNOSS4xNDAyBgNVBAMMK2JhZHNzbC1mYWxsYmFj\r\nay11bmtub3duLXN1YmRvbWFpbi1vci1uby1zbmkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK\r\nAoIBAQDCBOz4jO4EwrPYUNVwWMyTGOtcqGhJsCK1+ZWesSssdj5swEtgTEzqsrTAD4C2sPlyyYYC\r\n+VxBXRMrf3HES7zplC5QN6ZnHGGM9kFCxUbTFocnn3TrCp0RUiYhc2yETHlV5NFr6AY9SBVSrbMo\r\n26r/bv9glUp3aznxJNExtt1NwMT8U7ltQq21fP6u9RXSM0jnInHHwhR6bCjqN0rf6my1crR+WqIW\r\n3GmxV0TbChKr3sMPR3RcQSLhmvkbk+atIgYpLrG6SRwMJ56j+4v3QHIArJII2YxXhFOBBcvm/mtU\r\nmEAnhccQu3Nw72kYQQdFVXz5ZD89LMOpfOuTGkyG0cqFAgMBAAGjRTBDMAkGA1UdEwQCMAAwNgYD\r\nVR0RBC8wLYIrYmFkc3NsLWZhbGxiYWNrLXVua25vd24tc3ViZG9tYWluLW9yLW5vLXNuaTANBgkq\r\nhkiG9w0BAQsFAAOCAgEAsuFs0K86D2IB20nBQNb+4vs2Z6kECmVUuD0vEUBR/dovFE4PfzTr6uUw\r\nRoRdjToewx9VCwvTL7toq3ddoOwHakRjoxvq+lKvPq+0FMTlKYRjOL6Cq3wZNcsyiTYr7odyKbZs\r\n383rEBbcNu0Nc666/ozs4y4W7ufeMFrKak9UenrrPlUe0nrEHV3IMSF32iV85nXm95f7aLFvM6Lm\r\nEzAGgWopuRqD+J0QEt3WNODWqBSZ9EYyx9l2l+KI1QcMalG20QXuxDNHmTEzMaCj4Zl8k0szexR8\r\nrbcQEgJ9J+izxsecLRVp70siGEYDkhq0DgIDOjmmu8ath4yznX6ApYEGtYTDUxIvsWxwkraBBJAf\r\nVxkp2OSg7DiZEVlMM8QxbSeLCz+63kE/d5iJfqdecGqX7rKEsVW4VLfHPF8sfCyXVi5sWrXrDvJm\r\n3zx2b3XToU7EbNONO1C85NsUOWy4JccoiguV8V6C723IgzkSgJMlpblJ6FVxC6ZX5XJ0ZsMI9TIj\r\nibM2L1Z9DkWRCT6DQjuKbYUeURhScofQBiIx73V7VXnFoc1qHAUd/pGhfkCUnUcuBV1SzCEhjiwj\r\nnVKxHJKvc9OYjJD0ZuvZw9gBrY7qKyBX8g+sglEGFNhruH8/OhqrV8pBXX/EWY0fUZThiywmc6GT\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ },
+ {
+ "host": "revoked.badssl.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634286893880,
+ "testTime": 1634287030951,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "104.154.89.105",
+ "serverName": "105.89.154.104.bc.googleusercontent.com",
+ "statusMessage": "Ready",
+ "grade": "T",
+ "gradeTrustIgnored": "B",
+ "hasWarnings": false,
+ "isExceptional": false,
+ "progress": 100,
+ "duration": 136965,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634286893880,
+ "certChains": [
+ {
+ "id": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ },
+ {
+ "id": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ }
+ ],
+ "issues": 2,
+ "noSni": true
+ }
+ ],
+ "protocols": [
+ {
+ "id": 769,
+ "name": "TLS",
+ "version": "1.0"
+ },
+ {
+ "id": 770,
+ "name": "TLS",
+ "version": "1.1"
+ },
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 770,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 49199,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "id": 49200,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "id": 158,
+ "name": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256
+ },
+ {
+ "id": 159,
+ "name": "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256
+ },
+ {
+ "id": 49191,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49192,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 103,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 107,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 156,
+ "name": "TLS_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 157,
+ "name": "TLS_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 60,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 61,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ }
+ ],
+ "namedGroups": {
+ "list": [
+ {
+ "id": 23,
+ "name": "secp256r1",
+ "bits": 256,
+ "namedGroupType": "EC"
+ }
+ ]
+ },
+ "serverSignature": "nginx/1.10.3 (Ubuntu)",
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": true,
+ "renegSupport": 2,
+ "sessionResumption": 1,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "http/1.1",
+ "sessionTickets": 1,
+ "ocspStapling": false,
+ "sniRequired": true,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Client does not support DH parameters > 1024 bits",
+ "attempts": 1,
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": -1,
+ "dhG": -1,
+ "dhYs": -1,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": true,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": 1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "dhPrimes": [
+ "b9e5e830ab79110c49ff919fbf2301d0725d7a6455edd482ccacb5aa0644e864ebc5ce3a689860ed9503bb9a7789877e3e8e16d79a07475ccd8575f759e88570a5e7f5f1ae0d181a3c8df3a85695f094f7c6217c756e5326eb9c35a62c93b94e8579781d2fa97e62a20ebecf96301cab61e0fa507250efcc6135f78ebbb196178f8d4f9b98d003cbe37446e9b1d5a18e53b267cb8e67bc25607451b752a383ea21f12fb99a9d28bee93a8a9afd09a744ea26a5c4bc1e68af83dd69209374dee028a1b03731b83d8ae43c04bed1358cc8ef45c15f618baa370da8c82b98e9aed8313a925706ccec507e09f6e57959a907bb31f3a7c9d44c888bf850d6e5bee163"
+ ],
+ "dhUsesKnownPrimes": 0,
+ "dhYsReuse": false,
+ "ecdhParameterReuse": false,
+ "logjam": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "status": "absent",
+ "directives": {}
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286362807
+ },
+ {
+ "source": "Edge",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "Firefox",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ },
+ {
+ "source": "IE",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634286303393
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://revoked.badssl.com/",
+ "statusCode": 200,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: revoked.badssl.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Server: nginx/1.10.3 (Ubuntu)",
+ "Date: Fri, 15 Oct 2021 08:35:02 GMT",
+ "Content-Type: text/html",
+ "Content-Length: 575",
+ "Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT",
+ "Connection: close",
+ "ETag: \"6164d5db-23f\"",
+ "Cache-Control: no-store",
+ "Accept-Ranges: bytes"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Server",
+ "value": "nginx/1.10.3 (Ubuntu)"
+ },
+ {
+ "name": "Date",
+ "value": "Fri, 15 Oct 2021 08:35:02 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html"
+ },
+ {
+ "name": "Content-Length",
+ "value": "575"
+ },
+ {
+ "name": "Last-Modified",
+ "value": "Tue, 12 Oct 2021 00:24:59 GMT"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "ETag",
+ "value": "\"6164d5db-23f\""
+ },
+ {
+ "name": "Cache-Control",
+ "value": "no-store"
+ },
+ {
+ "name": "Accept-Ranges",
+ "value": "bytes"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "zeroRTTEnabled": -1,
+ "zombiePoodle": 1,
+ "goldenDoodle": 1,
+ "supportsCBC": true,
+ "zeroLengthPaddingOracle": 1,
+ "sleepingPoodle": 1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "subject": "CN=revoked.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US",
+ "serialNumber": "0371b58a86f6ce9c3ecb7bf42f9208fc",
+ "commonNames": [
+ "revoked.badssl.com"
+ ],
+ "altNames": [
+ "revoked.badssl.com",
+ "www.revoked.badssl.com"
+ ],
+ "notBefore": 1570147200000,
+ "notAfter": 1633694400000,
+ "issuerSubject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/ssca-sha2-g6.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 4,
+ "sct": true,
+ "sha1Hash": "23fc13ba6f27bf8dd1761bda7bb41921f59c21f7",
+ "sha256Hash": "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "pinSha256": "xpENC6nt31kzNBSf7f6HOF83tiU1S7Q5XAriyN9I4Xw=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n8fOu6G/BknS9r3g5pLpWaNc6NtqK\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "subject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "serialNumber": "01fda3eb6eca75c888438b724bcfbc91",
+ "commonNames": [
+ "DigiCert SHA2 Secure Server CA"
+ ],
+ "notBefore": 1362744000000,
+ "notAfter": 1678276800000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/DigiCertGlobalRootCA.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "1fb86b1168ec743154062e8c9cc5b171a4b7ccb4",
+ "sha256Hash": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "pinSha256": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "subject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "serialNumber": "083be056904246b1a1756ac95991c74a",
+ "commonNames": [
+ "DigiCert Global Root CA"
+ ],
+ "notBefore": 1163116800000,
+ "notAfter": 1952035200000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 256,
+ "sct": false,
+ "sha1Hash": "a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436",
+ "sha256Hash": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "pinSha256": "r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQG\r\nEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw\r\nHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAw\r\nMDAwMDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3\r\ndy5kaWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkq\r\nhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsBCSDMAZOn\r\nTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97nh6Vfe63SKMI2tavegw5\r\nBmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt43C/dxC//AH2hdmoRBBYMql1GNXRor5H\r\n4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7PT19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y\r\n7vrTC0LUq7dBMtoM1O/4gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQAB\r\no2MwYTAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbRTLtm\r\n8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUwDQYJKoZIhvcNAQEF\r\nBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/EsrhMAtudXH/vTBH1jLuG2cenTnmCmr\r\nEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIt\r\ntep3Sp+dWOIrWcBAI+0tKIJFPnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886\r\nUAb3LujEV0lsYSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "subject": "CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US",
+ "serialNumber": "00cdbc5a4aec9767b1",
+ "commonNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "altNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "notBefore": 1470691025000,
+ "notAfter": 1533763025000,
+ "issuerSubject": "CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 12,
+ "sct": false,
+ "sha1Hash": "3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9",
+ "sha256Hash": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/ssl_labs/ssl_labs_ok_v1.5.0.json b/unittests/scans/ssl_labs/ssl_labs_ok_v1.5.0.json
index a743c00b0bb..ecbab56e49c 100644
--- a/unittests/scans/ssl_labs/ssl_labs_ok_v1.5.0.json
+++ b/unittests/scans/ssl_labs/ssl_labs_ok_v1.5.0.json
@@ -1,3 +1,1872 @@
[
-{"host":"defectdojo.mevitae.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634250367958,"testTime":1634250439327,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"51.132.215.114","statusMessage":"Ready","grade":"A+","gradeTrustIgnored":"A+","hasWarnings":false,"isExceptional":true,"progress":100,"duration":71097,"delegation":1,"details":{"hostStartTime":1634250367958,"certChains":[{"id":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"],"trustPaths":[{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Mozilla","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Apple","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Android","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Java","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"],"trust":[{"rootStore":"Windows","isTrusted":true}]},{"certIds":["71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"}]}],"issues":0,"noSni":false}],"protocols":[{"id":771,"name":"TLS","version":"1.2"},{"id":772,"name":"TLS","version":"1.3"}],"suites":[{"protocol":771,"list":[{"id":49199,"name":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":49200,"name":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":52392,"name":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"}],"preference":true,"chaCha20Preference":false},{"protocol":772,"list":[{"id":4866,"name":"TLS_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":4867,"name":"TLS_CHACHA20_POLY1305_SHA256","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"id":4865,"name":"TLS_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"}],"preference":true,"chaCha20Preference":false}],"namedGroups":{"list":[{"id":29,"name":"x25519","bits":256,"namedGroupType":"EC"},{"id":23,"name":"secp256r1","bits":256,"namedGroupType":"EC"},{"id":30,"name":"x448","bits":224,"namedGroupType":"EC"},{"id":25,"name":"secp521r1","bits":521,"namedGroupType":"EC"},{"id":24,"name":"secp384r1","bits":384,"namedGroupType":"EC"}],"preference":true},"prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":false,"renegSupport":2,"sessionResumption":2,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"h2 http/1.1","supportsAlpn":true,"alpnProtocols":"h2 http/1.1","sessionTickets":0,"ocspStapling":false,"sniRequired":false,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":1,"errorMessage":"Server sent fatal alert: handshake_failure","attempts":1,"alertType":2,"alertCode":40},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":0,"attempts":1,"protocolId":772,"suiteId":4866,"suiteName":"TLS_AES_256_GCM_SHA384","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":29,"namedGroupName":"x25519"},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":false,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"ecdhParameterReuse":false,"logjam":false,"chaCha20Preference":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"header":"max-age=15724800; includeSubDomains","status":"present","maxAge":15724800,"includeSubDomains":true,"directives":{"includesubdomains":"","max-age":"15724800"}},"hstsPreloads":[{"source":"Chrome","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634249761945},{"source":"Edge","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634249703484},{"source":"Firefox","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634249703484},{"source":"IE","hostname":"defectdojo.mevitae.com","status":"absent","sourceTime":1634249703484}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://defectdojo.mevitae.com/","statusCode":302,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: defectdojo.mevitae.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 302 Found","responseHeadersRaw":["Date: Thu, 14 Oct 2021 22:26:20 GMT","Content-Type: text/html; charset=utf-8","Content-Length: 0","Connection: close","Location: /login?next=/","X-Frame-Options: DENY","X-Content-Type-Options: nosniff","X-XSS-Protection: 1; mode=block","Referrer-Policy: same-origin","Vary: Cookie","Strict-Transport-Security: max-age=15724800; includeSubDomains"],"responseHeaders":[{"name":"Date","value":"Thu, 14 Oct 2021 22:26:20 GMT"},{"name":"Content-Type","value":"text/html; charset=utf-8"},{"name":"Content-Length","value":"0"},{"name":"Connection","value":"close"},{"name":"Location","value":"/login?next=/"},{"name":"X-Frame-Options","value":"DENY"},{"name":"X-Content-Type-Options","value":"nosniff"},{"name":"X-XSS-Protection","value":"1; mode=block"},{"name":"Referrer-Policy","value":"same-origin"},{"name":"Vary","value":"Cookie"},{"name":"Strict-Transport-Security","value":"max-age=15724800; includeSubDomains"}],"fragileServer":false},{"requestUrl":"https://defectdojo.mevitae.com/login?next=/","statusCode":200,"requestLine":"GET /login?next=/ HTTP/1.1","requestHeaders":["Host: defectdojo.mevitae.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Date: Thu, 14 Oct 2021 22:26:21 GMT","Content-Type: text/html; charset=utf-8","Content-Length: 14387","Connection: close","Expires: Thu, 14 Oct 2021 22:26:21 GMT","Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private","Vary: Cookie","X-Frame-Options: DENY","X-Content-Type-Options: nosniff","X-XSS-Protection: 1; mode=block","Referrer-Policy: same-origin","Set-Cookie: csrftoken=wIgY32ryOXxi9gX9ySI4op8RJ4gTJ6esAwCxvguwP6Quid4QvKHJvohxQT8ToeLr; expires=Thu, 13 Oct 2022 22:26:21 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure","Strict-Transport-Security: max-age=15724800; includeSubDomains"],"responseHeaders":[{"name":"Date","value":"Thu, 14 Oct 2021 22:26:21 GMT"},{"name":"Content-Type","value":"text/html; charset=utf-8"},{"name":"Content-Length","value":"14387"},{"name":"Connection","value":"close"},{"name":"Expires","value":"Thu, 14 Oct 2021 22:26:21 GMT"},{"name":"Cache-Control","value":"max-age=0, no-cache, no-store, must-revalidate, private"},{"name":"Vary","value":"Cookie"},{"name":"X-Frame-Options","value":"DENY"},{"name":"X-Content-Type-Options","value":"nosniff"},{"name":"X-XSS-Protection","value":"1; mode=block"},{"name":"Referrer-Policy","value":"same-origin"},{"name":"Set-Cookie","value":"csrftoken=wIgY32ryOXxi9gX9ySI4op8RJ4gTJ6esAwCxvguwP6Quid4QvKHJvohxQT8ToeLr; expires=Thu, 13 Oct 2022 22:26:21 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure"},{"name":"Strict-Transport-Security","value":"max-age=15724800; includeSubDomains"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"implementsTLS13MandatoryCS":true,"zeroRTTEnabled":0,"zombiePoodle":1,"goldenDoodle":1,"supportsCBC":false,"zeroLengthPaddingOracle":1,"sleepingPoodle":1}}],"certs":[{"id":"71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","subject":"CN=skf.mevitae.com","serialNumber":"0329489b282e20d595971c60174d072022f3","commonNames":["skf.mevitae.com"],"altNames":["defectdojo.mevitae.com","dependency-track.mevitae.com","skf.mevitae.com"],"notBefore":1631799892000,"notAfter":1639575891000,"issuerSubject":"CN=R3, O=Let's Encrypt, C=US","sigAlg":"SHA256withRSA","revocationInfo":2,"ocspURIs":["http://r3.o.lencr.org"],"revocationStatus":2,"crlRevocationStatus":4,"ocspRevocationStatus":2,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":0,"sct":true,"sha1Hash":"7979351ae5fdb82e685f574df8ff733412568719","sha256Hash":"71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6","pinSha256":"HgGgw37Y1W4J2GyPIhfPzqPIxtoq27BUmlVR4tv5qxI=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nTUuo8qtCAI4=\r\n-----END CERTIFICATE-----\n"},{"id":"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","subject":"CN=R3, O=Let's Encrypt, C=US","serialNumber":"00912b084acf0c18a753f6d62e25a75f5a","commonNames":["R3"],"notBefore":1599177600000,"notAfter":1757952000000,"issuerSubject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","sigAlg":"SHA256withRSA","revocationInfo":1,"crlURIs":["http://x1.c.lencr.org/"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":4,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"a053375bfe84e8b748782c7cee15827a6af5a405","sha256Hash":"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd","pinSha256":"jQJTbIh0grw0/1TkHSumWb+Fs0Ggogr621gT3PvPKG0=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"},{"id":"6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","subject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","serialNumber":"4001772137d4e942b8ee76aa3c640ab7","commonNames":["ISRG Root X1"],"notBefore":1611170043000,"notAfter":1727720043000,"issuerSubject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","sigAlg":"SHA256withRSA","revocationInfo":1,"crlURIs":["http://crl.identrust.com/DSTROOTCAX3CRL.crl"],"revocationStatus":2,"crlRevocationStatus":2,"ocspRevocationStatus":4,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"933c6ddee95c9c41a40f9f50493d82be03ad87bf","sha256Hash":"6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f","pinSha256":"C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=","keyAlg":"RSA","keySize":4096,"keyStrength":4096,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQK\r\nExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4X\r\nDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIElu\r\ndGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIi\r\nMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B4\r\n93XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlK\r\nZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsD\r\ncCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/\r\niaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeY\r\njzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHdu\r\nRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsD\r\nj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMp\r\ngsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi\r\n0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB\r\n/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBw\r\ncy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx\r\n+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsG\r\nAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAv\r\noC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYE\r\nFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oG\r\nrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMr\r\nAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXk\r\ncGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDc\r\nRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr\r\n6GtPAQw4dy753ec5\r\n-----END CERTIFICATE-----\n"},{"id":"96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6","subject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","serialNumber":"008210cfb0d240e3594463e0bb63828b00","commonNames":["ISRG Root X1"],"notBefore":1433415878000,"notAfter":2064567878000,"issuerSubject":"CN=ISRG Root X1, O=Internet Security Research Group, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"cabd2a79a1076a31f21d253635cb039d4329a5e8","sha256Hash":"96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6","pinSha256":"C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=","keyAlg":"RSA","keySize":4096,"keyStrength":4096,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIFazCCA1OgAwIBAgIRAIIQz7DSQONZRGPgu2OCiwAwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UE\r\nBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQD\r\nEwxJU1JHIFJvb3QgWDEwHhcNMTUwNjA0MTEwNDM4WhcNMzUwNjA0MTEwNDM4WjBPMQswCQYDVQQG\r\nEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMT\r\nDElTUkcgUm9vdCBYMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK3oJHP0FDfzm54r\r\nVygch77ct984kIxuPOZXoHj3dcKi/vVqbvYATyjb3miGbESTtrFj/RQSa78f0uoxmyF+0TM8ukj1\r\n3Xnfs7j/EvEhmkvBioZxaUpmZmyPfjxwv60pIgbz5MDmgK7iS4+3mX6UA5/TR5d8mUgjU+g4rk8K\r\nb4Mu0UlXjIB0ttov0DiNewNwIRt18jA8+o+u3dpjq+sWT8KOEUt+zwvo/7V3LvSye0rgTBIlDHCN\r\nAymg4VMk7BPZ7hm/ELNKjD+Jo2FR3qyHB5T0Y3HsLuJvW5iB4YlcNHlsdu87kGJ55tukmi8mxdAQ\r\n4Q7e2RCOFvu396j3x+UCB5iPNgiV5+I3lg02dZ77DnKxHZu8A/lJBdiB3QW0KtZB6awBdpUKD9jf\r\n1b0SHzUvKBds0pjBqAlkd25HN7rOrFleaJ1/ctaJxQZBKT5ZPt0m9STJEadao0xAH0ahmbWnOlFu\r\nhjuefXKnEgV4We0+UXgVCwOPjdAvBbI+e0ocS3MFEvzG6uBQE3xDk3SzynTnjh8BCNAw1FtxNrQH\r\nusEwMFxIt4I7mKZ9YIqioymCzLq9gwQbooMDQaHWBfEbwrbwqHyGO0aoSCqI3Haadr8faqU9GY/r\r\nOPNk3sgrDQoo//fb4hVC1CLQJ13hef4Y53CIrU7m2Ys6xt0nUW7/vGT1M0NPAgMBAAGjQjBAMA4G\r\nA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR5tFnme7bl5AFzgAiIyBpY\r\n9umbbjANBgkqhkiG9w0BAQsFAAOCAgEAVR9YqbyyqFDQDLHYGmkgJykIrGF1XIpu+ILlaS/V9lZL\r\nubhzEFnTIZd+50xx+7LSYK05qAvqFyFWhfFQDlnrzuBZ6brJFe+GnY+EgPbk6ZGQ3BebYhtF8GaV\r\n0nxvwuo77x/Py9auJ/GpsMiu/X1+mvoiBOv/2X/qkSsisRcOj/KKNFtY2PwByVS5uCbMiogziUwt\r\nhDyC3+6WVwW6LLv3xLfHTjuCvjHIInNzktHCgKQ5ORAzI4JMPJ+GslWYHb4phowim57iaztXOoJw\r\nTdwJx4nLCgdNbOhdjsnvzqvHu7UrTkXWStAmzOVyyghqpZXjFaH3pO3JLF+l+/+sKAIuvtd7u+Nx\r\ne5AW0wdeRlN8NwdCjNPElpzVmbUq4JUagEiuTDkHzsxHpFKVK7q4+63SM1N95R1NbdWhscdCb+ZA\r\nJzVcoyi3B43njTOQ5yOf+1CceWxG1bQVs5ZufpsMljq4Ui0/1lvh+wjChP4kqKOJ2qxq4RgqsahD\r\nYVvTH9w7jXbyLeiNdd8XM2w9U/t7y0Ff/9yi0GE44Za4rF2LN9d11TPAmRGunUHBcnWEvgJBQl9n\r\nJEiU0Zsnvgc/ubhPgXRR4Xq37Z0j4r7g1SgEEzwxA57demyPxgcYxn/eR44/KJ4EBs+lVDR3veyJ\r\nm+kXQ99b21/+jh5Xos1AnX5iItreGCc=\r\n-----END CERTIFICATE-----\n"},{"id":"0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739","subject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","serialNumber":"44afb080d6a327ba893039862ef8406b","commonNames":["DST Root CA X3"],"notBefore":970348339000,"notAfter":1633010475000,"issuerSubject":"CN=DST Root CA X3, O=Digital Signature Trust Co.","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":260,"sct":false,"sha1Hash":"dac9024f54d8f6df94935fb1732638ca6ad77c13","sha256Hash":"0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739","pinSha256":"Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"}]}
-]
+ {
+ "host": "defectdojo.mevitae.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634250367958,
+ "testTime": 1634250439327,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "51.132.215.114",
+ "statusMessage": "Ready",
+ "grade": "A+",
+ "gradeTrustIgnored": "A+",
+ "hasWarnings": false,
+ "isExceptional": true,
+ "progress": 100,
+ "duration": 71097,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634250367958,
+ "certChains": [
+ {
+ "id": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": true
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739]"
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ }
+ ],
+ "protocols": [
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ },
+ {
+ "id": 772,
+ "name": "TLS",
+ "version": "1.3"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 49199,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 49200,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 52392,
+ "name": "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ }
+ ],
+ "preference": true,
+ "chaCha20Preference": false
+ },
+ {
+ "protocol": 772,
+ "list": [
+ {
+ "id": 4866,
+ "name": "TLS_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 4867,
+ "name": "TLS_CHACHA20_POLY1305_SHA256",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "id": 4865,
+ "name": "TLS_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ }
+ ],
+ "preference": true,
+ "chaCha20Preference": false
+ }
+ ],
+ "namedGroups": {
+ "list": [
+ {
+ "id": 29,
+ "name": "x25519",
+ "bits": 256,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 23,
+ "name": "secp256r1",
+ "bits": 256,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 30,
+ "name": "x448",
+ "bits": 224,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 25,
+ "name": "secp521r1",
+ "bits": 521,
+ "namedGroupType": "EC"
+ },
+ {
+ "id": 24,
+ "name": "secp384r1",
+ "bits": 384,
+ "namedGroupType": "EC"
+ }
+ ],
+ "preference": true
+ },
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": false,
+ "renegSupport": 2,
+ "sessionResumption": 2,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "h2 http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "h2 http/1.1",
+ "sessionTickets": 0,
+ "ocspStapling": false,
+ "sniRequired": false,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 1,
+ "errorMessage": "Server sent fatal alert: handshake_failure",
+ "attempts": 1,
+ "alertType": 2,
+ "alertCode": 40
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "protocolId": 772,
+ "suiteId": 4866,
+ "suiteName": "TLS_AES_256_GCM_SHA384",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 29,
+ "namedGroupName": "x25519"
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "d98a071150010a79994e57a26e20e3c7cbf63c3bc098ed2c2118c4f9984d9480",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": false,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": 1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "ecdhParameterReuse": false,
+ "logjam": false,
+ "chaCha20Preference": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "header": "max-age=15724800; includeSubDomains",
+ "status": "present",
+ "maxAge": 15724800,
+ "includeSubDomains": true,
+ "directives": {
+ "includesubdomains": "",
+ "max-age": "15724800"
+ }
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634249761945
+ },
+ {
+ "source": "Edge",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "Firefox",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "IE",
+ "hostname": "defectdojo.mevitae.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://defectdojo.mevitae.com/",
+ "statusCode": 302,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: defectdojo.mevitae.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 302 Found",
+ "responseHeadersRaw": [
+ "Date: Thu, 14 Oct 2021 22:26:20 GMT",
+ "Content-Type: text/html; charset=utf-8",
+ "Content-Length: 0",
+ "Connection: close",
+ "Location: /login?next=/",
+ "X-Frame-Options: DENY",
+ "X-Content-Type-Options: nosniff",
+ "X-XSS-Protection: 1; mode=block",
+ "Referrer-Policy: same-origin",
+ "Vary: Cookie",
+ "Strict-Transport-Security: max-age=15724800; includeSubDomains"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Date",
+ "value": "Thu, 14 Oct 2021 22:26:20 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html; charset=utf-8"
+ },
+ {
+ "name": "Content-Length",
+ "value": "0"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "Location",
+ "value": "/login?next=/"
+ },
+ {
+ "name": "X-Frame-Options",
+ "value": "DENY"
+ },
+ {
+ "name": "X-Content-Type-Options",
+ "value": "nosniff"
+ },
+ {
+ "name": "X-XSS-Protection",
+ "value": "1; mode=block"
+ },
+ {
+ "name": "Referrer-Policy",
+ "value": "same-origin"
+ },
+ {
+ "name": "Vary",
+ "value": "Cookie"
+ },
+ {
+ "name": "Strict-Transport-Security",
+ "value": "max-age=15724800; includeSubDomains"
+ }
+ ],
+ "fragileServer": false
+ },
+ {
+ "requestUrl": "https://defectdojo.mevitae.com/login?next=/",
+ "statusCode": 200,
+ "requestLine": "GET /login?next=/ HTTP/1.1",
+ "requestHeaders": [
+ "Host: defectdojo.mevitae.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Date: Thu, 14 Oct 2021 22:26:21 GMT",
+ "Content-Type: text/html; charset=utf-8",
+ "Content-Length: 14387",
+ "Connection: close",
+ "Expires: Thu, 14 Oct 2021 22:26:21 GMT",
+ "Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private",
+ "Vary: Cookie",
+ "X-Frame-Options: DENY",
+ "X-Content-Type-Options: nosniff",
+ "X-XSS-Protection: 1; mode=block",
+ "Referrer-Policy: same-origin",
+ "Set-Cookie: csrftoken=wIgY32ryOXxi9gX9ySI4op8RJ4gTJ6esAwCxvguwP6Quid4QvKHJvohxQT8ToeLr; expires=Thu, 13 Oct 2022 22:26:21 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure",
+ "Strict-Transport-Security: max-age=15724800; includeSubDomains"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Date",
+ "value": "Thu, 14 Oct 2021 22:26:21 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html; charset=utf-8"
+ },
+ {
+ "name": "Content-Length",
+ "value": "14387"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "Expires",
+ "value": "Thu, 14 Oct 2021 22:26:21 GMT"
+ },
+ {
+ "name": "Cache-Control",
+ "value": "max-age=0, no-cache, no-store, must-revalidate, private"
+ },
+ {
+ "name": "Vary",
+ "value": "Cookie"
+ },
+ {
+ "name": "X-Frame-Options",
+ "value": "DENY"
+ },
+ {
+ "name": "X-Content-Type-Options",
+ "value": "nosniff"
+ },
+ {
+ "name": "X-XSS-Protection",
+ "value": "1; mode=block"
+ },
+ {
+ "name": "Referrer-Policy",
+ "value": "same-origin"
+ },
+ {
+ "name": "Set-Cookie",
+ "value": "csrftoken=wIgY32ryOXxi9gX9ySI4op8RJ4gTJ6esAwCxvguwP6Quid4QvKHJvohxQT8ToeLr; expires=Thu, 13 Oct 2022 22:26:21 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure"
+ },
+ {
+ "name": "Strict-Transport-Security",
+ "value": "max-age=15724800; includeSubDomains"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "implementsTLS13MandatoryCS": true,
+ "zeroRTTEnabled": 0,
+ "zombiePoodle": 1,
+ "goldenDoodle": 1,
+ "supportsCBC": false,
+ "zeroLengthPaddingOracle": 1,
+ "sleepingPoodle": 1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "subject": "CN=skf.mevitae.com",
+ "serialNumber": "0329489b282e20d595971c60174d072022f3",
+ "commonNames": [
+ "skf.mevitae.com"
+ ],
+ "altNames": [
+ "defectdojo.mevitae.com",
+ "dependency-track.mevitae.com",
+ "skf.mevitae.com"
+ ],
+ "notBefore": 1631799892000,
+ "notAfter": 1639575891000,
+ "issuerSubject": "CN=R3, O=Let's Encrypt, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 2,
+ "ocspURIs": [
+ "http://r3.o.lencr.org"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 4,
+ "ocspRevocationStatus": 2,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": true,
+ "sha1Hash": "7979351ae5fdb82e685f574df8ff733412568719",
+ "sha256Hash": "71aec56db6a06bceba9ca8158bd7b758f3392213bb7859bbce47ebeb13b99ae6",
+ "pinSha256": "HgGgw37Y1W4J2GyPIhfPzqPIxtoq27BUmlVR4tv5qxI=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nTUuo8qtCAI4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "subject": "CN=R3, O=Let's Encrypt, C=US",
+ "serialNumber": "00912b084acf0c18a753f6d62e25a75f5a",
+ "commonNames": [
+ "R3"
+ ],
+ "notBefore": 1599177600000,
+ "notAfter": 1757952000000,
+ "issuerSubject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 1,
+ "crlURIs": [
+ "http://x1.c.lencr.org/"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 4,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "a053375bfe84e8b748782c7cee15827a6af5a405",
+ "sha256Hash": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
+ "pinSha256": "jQJTbIh0grw0/1TkHSumWb+Fs0Ggogr621gT3PvPKG0=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UE\r\nBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQD\r\nEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQG\r\nEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEB\r\nAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXI\r\no9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzh\r\nm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpy\r\nb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3\r\nP51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIB\r\nBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB\r\n/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0\r\nWeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gx\r\nLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIG\r\nA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5H\r\nPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8\r\nkc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz\r\nCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEK\r\nIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/\r\nwFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4\r\njnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJo\r\ni5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxP\r\nFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB\r\n3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "subject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "serialNumber": "4001772137d4e942b8ee76aa3c640ab7",
+ "commonNames": [
+ "ISRG Root X1"
+ ],
+ "notBefore": 1611170043000,
+ "notAfter": 1727720043000,
+ "issuerSubject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 1,
+ "crlURIs": [
+ "http://crl.identrust.com/DSTROOTCAX3CRL.crl"
+ ],
+ "revocationStatus": 2,
+ "crlRevocationStatus": 2,
+ "ocspRevocationStatus": 4,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "933c6ddee95c9c41a40f9f50493d82be03ad87bf",
+ "sha256Hash": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
+ "pinSha256": "C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=",
+ "keyAlg": "RSA",
+ "keySize": 4096,
+ "keyStrength": 4096,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n6GtPAQw4dy753ec5\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6",
+ "subject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "serialNumber": "008210cfb0d240e3594463e0bb63828b00",
+ "commonNames": [
+ "ISRG Root X1"
+ ],
+ "notBefore": 1433415878000,
+ "notAfter": 2064567878000,
+ "issuerSubject": "CN=ISRG Root X1, O=Internet Security Research Group, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "cabd2a79a1076a31f21d253635cb039d4329a5e8",
+ "sha256Hash": "96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6",
+ "pinSha256": "C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M=",
+ "keyAlg": "RSA",
+ "keySize": 4096,
+ "keyStrength": 4096,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIFazCCA1OgAwIBAgIRAIIQz7DSQONZRGPgu2OCiwAwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UE\r\nBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQD\r\nEwxJU1JHIFJvb3QgWDEwHhcNMTUwNjA0MTEwNDM4WhcNMzUwNjA0MTEwNDM4WjBPMQswCQYDVQQG\r\nEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMT\r\nDElTUkcgUm9vdCBYMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK3oJHP0FDfzm54r\r\nVygch77ct984kIxuPOZXoHj3dcKi/vVqbvYATyjb3miGbESTtrFj/RQSa78f0uoxmyF+0TM8ukj1\r\n3Xnfs7j/EvEhmkvBioZxaUpmZmyPfjxwv60pIgbz5MDmgK7iS4+3mX6UA5/TR5d8mUgjU+g4rk8K\r\nb4Mu0UlXjIB0ttov0DiNewNwIRt18jA8+o+u3dpjq+sWT8KOEUt+zwvo/7V3LvSye0rgTBIlDHCN\r\nAymg4VMk7BPZ7hm/ELNKjD+Jo2FR3qyHB5T0Y3HsLuJvW5iB4YlcNHlsdu87kGJ55tukmi8mxdAQ\r\n4Q7e2RCOFvu396j3x+UCB5iPNgiV5+I3lg02dZ77DnKxHZu8A/lJBdiB3QW0KtZB6awBdpUKD9jf\r\n1b0SHzUvKBds0pjBqAlkd25HN7rOrFleaJ1/ctaJxQZBKT5ZPt0m9STJEadao0xAH0ahmbWnOlFu\r\nhjuefXKnEgV4We0+UXgVCwOPjdAvBbI+e0ocS3MFEvzG6uBQE3xDk3SzynTnjh8BCNAw1FtxNrQH\r\nusEwMFxIt4I7mKZ9YIqioymCzLq9gwQbooMDQaHWBfEbwrbwqHyGO0aoSCqI3Haadr8faqU9GY/r\r\nOPNk3sgrDQoo//fb4hVC1CLQJ13hef4Y53CIrU7m2Ys6xt0nUW7/vGT1M0NPAgMBAAGjQjBAMA4G\r\nA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR5tFnme7bl5AFzgAiIyBpY\r\n9umbbjANBgkqhkiG9w0BAQsFAAOCAgEAVR9YqbyyqFDQDLHYGmkgJykIrGF1XIpu+ILlaS/V9lZL\r\nubhzEFnTIZd+50xx+7LSYK05qAvqFyFWhfFQDlnrzuBZ6brJFe+GnY+EgPbk6ZGQ3BebYhtF8GaV\r\n0nxvwuo77x/Py9auJ/GpsMiu/X1+mvoiBOv/2X/qkSsisRcOj/KKNFtY2PwByVS5uCbMiogziUwt\r\nhDyC3+6WVwW6LLv3xLfHTjuCvjHIInNzktHCgKQ5ORAzI4JMPJ+GslWYHb4phowim57iaztXOoJw\r\nTdwJx4nLCgdNbOhdjsnvzqvHu7UrTkXWStAmzOVyyghqpZXjFaH3pO3JLF+l+/+sKAIuvtd7u+Nx\r\ne5AW0wdeRlN8NwdCjNPElpzVmbUq4JUagEiuTDkHzsxHpFKVK7q4+63SM1N95R1NbdWhscdCb+ZA\r\nJzVcoyi3B43njTOQ5yOf+1CceWxG1bQVs5ZufpsMljq4Ui0/1lvh+wjChP4kqKOJ2qxq4RgqsahD\r\nYVvTH9w7jXbyLeiNdd8XM2w9U/t7y0Ff/9yi0GE44Za4rF2LN9d11TPAmRGunUHBcnWEvgJBQl9n\r\nJEiU0Zsnvgc/ubhPgXRR4Xq37Z0j4r7g1SgEEzwxA57demyPxgcYxn/eR44/KJ4EBs+lVDR3veyJ\r\nm+kXQ99b21/+jh5Xos1AnX5iItreGCc=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739",
+ "subject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "serialNumber": "44afb080d6a327ba893039862ef8406b",
+ "commonNames": [
+ "DST Root CA X3"
+ ],
+ "notBefore": 970348339000,
+ "notAfter": 1633010475000,
+ "issuerSubject": "CN=DST Root CA X3, O=Digital Signature Trust Co.",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 260,
+ "sct": false,
+ "sha1Hash": "dac9024f54d8f6df94935fb1732638ca6ad77c13",
+ "sha256Hash": "0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739",
+ "pinSha256": "Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/ssl_labs/ssl_labs_revoked_v1.5.0.json b/unittests/scans/ssl_labs/ssl_labs_revoked_v1.5.0.json
index b497ccc4299..896a804795d 100644
--- a/unittests/scans/ssl_labs/ssl_labs_revoked_v1.5.0.json
+++ b/unittests/scans/ssl_labs/ssl_labs_revoked_v1.5.0.json
@@ -1,3 +1,2413 @@
[
-{"host":"revoked.badssl.com","port":443,"protocol":"http","isPublic":false,"status":"READY","startTime":1634250624137,"testTime":1634250759800,"engineVersion":"2.1.8","criteriaVersion":"2009q","endpoints":[{"ipAddress":"104.154.89.105","serverName":"105.89.154.104.bc.googleusercontent.com","statusMessage":"Ready","grade":"T","gradeTrustIgnored":"B","hasWarnings":false,"isExceptional":false,"progress":100,"duration":135412,"delegation":1,"details":{"hostStartTime":1634250624137,"certChains":[{"id":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"],"trustPaths":[{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"validity check failed"}]},{"certIds":["a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"validity check failed"}]}],"issues":0,"noSni":false},{"id":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trustPaths":[{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Mozilla","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Apple","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Android","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Java","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]},{"certIds":["d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"],"trust":[{"rootStore":"Windows","isTrusted":false,"trustErrorMessage":"path does not chain to a trusted anchor"}]}],"issues":2,"noSni":true}],"protocols":[{"id":769,"name":"TLS","version":"1.0"},{"id":770,"name":"TLS","version":"1.1"},{"id":771,"name":"TLS","version":"1.2"}],"suites":[{"protocol":769,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},{"protocol":770,"list":[{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true},{"protocol":771,"list":[{"id":49199,"name":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"id":49200,"name":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1"},{"id":158,"name":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256},{"id":159,"name":"TLS_DHE_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256},{"id":49191,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49171,"name":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49192,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":49172,"name":"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":103,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":51,"name":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":107,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":57,"name":"TLS_DHE_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":49170,"name":"TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","q":1},{"id":156,"name":"TLS_RSA_WITH_AES_128_GCM_SHA256","cipherStrength":128,"q":1},{"id":157,"name":"TLS_RSA_WITH_AES_256_GCM_SHA384","cipherStrength":256,"q":1},{"id":60,"name":"TLS_RSA_WITH_AES_128_CBC_SHA256","cipherStrength":128,"q":1},{"id":61,"name":"TLS_RSA_WITH_AES_256_CBC_SHA256","cipherStrength":256,"q":1},{"id":47,"name":"TLS_RSA_WITH_AES_128_CBC_SHA","cipherStrength":128,"q":1},{"id":53,"name":"TLS_RSA_WITH_AES_256_CBC_SHA","cipherStrength":256,"q":1},{"id":10,"name":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","cipherStrength":112,"q":1},{"id":136,"name":"TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":132,"name":"TLS_RSA_WITH_CAMELLIA_256_CBC_SHA","cipherStrength":256,"q":1},{"id":69,"name":"TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"kxType":"DH","kxStrength":2048,"dhBits":256,"dhP":256,"dhG":1,"dhYs":256,"q":1},{"id":65,"name":"TLS_RSA_WITH_CAMELLIA_128_CBC_SHA","cipherStrength":128,"q":1}],"preference":true}],"namedGroups":{"list":[{"id":23,"name":"secp256r1","bits":256,"namedGroupType":"EC"}]},"serverSignature":"nginx/1.10.3 (Ubuntu)","prefixDelegation":false,"nonPrefixDelegation":true,"vulnBeast":true,"renegSupport":2,"sessionResumption":1,"compressionMethods":0,"supportsNpn":true,"npnProtocols":"http/1.1","supportsAlpn":true,"alpnProtocols":"http/1.1","sessionTickets":1,"ocspStapling":false,"sniRequired":true,"httpStatusCode":200,"supportsRc4":false,"rc4WithModern":false,"rc4Only":false,"forwardSecrecy":4,"supportsAead":true,"protocolIntolerance":0,"miscIntolerance":0,"sims":{"results":[{"client":{"id":56,"name":"Android","version":"2.3.7","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":58,"name":"Android","version":"4.0.4","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":59,"name":"Android","version":"4.1.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":60,"name":"Android","version":"4.2.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":61,"name":"Android","version":"4.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":62,"name":"Android","version":"4.4.2","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":88,"name":"Android","version":"5.0.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":129,"name":"Android","version":"6.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":167,"name":"Android","version":"7.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":168,"name":"Android","version":"8.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":157,"name":"Android","version":"8.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":158,"name":"Android","version":"9.0","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":94,"name":"Baidu","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":91,"name":"BingPreview","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":136,"name":"Chrome","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":152,"name":"Chrome","platform":"Win 7","version":"69","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":153,"name":"Chrome","platform":"Win 10","version":"70","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":170,"name":"Chrome","platform":"Win 10","version":"80","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":84,"name":"Firefox","platform":"Win 7","version":"31.3.0 ESR","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":132,"name":"Firefox","platform":"Win 7","version":"47","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":137,"name":"Firefox","platform":"XP SP3","version":"49","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":151,"name":"Firefox","platform":"Win 7","version":"62","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":171,"name":"Firefox","platform":"Win 10","version":"73","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":145,"name":"Googlebot","version":"Feb 2018","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":100,"name":"IE","platform":"XP","version":"6","isReference":false},"errorCode":1,"errorMessage":"Protocol mismatch (not simulated)","attempts":0},{"client":{"id":19,"name":"IE","platform":"Vista","version":"7","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":101,"name":"IE","platform":"XP","version":"8","isReference":false},"errorCode":1,"errorMessage":"Incorrect certificate because this client doesn't support SNI","attempts":1,"certChainId":"e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727","protocolId":769,"suiteId":10,"suiteName":"TLS_RSA_WITH_3DES_EDE_CBC_SHA","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":113,"name":"IE","platform":"Win 7","version":"8-10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":143,"name":"IE","platform":"Win 7","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":134,"name":"IE","platform":"Win 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":64,"name":"IE","platform":"Win Phone 8.0","version":"10","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":65,"name":"IE","platform":"Win Phone 8.1","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":106,"name":"IE","platform":"Win Phone 8.1 Update","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":158,"suiteName":"TLS_DHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":131,"name":"IE","platform":"Win 10","version":"11","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":144,"name":"Edge","platform":"Win 10","version":"15","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":159,"name":"Edge","platform":"Win 10","version":"16","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":160,"name":"Edge","platform":"Win 10","version":"18","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":120,"name":"Edge","platform":"Win Phone 10","version":"13","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":25,"name":"Java","version":"6u45","isReference":false},"errorCode":1,"errorMessage":"Client does not support DH parameters > 1024 bits","attempts":1,"protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":-1,"dhG":-1,"dhYs":-1,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":26,"name":"Java","version":"7u25","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":147,"name":"Java","version":"8u161","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":162,"name":"Java","version":"11.0.3","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":163,"name":"Java","version":"12.0.1","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":27,"name":"OpenSSL","version":"0.9.8y","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":51,"suiteName":"TLS_DHE_RSA_WITH_AES_128_CBC_SHA","kxType":"DH","kxStrength":16384,"dhBits":2048,"dhP":256,"dhG":1,"dhYs":256,"keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":99,"name":"OpenSSL","version":"1.0.1l","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":164,"name":"OpenSSL","version":"1.0.2s","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":169,"name":"OpenSSL","version":"1.1.0k","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":165,"name":"OpenSSL","version":"1.1.1c","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":32,"name":"Safari","platform":"OS X 10.6.8","version":"5.1.9","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":33,"name":"Safari","platform":"iOS 6.0.1","version":"6","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":34,"name":"Safari","platform":"OS X 10.8.4","version":"6.0.4","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":769,"suiteId":49171,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":63,"name":"Safari","platform":"iOS 7.1","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":35,"name":"Safari","platform":"OS X 10.9","version":"7","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":85,"name":"Safari","platform":"iOS 8.4","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":87,"name":"Safari","platform":"OS X 10.10","version":"8","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49191,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":114,"name":"Safari","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":111,"name":"Safari","platform":"OS X 10.11","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":140,"name":"Safari","platform":"iOS 10","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":138,"name":"Safari","platform":"OS X 10.12","version":"10","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":161,"name":"Safari","platform":"MacOS 10.14.6 Beta","version":"12.1.2","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":166,"name":"Safari","platform":"iOS 12.3.1","version":"12.1.1","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":112,"name":"Apple ATS","platform":"iOS 9","version":"9","isReference":true},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":92,"name":"Yahoo Slurp","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"},{"client":{"id":93,"name":"YandexBot","version":"Jan 2015","isReference":false},"errorCode":0,"attempts":1,"certChainId":"a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a","protocolId":771,"suiteId":49199,"suiteName":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","kxType":"ECDH","kxStrength":3072,"namedGroupBits":256,"namedGroupId":23,"namedGroupName":"secp256r1","keyAlg":"RSA","keySize":2048,"sigAlg":"SHA256withRSA"}]},"heartbleed":false,"heartbeat":true,"openSslCcs":1,"openSSLLuckyMinus20":1,"ticketbleed":1,"bleichenbacher":1,"poodle":false,"poodleTls":1,"fallbackScsv":true,"freak":false,"hasSct":1,"dhPrimes":["b9e5e830ab79110c49ff919fbf2301d0725d7a6455edd482ccacb5aa0644e864ebc5ce3a689860ed9503bb9a7789877e3e8e16d79a07475ccd8575f759e88570a5e7f5f1ae0d181a3c8df3a85695f094f7c6217c756e5326eb9c35a62c93b94e8579781d2fa97e62a20ebecf96301cab61e0fa507250efcc6135f78ebbb196178f8d4f9b98d003cbe37446e9b1d5a18e53b267cb8e67bc25607451b752a383ea21f12fb99a9d28bee93a8a9afd09a744ea26a5c4bc1e68af83dd69209374dee028a1b03731b83d8ae43c04bed1358cc8ef45c15f618baa370da8c82b98e9aed8313a925706ccec507e09f6e57959a907bb31f3a7c9d44c888bf850d6e5bee163"],"dhUsesKnownPrimes":0,"dhYsReuse":false,"ecdhParameterReuse":false,"logjam":false,"hstsPolicy":{"LONG_MAX_AGE":15552000,"status":"absent","directives":{}},"hstsPreloads":[{"source":"Chrome","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634249761945},{"source":"Edge","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"Firefox","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634249703484},{"source":"IE","hostname":"revoked.badssl.com","status":"absent","sourceTime":1634249703484}],"hpkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"hpkpRoPolicy":{"status":"absent","pins":[],"matchedPins":[],"directives":[]},"staticPkpPolicy":{"status":"absent","pins":[],"matchedPins":[],"forbiddenPins":[],"matchedForbiddenPins":[]},"httpTransactions":[{"requestUrl":"https://revoked.badssl.com/","statusCode":200,"requestLine":"GET / HTTP/1.1","requestHeaders":["Host: revoked.badssl.com","User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX","Accept: */*","Connection: Close"],"responseLine":"HTTP/1.1 200 OK","responseHeadersRaw":["Server: nginx/1.10.3 (Ubuntu)","Date: Thu, 14 Oct 2021 22:30:33 GMT","Content-Type: text/html","Content-Length: 575","Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT","Connection: close","ETag: \"6164d5db-23f\"","Cache-Control: no-store","Accept-Ranges: bytes"],"responseHeaders":[{"name":"Server","value":"nginx/1.10.3 (Ubuntu)"},{"name":"Date","value":"Thu, 14 Oct 2021 22:30:33 GMT"},{"name":"Content-Type","value":"text/html"},{"name":"Content-Length","value":"575"},{"name":"Last-Modified","value":"Tue, 12 Oct 2021 00:24:59 GMT"},{"name":"Connection","value":"close"},{"name":"ETag","value":"\"6164d5db-23f\""},{"name":"Cache-Control","value":"no-store"},{"name":"Accept-Ranges","value":"bytes"}],"fragileServer":false}],"drownHosts":[],"drownErrors":false,"drownVulnerable":false,"zeroRTTEnabled":-1,"zombiePoodle":1,"goldenDoodle":1,"supportsCBC":true,"zeroLengthPaddingOracle":1,"sleepingPoodle":1}}],"certs":[{"id":"a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","subject":"CN=revoked.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US","serialNumber":"0371b58a86f6ce9c3ecb7bf42f9208fc","commonNames":["revoked.badssl.com"],"altNames":["revoked.badssl.com","www.revoked.badssl.com"],"notBefore":1570147200000,"notAfter":1633694400000,"issuerSubject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/ssca-sha2-g6.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"dnsCaa":false,"mustStaple":false,"sgc":0,"issues":4,"sct":true,"sha1Hash":"23fc13ba6f27bf8dd1761bda7bb41921f59c21f7","sha256Hash":"a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da","pinSha256":"xpENC6nt31kzNBSf7f6HOF83tiU1S7Q5XAriyN9I4Xw=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\n8fOu6G/BknS9r3g5pLpWaNc6NtqK\r\n-----END CERTIFICATE-----\n"},{"id":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","subject":"CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US","serialNumber":"01fda3eb6eca75c888438b724bcfbc91","commonNames":["DigiCert SHA2 Secure Server CA"],"notBefore":1362744000000,"notAfter":1678276800000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA256withRSA","revocationInfo":3,"crlURIs":["http://crl3.digicert.com/DigiCertGlobalRootCA.crl"],"ocspURIs":["http://ocsp.digicert.com"],"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":0,"sct":false,"sha1Hash":"1fb86b1168ec743154062e8c9cc5b171a4b7ccb4","sha256Hash":"154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f","pinSha256":"5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"},{"id":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","subject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","serialNumber":"083be056904246b1a1756ac95991c74a","commonNames":["DigiCert Global Root CA"],"notBefore":1163116800000,"notAfter":1952035200000,"issuerSubject":"CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US","sigAlg":"SHA1withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":256,"sct":false,"sha1Hash":"a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436","sha256Hash":"4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161","pinSha256":"r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----\nMIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQG\r\nEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw\r\nHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAw\r\nMDAwMDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3\r\ndy5kaWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkq\r\nhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsBCSDMAZOn\r\nTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97nh6Vfe63SKMI2tavegw5\r\nBmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt43C/dxC//AH2hdmoRBBYMql1GNXRor5H\r\n4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7PT19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y\r\n7vrTC0LUq7dBMtoM1O/4gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQAB\r\no2MwYTAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbRTLtm\r\n8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUwDQYJKoZIhvcNAQEF\r\nBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/EsrhMAtudXH/vTBH1jLuG2cenTnmCmr\r\nEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIt\r\ntep3Sp+dWOIrWcBAI+0tKIJFPnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886\r\nUAb3LujEV0lsYSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"},{"id":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","subject":"CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US","serialNumber":"00cdbc5a4aec9767b1","commonNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"altNames":["badssl-fallback-unknown-subdomain-or-no-sni"],"notBefore":1470691025000,"notAfter":1533763025000,"issuerSubject":"CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US","sigAlg":"SHA256withRSA","revocationInfo":0,"revocationStatus":0,"crlRevocationStatus":0,"ocspRevocationStatus":0,"mustStaple":false,"sgc":0,"issues":12,"sct":false,"sha1Hash":"3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9","sha256Hash":"d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813","pinSha256":"9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=","keyAlg":"RSA","keySize":2048,"keyStrength":2048,"keyKnownDebianInsecure":false,"raw":"-----BEGIN CERTIFICATE-----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\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"}]}
-]
+ {
+ "host": "revoked.badssl.com",
+ "port": 443,
+ "protocol": "http",
+ "isPublic": false,
+ "status": "READY",
+ "startTime": 1634250624137,
+ "testTime": 1634250759800,
+ "engineVersion": "2.1.8",
+ "criteriaVersion": "2009q",
+ "endpoints": [
+ {
+ "ipAddress": "104.154.89.105",
+ "serverName": "105.89.154.104.bc.googleusercontent.com",
+ "statusMessage": "Ready",
+ "grade": "T",
+ "gradeTrustIgnored": "B",
+ "hasWarnings": false,
+ "isExceptional": false,
+ "progress": 100,
+ "duration": 135412,
+ "delegation": 1,
+ "details": {
+ "hostStartTime": 1634250624137,
+ "certChains": [
+ {
+ "id": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "validity check failed"
+ }
+ ]
+ }
+ ],
+ "issues": 0,
+ "noSni": false
+ },
+ {
+ "id": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trustPaths": [
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Mozilla",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Apple",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Android",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Java",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ },
+ {
+ "certIds": [
+ "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813"
+ ],
+ "trust": [
+ {
+ "rootStore": "Windows",
+ "isTrusted": false,
+ "trustErrorMessage": "path does not chain to a trusted anchor"
+ }
+ ]
+ }
+ ],
+ "issues": 2,
+ "noSni": true
+ }
+ ],
+ "protocols": [
+ {
+ "id": 769,
+ "name": "TLS",
+ "version": "1.0"
+ },
+ {
+ "id": 770,
+ "name": "TLS",
+ "version": "1.1"
+ },
+ {
+ "id": 771,
+ "name": "TLS",
+ "version": "1.2"
+ }
+ ],
+ "suites": [
+ {
+ "protocol": 769,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 770,
+ "list": [
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ },
+ {
+ "protocol": 771,
+ "list": [
+ {
+ "id": 49199,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "id": 49200,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1"
+ },
+ {
+ "id": 158,
+ "name": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256
+ },
+ {
+ "id": 159,
+ "name": "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256
+ },
+ {
+ "id": 49191,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49171,
+ "name": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49192,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 49172,
+ "name": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 103,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 51,
+ "name": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 107,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 57,
+ "name": "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 49170,
+ "name": "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "q": 1
+ },
+ {
+ "id": 156,
+ "name": "TLS_RSA_WITH_AES_128_GCM_SHA256",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 157,
+ "name": "TLS_RSA_WITH_AES_256_GCM_SHA384",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 60,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA256",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 61,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA256",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 47,
+ "name": "TLS_RSA_WITH_AES_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ },
+ {
+ "id": 53,
+ "name": "TLS_RSA_WITH_AES_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 10,
+ "name": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "cipherStrength": 112,
+ "q": 1
+ },
+ {
+ "id": 136,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 132,
+ "name": "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA",
+ "cipherStrength": 256,
+ "q": 1
+ },
+ {
+ "id": 69,
+ "name": "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "kxType": "DH",
+ "kxStrength": 2048,
+ "dhBits": 256,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "q": 1
+ },
+ {
+ "id": 65,
+ "name": "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA",
+ "cipherStrength": 128,
+ "q": 1
+ }
+ ],
+ "preference": true
+ }
+ ],
+ "namedGroups": {
+ "list": [
+ {
+ "id": 23,
+ "name": "secp256r1",
+ "bits": 256,
+ "namedGroupType": "EC"
+ }
+ ]
+ },
+ "serverSignature": "nginx/1.10.3 (Ubuntu)",
+ "prefixDelegation": false,
+ "nonPrefixDelegation": true,
+ "vulnBeast": true,
+ "renegSupport": 2,
+ "sessionResumption": 1,
+ "compressionMethods": 0,
+ "supportsNpn": true,
+ "npnProtocols": "http/1.1",
+ "supportsAlpn": true,
+ "alpnProtocols": "http/1.1",
+ "sessionTickets": 1,
+ "ocspStapling": false,
+ "sniRequired": true,
+ "httpStatusCode": 200,
+ "supportsRc4": false,
+ "rc4WithModern": false,
+ "rc4Only": false,
+ "forwardSecrecy": 4,
+ "supportsAead": true,
+ "protocolIntolerance": 0,
+ "miscIntolerance": 0,
+ "sims": {
+ "results": [
+ {
+ "client": {
+ "id": 56,
+ "name": "Android",
+ "version": "2.3.7",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 58,
+ "name": "Android",
+ "version": "4.0.4",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 59,
+ "name": "Android",
+ "version": "4.1.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 60,
+ "name": "Android",
+ "version": "4.2.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 61,
+ "name": "Android",
+ "version": "4.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 62,
+ "name": "Android",
+ "version": "4.4.2",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 88,
+ "name": "Android",
+ "version": "5.0.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 129,
+ "name": "Android",
+ "version": "6.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 167,
+ "name": "Android",
+ "version": "7.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 168,
+ "name": "Android",
+ "version": "8.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 157,
+ "name": "Android",
+ "version": "8.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 158,
+ "name": "Android",
+ "version": "9.0",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 94,
+ "name": "Baidu",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 91,
+ "name": "BingPreview",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 136,
+ "name": "Chrome",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 152,
+ "name": "Chrome",
+ "platform": "Win 7",
+ "version": "69",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 153,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "70",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 170,
+ "name": "Chrome",
+ "platform": "Win 10",
+ "version": "80",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 84,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "31.3.0 ESR",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 132,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "47",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 137,
+ "name": "Firefox",
+ "platform": "XP SP3",
+ "version": "49",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 151,
+ "name": "Firefox",
+ "platform": "Win 7",
+ "version": "62",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 171,
+ "name": "Firefox",
+ "platform": "Win 10",
+ "version": "73",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 145,
+ "name": "Googlebot",
+ "version": "Feb 2018",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 100,
+ "name": "IE",
+ "platform": "XP",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Protocol mismatch (not simulated)",
+ "attempts": 0
+ },
+ {
+ "client": {
+ "id": 19,
+ "name": "IE",
+ "platform": "Vista",
+ "version": "7",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 101,
+ "name": "IE",
+ "platform": "XP",
+ "version": "8",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Incorrect certificate because this client doesn't support SNI",
+ "attempts": 1,
+ "certChainId": "e732b13ec33e4b1f6ee464798cc2b66641a23ae0e79f06f59a1fad240d14a727",
+ "protocolId": 769,
+ "suiteId": 10,
+ "suiteName": "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 113,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "8-10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 143,
+ "name": "IE",
+ "platform": "Win 7",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 134,
+ "name": "IE",
+ "platform": "Win 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 64,
+ "name": "IE",
+ "platform": "Win Phone 8.0",
+ "version": "10",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 65,
+ "name": "IE",
+ "platform": "Win Phone 8.1",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 106,
+ "name": "IE",
+ "platform": "Win Phone 8.1 Update",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 158,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 131,
+ "name": "IE",
+ "platform": "Win 10",
+ "version": "11",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 144,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "15",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 159,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "16",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 160,
+ "name": "Edge",
+ "platform": "Win 10",
+ "version": "18",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 120,
+ "name": "Edge",
+ "platform": "Win Phone 10",
+ "version": "13",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 25,
+ "name": "Java",
+ "version": "6u45",
+ "isReference": false
+ },
+ "errorCode": 1,
+ "errorMessage": "Client does not support DH parameters > 1024 bits",
+ "attempts": 1,
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": -1,
+ "dhG": -1,
+ "dhYs": -1,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 26,
+ "name": "Java",
+ "version": "7u25",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 147,
+ "name": "Java",
+ "version": "8u161",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 162,
+ "name": "Java",
+ "version": "11.0.3",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 163,
+ "name": "Java",
+ "version": "12.0.1",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 27,
+ "name": "OpenSSL",
+ "version": "0.9.8y",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 51,
+ "suiteName": "TLS_DHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "DH",
+ "kxStrength": 16384,
+ "dhBits": 2048,
+ "dhP": 256,
+ "dhG": 1,
+ "dhYs": 256,
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 99,
+ "name": "OpenSSL",
+ "version": "1.0.1l",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 164,
+ "name": "OpenSSL",
+ "version": "1.0.2s",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 169,
+ "name": "OpenSSL",
+ "version": "1.1.0k",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 165,
+ "name": "OpenSSL",
+ "version": "1.1.1c",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 32,
+ "name": "Safari",
+ "platform": "OS X 10.6.8",
+ "version": "5.1.9",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 33,
+ "name": "Safari",
+ "platform": "iOS 6.0.1",
+ "version": "6",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 34,
+ "name": "Safari",
+ "platform": "OS X 10.8.4",
+ "version": "6.0.4",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 769,
+ "suiteId": 49171,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 63,
+ "name": "Safari",
+ "platform": "iOS 7.1",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 35,
+ "name": "Safari",
+ "platform": "OS X 10.9",
+ "version": "7",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 85,
+ "name": "Safari",
+ "platform": "iOS 8.4",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 87,
+ "name": "Safari",
+ "platform": "OS X 10.10",
+ "version": "8",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49191,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 114,
+ "name": "Safari",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 111,
+ "name": "Safari",
+ "platform": "OS X 10.11",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 140,
+ "name": "Safari",
+ "platform": "iOS 10",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 138,
+ "name": "Safari",
+ "platform": "OS X 10.12",
+ "version": "10",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 161,
+ "name": "Safari",
+ "platform": "MacOS 10.14.6 Beta",
+ "version": "12.1.2",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 166,
+ "name": "Safari",
+ "platform": "iOS 12.3.1",
+ "version": "12.1.1",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 112,
+ "name": "Apple ATS",
+ "platform": "iOS 9",
+ "version": "9",
+ "isReference": true
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 92,
+ "name": "Yahoo Slurp",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ },
+ {
+ "client": {
+ "id": 93,
+ "name": "YandexBot",
+ "version": "Jan 2015",
+ "isReference": false
+ },
+ "errorCode": 0,
+ "attempts": 1,
+ "certChainId": "a09f389447c3586fe57da01962ecfc7f6645a24b6a706588f40f94c8d59dfb8a",
+ "protocolId": 771,
+ "suiteId": 49199,
+ "suiteName": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+ "kxType": "ECDH",
+ "kxStrength": 3072,
+ "namedGroupBits": 256,
+ "namedGroupId": 23,
+ "namedGroupName": "secp256r1",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "sigAlg": "SHA256withRSA"
+ }
+ ]
+ },
+ "heartbleed": false,
+ "heartbeat": true,
+ "openSslCcs": 1,
+ "openSSLLuckyMinus20": 1,
+ "ticketbleed": 1,
+ "bleichenbacher": 1,
+ "poodle": false,
+ "poodleTls": 1,
+ "fallbackScsv": true,
+ "freak": false,
+ "hasSct": 1,
+ "dhPrimes": [
+ "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"
+ ],
+ "dhUsesKnownPrimes": 0,
+ "dhYsReuse": false,
+ "ecdhParameterReuse": false,
+ "logjam": false,
+ "hstsPolicy": {
+ "LONG_MAX_AGE": 15552000,
+ "status": "absent",
+ "directives": {}
+ },
+ "hstsPreloads": [
+ {
+ "source": "Chrome",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249761945
+ },
+ {
+ "source": "Edge",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "Firefox",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ },
+ {
+ "source": "IE",
+ "hostname": "revoked.badssl.com",
+ "status": "absent",
+ "sourceTime": 1634249703484
+ }
+ ],
+ "hpkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "hpkpRoPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "directives": []
+ },
+ "staticPkpPolicy": {
+ "status": "absent",
+ "pins": [],
+ "matchedPins": [],
+ "forbiddenPins": [],
+ "matchedForbiddenPins": []
+ },
+ "httpTransactions": [
+ {
+ "requestUrl": "https://revoked.badssl.com/",
+ "statusCode": 200,
+ "requestLine": "GET / HTTP/1.1",
+ "requestHeaders": [
+ "Host: revoked.badssl.com",
+ "User-Agent: SSL Labs (https://www.ssllabs.com/about/assessment.html); on behalf of XXX.XXX.XXX.XXX",
+ "Accept: */*",
+ "Connection: Close"
+ ],
+ "responseLine": "HTTP/1.1 200 OK",
+ "responseHeadersRaw": [
+ "Server: nginx/1.10.3 (Ubuntu)",
+ "Date: Thu, 14 Oct 2021 22:30:33 GMT",
+ "Content-Type: text/html",
+ "Content-Length: 575",
+ "Last-Modified: Tue, 12 Oct 2021 00:24:59 GMT",
+ "Connection: close",
+ "ETag: \"6164d5db-23f\"",
+ "Cache-Control: no-store",
+ "Accept-Ranges: bytes"
+ ],
+ "responseHeaders": [
+ {
+ "name": "Server",
+ "value": "nginx/1.10.3 (Ubuntu)"
+ },
+ {
+ "name": "Date",
+ "value": "Thu, 14 Oct 2021 22:30:33 GMT"
+ },
+ {
+ "name": "Content-Type",
+ "value": "text/html"
+ },
+ {
+ "name": "Content-Length",
+ "value": "575"
+ },
+ {
+ "name": "Last-Modified",
+ "value": "Tue, 12 Oct 2021 00:24:59 GMT"
+ },
+ {
+ "name": "Connection",
+ "value": "close"
+ },
+ {
+ "name": "ETag",
+ "value": "\"6164d5db-23f\""
+ },
+ {
+ "name": "Cache-Control",
+ "value": "no-store"
+ },
+ {
+ "name": "Accept-Ranges",
+ "value": "bytes"
+ }
+ ],
+ "fragileServer": false
+ }
+ ],
+ "drownHosts": [],
+ "drownErrors": false,
+ "drownVulnerable": false,
+ "zeroRTTEnabled": -1,
+ "zombiePoodle": 1,
+ "goldenDoodle": 1,
+ "supportsCBC": true,
+ "zeroLengthPaddingOracle": 1,
+ "sleepingPoodle": 1
+ }
+ }
+ ],
+ "certs": [
+ {
+ "id": "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "subject": "CN=revoked.badssl.com, O=Lucas Garron Torres, L=Walnut Creek, ST=California, C=US",
+ "serialNumber": "0371b58a86f6ce9c3ecb7bf42f9208fc",
+ "commonNames": [
+ "revoked.badssl.com"
+ ],
+ "altNames": [
+ "revoked.badssl.com",
+ "www.revoked.badssl.com"
+ ],
+ "notBefore": 1570147200000,
+ "notAfter": 1633694400000,
+ "issuerSubject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/ssca-sha2-g6.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "dnsCaa": false,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 4,
+ "sct": true,
+ "sha1Hash": "23fc13ba6f27bf8dd1761bda7bb41921f59c21f7",
+ "sha256Hash": "a8e14f2b22da55828c63dd7ed6384567912699a444a6eb2a6552aa7965d619da",
+ "pinSha256": "xpENC6nt31kzNBSf7f6HOF83tiU1S7Q5XAriyN9I4Xw=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\n8fOu6G/BknS9r3g5pLpWaNc6NtqK\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "subject": "CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US",
+ "serialNumber": "01fda3eb6eca75c888438b724bcfbc91",
+ "commonNames": [
+ "DigiCert SHA2 Secure Server CA"
+ ],
+ "notBefore": 1362744000000,
+ "notAfter": 1678276800000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 3,
+ "crlURIs": [
+ "http://crl3.digicert.com/DigiCertGlobalRootCA.crl"
+ ],
+ "ocspURIs": [
+ "http://ocsp.digicert.com"
+ ],
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 0,
+ "sct": false,
+ "sha1Hash": "1fb86b1168ec743154062e8c9cc5b171a4b7ccb4",
+ "sha256Hash": "154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f",
+ "pinSha256": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIElDCCA3ygAwIBAgIQAf2j627KdciIQ4tyS8+8kTANBgkqhkiG9w0BAQsFADBhMQswCQYDVQQG\r\nEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw\r\nHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBDQTAeFw0xMzAzMDgxMjAwMDBaFw0yMzAzMDgx\r\nMjAwMDBaME0xCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxJzAlBgNVBAMTHkRp\r\nZ2lDZXJ0IFNIQTIgU2VjdXJlIFNlcnZlciBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC\r\nggEBANyuWJBNwcQwFZA1W248ghX1LFy949v/cUP6ZCWA1O4Yok3wZtAKc24RmDYXZK83nf36QYSv\r\nx6+M/hpzTc8zl5CilodTgyu5pnVILR1WN3vaMTIa16yrBvSqXUu3R0bdKpPDkC55gIDvEwRqFDu1\r\nm5K+wgdlTvza/P96rtxcflUxDOg5B6TXvi/TC2rSsd9f/ld0Uzs1gN2ujkSYs58O09rg1/RrKatE\r\np0tYhG2SS4HD2nOLEpdIkARFdRrdNzGXkujNVA075ME/OV4uuPNcfhCOhkEAjUVmR7ChZc6gqikJ\r\nTvOX6+guqw9ypzAO+sf0/RR3w6RbKFfCs/mC/bdFWJsCAwEAAaOCAVowggFWMBIGA1UdEwEB/wQI\r\nMAYBAf8CAQAwDgYDVR0PAQH/BAQDAgGGMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0\r\ncDovL29jc3AuZGlnaWNlcnQuY29tMHsGA1UdHwR0MHIwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2lj\r\nZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RDQS5jcmwwN6A1oDOGMWh0dHA6Ly9jcmw0LmRpZ2lj\r\nZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RDQS5jcmwwPQYDVR0gBDYwNDAyBgRVHSAAMCowKAYI\r\nKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwHQYDVR0OBBYEFA+AYRyCMWHV\r\nLyjnjUY4tCzhxtniMB8GA1UdIwQYMBaAFAPeUDVW0Uy7ZvCj4hsbw5eyPdFVMA0GCSqGSIb3DQEB\r\nCwUAA4IBAQAjPt9L0jFCpbZ+QlwaRMxp0Wi0XUvgBCFsS+JtzLHgl4+mUwnNqipl5TlPHoOlblyY\r\noiQm5vuh7ZPHLgLGTUq/sELfeNqzqPlt/yGFUzZgTHbO7Djc1lGA8MXW5dRNJ2Srm8c+cftIl7gz\r\nbckTB+6WohsYFfZcTEDts8Ls/3HB40f/1LkAtDdC2iDJ6m6K7hQGrn2iWZiIqBtvLfTyyRRfJs8s\r\njX7tN8Cp1Tm5gr8ZDOo0rwAhaPitc+LJMto4JQtV05od8GiG7S5BNO98pVAdvzr508EIDObtHopY\r\nJeS4d60tbvVS3bR0j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "subject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "serialNumber": "083be056904246b1a1756ac95991c74a",
+ "commonNames": [
+ "DigiCert Global Root CA"
+ ],
+ "notBefore": 1163116800000,
+ "notAfter": 1952035200000,
+ "issuerSubject": "CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US",
+ "sigAlg": "SHA1withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 256,
+ "sct": false,
+ "sha1Hash": "a8985d3a65e5e5c4b2d7d66d40c6dd2fb19c5436",
+ "sha256Hash": "4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161",
+ "pinSha256": "r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----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\r\nCAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=\r\n-----END CERTIFICATE-----\n"
+ },
+ {
+ "id": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "subject": "CN=badssl-fallback-unknown-subdomain-or-no-sni, O=BadSSL Fallback. Unknown subdomain or no SNI., L=San Francisco, ST=California, C=US",
+ "serialNumber": "00cdbc5a4aec9767b1",
+ "commonNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "altNames": [
+ "badssl-fallback-unknown-subdomain-or-no-sni"
+ ],
+ "notBefore": 1470691025000,
+ "notAfter": 1533763025000,
+ "issuerSubject": "CN=BadSSL Intermediate Certificate Authority, O=BadSSL, L=San Francisco, ST=California, C=US",
+ "sigAlg": "SHA256withRSA",
+ "revocationInfo": 0,
+ "revocationStatus": 0,
+ "crlRevocationStatus": 0,
+ "ocspRevocationStatus": 0,
+ "mustStaple": false,
+ "sgc": 0,
+ "issues": 12,
+ "sct": false,
+ "sha1Hash": "3e9cce49eec17bf15bf891a3ae9f3712e0ba42e9",
+ "sha256Hash": "d073b38943b36bd970ec8f61b3a1aea66e58eff160daee143bcb9d9967867813",
+ "pinSha256": "9SLklscvzMYj8f+52lp5ze/hY0CFHyLSPQzSpYYIBm8=",
+ "keyAlg": "RSA",
+ "keySize": 2048,
+ "keyStrength": 2048,
+ "keyKnownDebianInsecure": false,
+ "raw": "-----BEGIN CERTIFICATE-----\nMIIE8DCCAtigAwIBAgIJAM28Wkrsl2exMA0GCSqGSIb3DQEBCwUAMH8xCzAJBgNVBAYTAlVTMRMw\r\nEQYDVQQIDApDYWxpZm9ybmlhMRYwFAYDVQQHDA1TYW4gRnJhbmNpc2NvMQ8wDQYDVQQKDAZCYWRT\r\nU0wxMjAwBgNVBAMMKUJhZFNTTCBJbnRlcm1lZGlhdGUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4X\r\nDTE2MDgwODIxMTcwNVoXDTE4MDgwODIxMTcwNVowgagxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApD\r\nYWxpZm9ybmlhMRYwFAYDVQQHDA1TYW4gRnJhbmNpc2NvMTYwNAYDVQQKDC1CYWRTU0wgRmFsbGJh\r\nY2suIFVua25vd24gc3ViZG9tYWluIG9yIG5vIFNOSS4xNDAyBgNVBAMMK2JhZHNzbC1mYWxsYmFj\r\nay11bmtub3duLXN1YmRvbWFpbi1vci1uby1zbmkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK\r\nAoIBAQDCBOz4jO4EwrPYUNVwWMyTGOtcqGhJsCK1+ZWesSssdj5swEtgTEzqsrTAD4C2sPlyyYYC\r\n+VxBXRMrf3HES7zplC5QN6ZnHGGM9kFCxUbTFocnn3TrCp0RUiYhc2yETHlV5NFr6AY9SBVSrbMo\r\n26r/bv9glUp3aznxJNExtt1NwMT8U7ltQq21fP6u9RXSM0jnInHHwhR6bCjqN0rf6my1crR+WqIW\r\n3GmxV0TbChKr3sMPR3RcQSLhmvkbk+atIgYpLrG6SRwMJ56j+4v3QHIArJII2YxXhFOBBcvm/mtU\r\nmEAnhccQu3Nw72kYQQdFVXz5ZD89LMOpfOuTGkyG0cqFAgMBAAGjRTBDMAkGA1UdEwQCMAAwNgYD\r\nVR0RBC8wLYIrYmFkc3NsLWZhbGxiYWNrLXVua25vd24tc3ViZG9tYWluLW9yLW5vLXNuaTANBgkq\r\nhkiG9w0BAQsFAAOCAgEAsuFs0K86D2IB20nBQNb+4vs2Z6kECmVUuD0vEUBR/dovFE4PfzTr6uUw\r\nRoRdjToewx9VCwvTL7toq3ddoOwHakRjoxvq+lKvPq+0FMTlKYRjOL6Cq3wZNcsyiTYr7odyKbZs\r\n383rEBbcNu0Nc666/ozs4y4W7ufeMFrKak9UenrrPlUe0nrEHV3IMSF32iV85nXm95f7aLFvM6Lm\r\nEzAGgWopuRqD+J0QEt3WNODWqBSZ9EYyx9l2l+KI1QcMalG20QXuxDNHmTEzMaCj4Zl8k0szexR8\r\nrbcQEgJ9J+izxsecLRVp70siGEYDkhq0DgIDOjmmu8ath4yznX6ApYEGtYTDUxIvsWxwkraBBJAf\r\nVxkp2OSg7DiZEVlMM8QxbSeLCz+63kE/d5iJfqdecGqX7rKEsVW4VLfHPF8sfCyXVi5sWrXrDvJm\r\n3zx2b3XToU7EbNONO1C85NsUOWy4JccoiguV8V6C723IgzkSgJMlpblJ6FVxC6ZX5XJ0ZsMI9TIj\r\nibM2L1Z9DkWRCT6DQjuKbYUeURhScofQBiIx73V7VXnFoc1qHAUd/pGhfkCUnUcuBV1SzCEhjiwj\r\nnVKxHJKvc9OYjJD0ZuvZw9gBrY7qKyBX8g+sglEGFNhruH8/OhqrV8pBXX/EWY0fUZThiywmc6GT\r\nT7X94Ze2F7iB45jh7WQ=\r\n-----END CERTIFICATE-----\n"
+ }
+ ]
+ }
+]
\ No newline at end of file
diff --git a/unittests/scans/tenable/nessus_was/nessus_was_no_vuln.xml b/unittests/scans/tenable/nessus_was/nessus_was_no_vuln.xml
index a6518905ea1..c1e6e9c8728 100644
--- a/unittests/scans/tenable/nessus_was/nessus_was_no_vuln.xml
+++ b/unittests/scans/tenable/nessus_was/nessus_was_no_vuln.xml
@@ -1,2 +1,81 @@
-
905a5ba3-6db3-4f80-b550-1c2316e23cc619257b6d-6ad2-4e1e-b710-dcfb12e720f7WAS/%vfalsetext/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8en-US,en;q=0.520false5000000102truetruetruetruetruetruetruetruefalsefalsetrueall100false\5true510logoutjs,css,png,jpeg,gif,pdf,csv,svn-base,svg,jpg,ico,woff,woff2500050030000disabletrue100253601600true120002:00:00truelimitedhttp://rfi.nessus.org/rfi.txtfalsecloudnessis_was_many_vuln
-http://google.com/web_application2021-03-12T12:34:30.12031+00:002021-03-12T14:35:34.341269+00:00
\ No newline at end of file
+
+
+
+
+
+
+
+ 905a5ba3-6db3-4f80-b550-1c2316e23cc6
+ 19257b6d-6ad2-4e1e-b710-dcfb12e720f7
+ WAS/%v
+ false
+ text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
+ en-US,en;q=0.5
+ 20
+ false
+ 5000000
+ 10
+ 2
+ true
+ true
+ true
+ true
+ true
+ true
+ true
+ true
+ false
+ false
+ true
+ all
+ 100
+ false
+ 5
+ true
+ 5
+ 10
+ logout
+ js,css,png,jpeg,gif,pdf,csv,svn-base,svg,jpg,ico,woff,woff2
+ 5000
+ 500
+ 30000
+
+ disable
+
+
+ true
+ 100
+ 25
+ 3
+ 60
+ 1600
+ true
+ 1200
+ 02:00:00
+ true
+ limited
+ http://rfi.nessus.org/rfi.txt
+ false
+
+
+ cloud
+
+ nessis_was_many_vuln
+
+
+
+
+
+
+
+
+
+
+ http://google.com/
+ web_application
+ 2021-03-12T12:34:30.12031+00:00
+ 2021-03-12T14:35:34.341269+00:00
+
+
+
+
diff --git a/unittests/test_apiv2_methods_and_endpoints.py b/unittests/test_apiv2_methods_and_endpoints.py
index 3ca9f05cd24..38e40f96b89 100644
--- a/unittests/test_apiv2_methods_and_endpoints.py
+++ b/unittests/test_apiv2_methods_and_endpoints.py
@@ -49,15 +49,18 @@ def test_is_defined(self):
"configuration_permissions", "questionnaire_questions",
"questionnaire_answers", "questionnaire_answered_questionnaires",
"questionnaire_engagement_questionnaires", "questionnaire_general_questionnaires",
- "dojo_group_members", "product_members", "product_groups", "product_type_groups",
- "product_type_members", "asset_members", "asset_groups", "organization_groups",
- "organization_members",
# pghistory Event models (should not be exposed via API)
"dojo_userevents", "endpointevents", "engagementevents", "findingevents",
"finding_groupevents", "product_typeevents", "productevents", "testevents",
"risk_acceptanceevents", "finding_templateevents", "cred_userevents",
"notification_webhooksevents",
}
+ patch_exempt_list = {
+ "dojo_group_members", "product_members", "product_groups", "product_type_groups",
+ "product_type_members", "asset_members", "asset_groups", "organization_groups",
+ "organization_members",
+ }
+
for reg, _, _ in sorted(self.registry):
if reg in exempt_list:
continue
@@ -67,7 +70,15 @@ def test_is_defined(self):
f"Endpoint: {reg}, Method: {method}",
)
- for method in ["get", "put", "patch", "delete"]:
+ for method in ["get", "put", "delete"]:
+ self.assertIsNotNone(
+ self.schema["paths"][f"{BASE_API_URL}/{reg}" + "/{id}/"].get(method),
+ f"Endpoint: {reg}, Method: {method}",
+ )
+
+ for method in ["patch"]:
+ if reg in patch_exempt_list:
+ continue
self.assertIsNotNone(
self.schema["paths"][f"{BASE_API_URL}/{reg}" + "/{id}/"].get(method),
f"Endpoint: {reg}, Method: {method}",
diff --git a/unittests/test_jira_import_and_pushing_api.py b/unittests/test_jira_import_and_pushing_api.py
index ee0808b3ca8..00019a955a9 100644
--- a/unittests/test_jira_import_and_pushing_api.py
+++ b/unittests/test_jira_import_and_pushing_api.py
@@ -185,6 +185,15 @@ def test_import_with_groups_with_push_to_jira_is_false_but_push_all(self):
# by asserting full cassette is played we know issues have been updated in JIRA
self.assert_cassette_played()
+ def test_import_with_group_by_with_push_all_but_no_groups_created(self):
+ self.set_jira_push_all_issues(self.get_engagement(1))
+ import0 = self.import_scan_with_params(self.zap_sample5_filename, group_by="component_name+component_version", verified=True)
+ test_id = import0["test"]
+ self.assert_jira_issue_count_in_test(test_id, 2)
+ self.assert_jira_group_issue_count_in_test(test_id, 0)
+ # by asserting full cassette is played we know issues have been updated in JIRA
+ self.assert_cassette_played()
+
def test_import_no_push_to_jira_reimport_no_push_to_jira(self):
import0 = self.import_scan_with_params(self.zap_sample5_filename, verified=True)
test_id = import0["test"]
diff --git a/unittests/test_rest_framework.py b/unittests/test_rest_framework.py
index f32350e2e86..7f2001dd193 100644
--- a/unittests/test_rest_framework.py
+++ b/unittests/test_rest_framework.py
@@ -86,6 +86,12 @@
UserContactInfoViewSet,
UsersViewSet,
)
+from dojo.asset.api.views import (
+ AssetAPIScanConfigurationViewSet,
+ AssetGroupViewSet,
+ AssetMemberViewSet,
+ AssetViewSet,
+)
from dojo.authorization.roles_permissions import Permissions
from dojo.models import (
Announcement,
@@ -140,6 +146,11 @@
User,
UserContactInfo,
)
+from dojo.organization.api.views import (
+ OrganizationGroupViewSet,
+ OrganizationMemberViewSet,
+ OrganizationViewSet,
+)
from .dojo_test_case import DojoAPITestCase, get_unit_tests_scans_path
@@ -1905,6 +1916,29 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class Asset_API_Scan_ConfigurationTest(BaseClass.BaseClassTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_API_Scan_Configuration
+ self.endpoint_path = "asset_api_scan_configurations"
+ self.viewname = "asset_api_scan_configuration"
+ self.viewset = AssetAPIScanConfigurationViewSet
+ self.payload = {
+ "asset": 2,
+ "service_key_1": "dojo_sonar_key",
+ "tool_configuration": 3,
+ }
+ self.update_fields = {"tool_configuration": 2}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_API_Scan_Configuration
+ self.permission_create = Permissions.Product_API_Scan_Configuration_Add
+ self.permission_update = Permissions.Product_API_Scan_Configuration_Edit
+ self.permission_delete = Permissions.Product_API_Scan_Configuration_Delete
+ self.deleted_objects = 1
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class ProductTest(BaseClass.BaseClassTest):
fixtures = ["dojo_testdata.json"]
@@ -1932,6 +1966,33 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class AssetTest(BaseClass.BaseClassTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product
+ self.endpoint_path = "assets"
+ self.viewname = "asset"
+ self.viewset = AssetViewSet
+ self.payload = {
+ "product_manager": 2,
+ "technical_contact": 3,
+ "team_manager": 2,
+ "organization": 1,
+ "name": "Test Product",
+ "description": "test product",
+ "tags": ["mytag", "yourtag"],
+ }
+ self.update_fields = {"organization": 2}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product
+ self.permission_create = Permissions.Product_Type_Add_Product
+ self.permission_update = Permissions.Product_Edit
+ self.permission_delete = Permissions.Product_Delete
+ self.deleted_objects = 25
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class StubFindingsTest(BaseClass.BaseClassTest):
fixtures = ["dojo_testdata.json"]
@@ -2873,6 +2934,47 @@ def test_create_authorized_owner(self):
self.assertEqual(201, response.status_code, response.content[:1000])
+class OrganizationTest(BaseClass.BaseClassTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_Type
+ self.endpoint_path = "organizations"
+ self.viewname = "organization"
+ self.viewset = OrganizationViewSet
+ self.payload = {
+ "name": "Test Organization",
+ "description": "Test",
+ "key_product": True,
+ "critical_product": False,
+ }
+ self.update_fields = {"description": "changed"}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_Type
+ self.permission_update = Permissions.Product_Type_Edit
+ self.permission_delete = Permissions.Product_Type_Delete
+ self.deleted_objects = 25
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+ def test_create_object_not_authorized(self):
+ self.setUp_not_authorized()
+
+ response = self.client.post(self.url, self.payload)
+ self.assertEqual(403, response.status_code, response.content[:1000])
+
+ def test_create_not_authorized_reader(self):
+ self.setUp_global_reader()
+
+ response = self.client.post(self.url, self.payload)
+ self.assertEqual(403, response.status_code, response.content[:1000])
+
+ def test_create_authorized_owner(self):
+ self.setUp_global_owner()
+
+ response = self.client.post(self.url, self.payload)
+ self.assertEqual(201, response.status_code, response.content[:1000])
+
+
class DojoGroupsTest(BaseClass.BaseClassTest):
fixtures = ["dojo_testdata.json"]
@@ -3016,6 +3118,29 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class OrganizationMemberTest(BaseClass.MemberEndpointTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_Type_Member
+ self.endpoint_path = "organization_members"
+ self.viewname = "organization_member"
+ self.viewset = OrganizationMemberViewSet
+ self.payload = {
+ "organization": 1,
+ "user": 3,
+ "role": 2,
+ }
+ self.update_fields = {"role": 3}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_Type_Member
+ self.permission_create = Permissions.Product_Type_Manage_Members
+ self.permission_update = Permissions.Product_Type_Manage_Members
+ self.permission_delete = Permissions.Product_Type_Member_Delete
+ self.deleted_objects = 1
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class ProductMemberTest(BaseClass.MemberEndpointTest):
fixtures = ["dojo_testdata.json"]
@@ -3039,6 +3164,29 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class AssetMemberTest(BaseClass.MemberEndpointTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_Member
+ self.endpoint_path = "asset_members"
+ self.viewname = "asset_member"
+ self.viewset = AssetMemberViewSet
+ self.payload = {
+ "asset": 3,
+ "user": 2,
+ "role": 2,
+ }
+ self.update_fields = {"role": 3}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_Member
+ self.permission_create = Permissions.Product_Manage_Members
+ self.permission_update = Permissions.Product_Manage_Members
+ self.permission_delete = Permissions.Product_Member_Delete
+ self.deleted_objects = 1
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class ProductTypeGroupTest(BaseClass.MemberEndpointTest):
fixtures = ["dojo_testdata.json"]
@@ -3062,6 +3210,29 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class OrganiazationGroupTest(BaseClass.MemberEndpointTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_Type_Group
+ self.endpoint_path = "organization_groups"
+ self.viewname = "organization_group"
+ self.viewset = OrganizationGroupViewSet
+ self.payload = {
+ "organization": 1,
+ "group": 2,
+ "role": 2,
+ }
+ self.update_fields = {"role": 3}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_Type_Group
+ self.permission_create = Permissions.Product_Type_Group_Add
+ self.permission_update = Permissions.Product_Type_Group_Edit
+ self.permission_delete = Permissions.Product_Type_Group_Delete
+ self.deleted_objects = 1
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class ProductGroupTest(BaseClass.MemberEndpointTest):
fixtures = ["dojo_testdata.json"]
@@ -3085,6 +3256,29 @@ def __init__(self, *args, **kwargs):
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+class AssetGroupTest(BaseClass.MemberEndpointTest):
+ fixtures = ["dojo_testdata.json"]
+
+ def __init__(self, *args, **kwargs):
+ self.endpoint_model = Product_Group
+ self.endpoint_path = "asset_groups"
+ self.viewname = "asset_group"
+ self.viewset = AssetGroupViewSet
+ self.payload = {
+ "asset": 1,
+ "group": 2,
+ "role": 2,
+ }
+ self.update_fields = {"role": 3}
+ self.test_type = TestType.OBJECT_PERMISSIONS
+ self.permission_check_class = Product_Group
+ self.permission_create = Permissions.Product_Group_Add
+ self.permission_update = Permissions.Product_Group_Edit
+ self.permission_delete = Permissions.Product_Group_Delete
+ self.deleted_objects = 1
+ BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+
+
class LanguageTypeTest(BaseClass.BaseClassTest):
fixtures = ["dojo_testdata.json"]
@@ -3258,11 +3452,20 @@ def __init__(self, *args, **kwargs):
self.payload = {
"name": "Test_1",
}
- self.update_fields = {"name": "Test_2"}
+ self.update_fields = {"active": False}
self.test_type = TestType.CONFIGURATION_PERMISSIONS
self.deleted_objects = 1
BaseClass.RESTEndpointTest.__init__(self, *args, **kwargs)
+ def test_name_read_only(self):
+ current_objects = self.client.get(self.url, format="json").data
+ relative_url = self.url + "{}/".format(current_objects["results"][-1]["id"])
+ payload = {"name": "New name"}
+ response = self.client.patch(relative_url, payload, format="json")
+ self.assertEqual(200, response.status_code, response.content[:1000])
+ # See that the request was politley ignored and that name did not change
+ self.assertEqual(current_objects["results"][-1]["name"], response.data["name"])
+
class ConfigurationPermissionTest(BaseClass.BaseClassTest):
fixtures = ["dojo_testdata.json"]
diff --git a/unittests/test_tags.py b/unittests/test_tags.py
index f4723ae8bcb..b08990e9bd2 100644
--- a/unittests/test_tags.py
+++ b/unittests/test_tags.py
@@ -1,5 +1,10 @@
import logging
import random
+from pathlib import Path
+
+from django.contrib.auth.models import User
+from django.test import Client
+from django.urls import reverse
from dojo.models import Finding, Product, Test
from dojo.product.helpers import propagate_tags_on_product_sync
@@ -244,7 +249,38 @@ def test_finding_create_tags_with_slashes(self):
# logger.debug('looking for tag %s in tag list %s', tag, response['tags'])
self.assertIn(tag, response["tags"])
+ def test_import_multipart_tags(self):
+ """API-specific test for multipart form data tag handling."""
+ with (self.zap_sample5_filename).open(encoding="utf-8") as testfile:
+ data = {
+ "engagement": [1],
+ "file": [testfile],
+ "scan_type": ["ZAP Scan"],
+ "tags": ["bug,security", "urgent"], # Attempting to mimic the two "tag" fields (-F 'tags=tag1' -F 'tags=tag2')
+ }
+ response = self.import_scan(data, 201)
+ # Make sure the serializer returns the correct tags
+ success_tags = ["bug", "security", "urgent"]
+ self.assertEqual(response["tags"], success_tags)
+ # Check that the test has the same issue
+ test_id = response["test"]
+ response = self.get_test_api(test_id)
+ self.assertEqual(len(success_tags), len(response.get("tags")))
+ for tag in success_tags:
+ self.assertIn(tag, response["tags"])
+
+
+class TagImportMixin:
+
+ """Mixin containing import/reimport tag tests that can be run via API or UI."""
+
+ def setUp(self):
+ self.zap_sample5_filename = get_unit_tests_scans_path("zap") / "5_zap_sample_one.xml"
+ self.generic_sample_with_tags_filename = get_unit_tests_scans_path("generic") / "generic_report1.json"
+ self.generic_sample_with_more_tags_filename = get_unit_tests_scans_path("generic") / "generic_report1_more_tags.json"
+
def test_import_and_reimport_with_tags(self):
+ """Test that tags passed as import parameter are applied to the test."""
tags = ["tag1", "tag2"]
import0 = self.import_scan_with_params(self.zap_sample5_filename, tags=tags)
test_id = import0["test"]
@@ -267,26 +303,8 @@ def test_import_and_reimport_with_tags(self):
for tag in tags:
self.assertIn(tag, response["tags"])
- def test_import_multipart_tags(self):
- with (self.zap_sample5_filename).open(encoding="utf-8") as testfile:
- data = {
- "engagement": [1],
- "file": [testfile],
- "scan_type": ["ZAP Scan"],
- "tags": ["bug,security", "urgent"], # Attempting to mimic the two "tag" fields (-F 'tags=tag1' -F 'tags=tag2')
- }
- response = self.import_scan(data, 201)
- # Make sure the serializer returns the correct tags
- success_tags = ["bug", "security", "urgent"]
- self.assertEqual(response["tags"], success_tags)
- # Check that the test has the same issue
- test_id = response["test"]
- response = self.get_test_api(test_id)
- self.assertEqual(len(success_tags), len(response.get("tags")))
- for tag in success_tags:
- self.assertIn(tag, response["tags"])
-
def test_import_report_with_tags(self):
+ """Test that parser-generated tags on findings are preserved during import/reimport."""
def assert_tags_in_findings(findings: list[dict], expected_finding_count: int, desired_tags: list[str]) -> None:
self.assertEqual(expected_finding_count, len(findings))
for finding in findings:
@@ -309,7 +327,85 @@ def assert_tags_in_findings(findings: list[dict], expected_finding_count: int, d
assert_tags_in_findings(findings, 2, ["security", "network", "hardened"])
+class TagImportTestAPI(DojoAPITestCase, TagImportMixin):
+
+ """Test tag handling during import/reimport via API."""
+
+ fixtures = ["dojo_testdata.json"]
+
+ def setUp(self):
+ super().setUp()
+ testuser = User.objects.get(username="admin")
+ testuser.usercontactinfo.block_execution = True
+ testuser.usercontactinfo.save()
+ self.login_as_admin()
+ TagImportMixin.setUp(self)
+
+
+class TagImportTestUI(DojoAPITestCase, TagImportMixin):
+
+ """Test tag handling during import/reimport via UI."""
+
+ fixtures = ["dojo_testdata.json"]
+
+ def setUp(self):
+ super().setUp()
+ testuser = User.objects.get(username="admin")
+ testuser.usercontactinfo.block_execution = True
+ testuser.usercontactinfo.save()
+ self.login_as_admin()
+ self.client_ui = Client()
+ self.client_ui.force_login(self.get_test_admin())
+ TagImportMixin.setUp(self)
+
+ def import_scan_with_params(self, filename, scan_type="ZAP Scan", engagement=1, minimum_severity="Low", *,
+ active=True, verified=False, tags=None, close_old_findings=False, **kwargs):
+ """Override to use UI import instead of API."""
+ with Path(filename).open(encoding="utf-8") as testfile:
+ payload = {
+ "minimum_severity": minimum_severity,
+ "active": "force_to_true" if active else "force_to_false",
+ "verified": "force_to_true" if verified else "force_to_false",
+ "scan_type": scan_type,
+ "file": testfile,
+ "environment": 1,
+ "close_old_findings": close_old_findings,
+ }
+ if tags is not None:
+ # Tagulous form field expects comma-separated string
+ payload["tags"] = ",".join(tags) if isinstance(tags, list) else tags
+
+ response = self.client_ui.post(reverse("import_scan_results", args=(engagement,)), payload)
+ self.assertEqual(302, response.status_code, response.content[:1000])
+ test_id = int(response.url.split("/")[-1])
+ return {"test": test_id}
+
+ def reimport_scan_with_params(self, test_id, filename, scan_type="ZAP Scan", minimum_severity="Low", *,
+ active=True, verified=False, tags=None, close_old_findings=True, **kwargs):
+ """Override to use UI reimport instead of API."""
+ with Path(filename).open(encoding="utf-8") as testfile:
+ payload = {
+ "minimum_severity": minimum_severity,
+ "active": "force_to_true" if active else "force_to_false",
+ "verified": "force_to_true" if verified else "force_to_false",
+ "scan_type": scan_type,
+ "file": testfile,
+ "close_old_findings": close_old_findings,
+ }
+ if tags is not None:
+ # Tagulous form field expects comma-separated string
+ payload["tags"] = ",".join(tags) if isinstance(tags, list) else tags
+
+ response = self.client_ui.post(reverse("re_import_scan_results", args=(test_id,)), payload)
+ self.assertEqual(302, response.status_code, response.content[:1000])
+ new_test_id = int(response.url.split("/")[-1])
+ return {"test": new_test_id}
+
+
class InheritedTagsTests(DojoAPITestCase):
+
+ """Non-import tests for inherited tags functionality."""
+
fixtures = ["dojo_testdata.json"]
def setUp(self, *args, **kwargs):
@@ -323,6 +419,56 @@ def setUp(self, *args, **kwargs):
def _convert_instance_tags_to_list(self, instance) -> list:
return [tag.name for tag in instance.tags.all()]
+ def test_new_engagement_then_add_tag_to_engagement_then_remove_tag_to_engagement(self):
+ # Create the engagement
+ engagement = self.create_engagement("Inherited Tags Engagement", self.product)
+ test = self.create_test(engagement=engagement, scan_type="ZAP Scan")
+ # Check to see if tags match the product
+ product_tags = self._convert_instance_tags_to_list(self.product)
+ self.assertEqual(product_tags, self._convert_instance_tags_to_list(engagement))
+ self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
+ # Add a tag on the engagement)
+ engagement_tags_before_addition = self._convert_instance_tags_to_list(engagement)
+ engagement.tags.add("engagement_only_tag")
+ # Check to see that the update was successful
+ self.assertEqual(["engagement_only_tag", *engagement_tags_before_addition], self._convert_instance_tags_to_list(engagement))
+ # Check to see that tests were not impacted
+ self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
+ # remove a tag on the engagement
+ engagement_tags_before_removal = self._convert_instance_tags_to_list(engagement)
+ engagement.tags.remove("engagement_only_tag")
+ # Check to see that the update was successful
+ engagement_tags_before_removal.remove("engagement_only_tag")
+ self.assertEqual(engagement_tags_before_removal, self._convert_instance_tags_to_list(engagement))
+ # Check to see that tests were not impacted
+ self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
+
+ def test_new_engagement_then_remove_inherited_tag(self):
+ # Create the engagement
+ engagement = self.create_engagement("Inherited Tags Engagement", self.product)
+ # Check to see if tags match the product
+ product_tags = self._convert_instance_tags_to_list(self.product)
+ self.assertEqual(product_tags, self._convert_instance_tags_to_list(engagement))
+ # Remove an inherited tag
+ engagement_tags_before_removal = self._convert_instance_tags_to_list(engagement)
+ engagement.tags.remove("inherit")
+ # Check to see that the inherited tag could not be removed
+ self.assertEqual(engagement_tags_before_removal, self._convert_instance_tags_to_list(engagement))
+
+
+class InheritedTagsImportMixin:
+
+ """Mixin containing inherited tags import/reimport tests that can be run via API or UI."""
+
+ def setUp(self):
+ self.system_settings(enable_product_tag_inheritance=True)
+ self.product = self.create_product("Inherited Tags Test", tags=["inherit", "these", "tags"])
+ self.scans_path = get_unit_tests_scans_path("zap")
+ self.zap_sample5_filename = self.scans_path / "5_zap_sample_one.xml"
+
+ def _convert_instance_tags_to_list(self, instance) -> list:
+ return [tag.name for tag in instance.tags.all()]
+
def _import_and_return_objects(self, test_id=None, *, reimport=False, tags=None) -> dict:
# Import some findings to create all objects
engagement = self.create_engagement("Inherited Tags Engagement", self.product)
@@ -372,42 +518,6 @@ def test_import_with_tags_then_reimport_with_different_tag(self):
product_tags_plus_reimport_tag.insert(1, "reimport_tag")
self.assertEqual(product_tags_plus_reimport_tag, self._convert_instance_tags_to_list(objects.get("test")))
- def test_new_engagement_then_add_tag_to_engagement_then_remove_tag_to_engagement(self):
- # Create the engagement
- engagement = self.create_engagement("Inherited Tags Engagement", self.product)
- test = self.create_test(engagement=engagement, scan_type="ZAP Scan")
- # Check to see if tags match the product
- product_tags = self._convert_instance_tags_to_list(self.product)
- self.assertEqual(product_tags, self._convert_instance_tags_to_list(engagement))
- self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
- # Add a tag on the engagement)
- engagement_tags_before_addition = self._convert_instance_tags_to_list(engagement)
- engagement.tags.add("engagement_only_tag")
- # Check to see that the update was successful
- self.assertEqual(["engagement_only_tag", *engagement_tags_before_addition], self._convert_instance_tags_to_list(engagement))
- # Check to see that tests were not impacted
- self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
- # remove a tag on the engagement
- engagement_tags_before_removal = self._convert_instance_tags_to_list(engagement)
- engagement.tags.remove("engagement_only_tag")
- # Check to see that the update was successful
- engagement_tags_before_removal.remove("engagement_only_tag")
- self.assertEqual(engagement_tags_before_removal, self._convert_instance_tags_to_list(engagement))
- # Check to see that tests were not impacted
- self.assertEqual(product_tags, self._convert_instance_tags_to_list(test))
-
- def test_new_engagement_then_remove_inherited_tag(self):
- # Create the engagement
- engagement = self.create_engagement("Inherited Tags Engagement", self.product)
- # Check to see if tags match the product
- product_tags = self._convert_instance_tags_to_list(self.product)
- self.assertEqual(product_tags, self._convert_instance_tags_to_list(engagement))
- # Remove an inherited tag
- engagement_tags_before_removal = self._convert_instance_tags_to_list(engagement)
- engagement.tags.remove("inherit")
- # Check to see that the inherited tag could not be removed
- self.assertEqual(engagement_tags_before_removal, self._convert_instance_tags_to_list(engagement))
-
def test_remove_tag_from_product_then_add_tag_to_product(self):
# Import some findings to create all objects
objects = self._import_and_return_objects()
@@ -439,3 +549,78 @@ def test_remove_tag_from_product_then_add_tag_to_product(self):
self.assertEqual(product_tags_post_addition, self._convert_instance_tags_to_list(objects.get("endpoint")))
self.assertEqual(product_tags_post_addition, self._convert_instance_tags_to_list(objects.get("test")))
self.assertEqual(product_tags_post_addition, self._convert_instance_tags_to_list(objects.get("finding")))
+
+
+class InheritedTagsImportTestAPI(DojoAPITestCase, InheritedTagsImportMixin):
+
+ """Test inherited tags during import/reimport via API."""
+
+ fixtures = ["dojo_testdata.json"]
+
+ def setUp(self):
+ super().setUp()
+ testuser = User.objects.get(username="admin")
+ testuser.usercontactinfo.block_execution = True
+ testuser.usercontactinfo.save()
+ self.login_as_admin()
+ InheritedTagsImportMixin.setUp(self)
+
+
+class InheritedTagsImportTestUI(DojoAPITestCase, InheritedTagsImportMixin):
+
+ """Test inherited tags during import/reimport via UI."""
+
+ fixtures = ["dojo_testdata.json"]
+
+ def setUp(self):
+ super().setUp()
+ testuser = User.objects.get(username="admin")
+ testuser.usercontactinfo.block_execution = True
+ testuser.usercontactinfo.save()
+ self.login_as_admin()
+ self.client_ui = Client()
+ self.client_ui.force_login(self.get_test_admin())
+ InheritedTagsImportMixin.setUp(self)
+
+ def import_scan_with_params(self, filename, scan_type="ZAP Scan", engagement=1, minimum_severity="Low", *,
+ active=True, verified=False, tags=None, close_old_findings=False, **kwargs):
+ """Override to use UI import instead of API."""
+ with Path(filename).open(encoding="utf-8") as testfile:
+ payload = {
+ "minimum_severity": minimum_severity,
+ "active": "force_to_true" if active else "force_to_false",
+ "verified": "force_to_true" if verified else "force_to_false",
+ "scan_type": scan_type,
+ "file": testfile,
+ "environment": 1,
+ "close_old_findings": close_old_findings,
+ }
+ if tags is not None:
+ # Tagulous form field expects comma-separated string
+ payload["tags"] = ",".join(tags) if isinstance(tags, list) else tags
+
+ response = self.client_ui.post(reverse("import_scan_results", args=(engagement,)), payload)
+ self.assertEqual(302, response.status_code, response.content[:1000])
+ test_id = int(response.url.split("/")[-1])
+ return {"test": test_id}
+
+ def reimport_scan_with_params(self, test_id, filename, scan_type="ZAP Scan", minimum_severity="Low", *,
+ active=True, verified=False, tags=None, close_old_findings=True, **kwargs):
+ """Override to use UI reimport instead of API."""
+ with Path(filename).open(encoding="utf-8") as testfile:
+ payload = {
+ "minimum_severity": minimum_severity,
+ "active": "force_to_true" if active else "force_to_false",
+ "verified": "force_to_true" if verified else "force_to_false",
+ "scan_type": scan_type,
+ "file": testfile,
+ "close_old_findings": close_old_findings,
+ }
+ if tags is not None:
+ # Tagulous form field expects comma-separated string
+ payload["tags"] = ",".join(tags) if isinstance(tags, list) else tags
+
+ response = self.client_ui.post(reverse("re_import_scan_results", args=(test_id,)), payload)
+ self.assertEqual(302, response.status_code, response.content[:1000])
+ new_test_id = int(response.url.split("/")[-1])
+ return {"test": new_test_id}
diff --git a/unittests/tools/test_cloudflare_insights_parser.py b/unittests/tools/test_cloudflare_insights_parser.py
index 8d48280df82..75dfed5ea69 100644
--- a/unittests/tools/test_cloudflare_insights_parser.py
+++ b/unittests/tools/test_cloudflare_insights_parser.py
@@ -22,3 +22,21 @@ def test_cloudflare_insights_parser_with_many_findings(self):
finding = findings[0]
self.assertEqual("Exposed infrastructure: domain1.com", finding.title)
self.assertEqual("Medium", finding.severity)
+
+ def test_cloudflare_insights_parser_with_one_finding_json(self):
+ with (get_unit_tests_scans_path("cloudflare_insights") / "one_finding.json").open(encoding="utf-8") as testfile:
+ parser = CloudflareInsightsParser()
+ findings = parser.get_findings(testfile, Test())
+ self.assertEqual(1, len(findings))
+ finding = findings[0]
+ self.assertEqual("configuration_suggestion: domain.com", finding.title)
+ self.assertEqual("Low", finding.severity)
+
+ def test_cloudflare_insights_parser_with_many_findings_json(self):
+ with (get_unit_tests_scans_path("cloudflare_insights") / "many_findings.json").open(encoding="utf-8") as testfile:
+ parser = CloudflareInsightsParser()
+ findings = parser.get_findings(testfile, Test())
+ self.assertEqual(3, len(findings))
+ finding = findings[0]
+ self.assertEqual("configuration_suggestion: test.de", finding.title)
+ self.assertEqual("Low", finding.severity)
diff --git a/unittests/tools/test_meterian_parser.py b/unittests/tools/test_meterian_parser.py
index 794856840d0..b08226a7916 100644
--- a/unittests/tools/test_meterian_parser.py
+++ b/unittests/tools/test_meterian_parser.py
@@ -67,7 +67,7 @@ def test_meterianParser_finding_has_fields(self):
self.assertIn("https://github.com/knowledgecode/date-and-time/security/advisories/GHSA-r92x-f52r-x54g", finding.references, "found " + finding.references)
self.assertIn("https://github.com/knowledgecode/date-and-time/commit/9e4b501eacddccc8b1f559fb414f48472ee17c2a", finding.references, "found " + finding.references)
self.assertIn("Manifest file", finding.file_path)
- self.assertEqual(["nodejs"], finding.tags)
+ self.assertEqual(["nodejs"], finding.unsaved_tags)
def test_meterianParser_finding_has_no_remediation(self):
with (get_unit_tests_scans_path("meterian") / "report_one_vuln_no_remediation.json").open(encoding="utf-8") as testfile:
@@ -90,5 +90,5 @@ def test_meterianParser_dual_language_report_has_two_findins(self):
findings = parser.get_findings(testfile, Test())
self.assertEqual(2, len(findings))
- self.assertIn("nodejs", findings[0].tags)
- self.assertIn("ruby", findings[1].tags)
+ self.assertIn("nodejs", findings[0].unsaved_tags)
+ self.assertIn("ruby", findings[1].unsaved_tags)
diff --git a/unittests/tools/test_nuclei_parser.py b/unittests/tools/test_nuclei_parser.py
index cfd260dd80b..ffb3c55b262 100644
--- a/unittests/tools/test_nuclei_parser.py
+++ b/unittests/tools/test_nuclei_parser.py
@@ -281,3 +281,9 @@ def test_parse_same_template_multiple_matches(self):
"65e95106ab3c53cd42f384804a4a9087f43616f863e90c34818086862df253ec",
),
)
+
+ def test_parse_issue_14071(self):
+ with (get_unit_tests_scans_path("nuclei") / "issue_14071.json").open(encoding="utf-8") as testfile:
+ parser = NucleiParser()
+ findings = parser.get_findings(testfile, Test())
+ self.assertEqual(27, len(findings))
diff --git a/unittests/tools/test_sarif_parser.py b/unittests/tools/test_sarif_parser.py
index 227a584fb06..77fe9e9a7fe 100644
--- a/unittests/tools/test_sarif_parser.py
+++ b/unittests/tools/test_sarif_parser.py
@@ -585,7 +585,7 @@ def test_tags_from_result_properties(self):
parser = SarifParser()
findings = parser.get_findings(testfile, Test())
item = findings[0]
- self.assertEqual(["Scan"], item.tags)
+ self.assertEqual(["Scan"], item.unsaved_tags)
def test_severity_in_properties(self):
with (get_unit_tests_scans_path("sarif") / "issue_10191.json").open(encoding="utf-8") as testfile:
diff --git a/unittests/tools/test_trivy_operator_parser.py b/unittests/tools/test_trivy_operator_parser.py
index c7641902b82..2eaa0b6ac42 100644
--- a/unittests/tools/test_trivy_operator_parser.py
+++ b/unittests/tools/test_trivy_operator_parser.py
@@ -129,7 +129,7 @@ def test_vulnerabilityreport_extended(self):
self.assertEqual("3.6.13-2ubuntu1.10", finding.mitigation)
self.assertEqual(5.9, finding.cvssv3_score)
self.assertEqual("ubuntu:20.04 (ubuntu 20.04)", finding.file_path)
- self.assertEqual("lbc, os-pkgs, ubuntu", str(finding.tags))
+ self.assertEqual(["lbc", "ubuntu", "os-pkgs"], finding.unsaved_tags)
def test_cis_benchmark(self):
with sample_path("cis_benchmark.json").open(encoding="utf-8") as test_file:
diff --git a/unittests/tools/test_trivy_parser.py b/unittests/tools/test_trivy_parser.py
index f6c08156fee..c5333c2bd16 100644
--- a/unittests/tools/test_trivy_parser.py
+++ b/unittests/tools/test_trivy_parser.py
@@ -92,7 +92,7 @@ def test_misconfigurations_and_secrets(self):
references = """https://avd.aquasec.com/misconfig/ds002
https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"""
self.assertEqual(references, finding.references)
- self.assertEqual(["config", "dockerfile"], finding.tags)
+ self.assertEqual(["dockerfile", "config"], finding.unsaved_tags)
finding = findings[3]
self.assertEqual("Secret detected in Dockerfile - GitHub Personal Access Token", finding.title)
self.assertEqual("Critical", finding.severity)
@@ -103,7 +103,7 @@ def test_misconfigurations_and_secrets(self):
self.assertEqual(description, finding.description)
self.assertEqual("Dockerfile", finding.file_path)
self.assertEqual(24, finding.line)
- self.assertEqual(["secret"], finding.tags)
+ self.assertEqual(["secret"], finding.unsaved_tags)
def test_kubernetes(self):
with sample_path("kubernetes.json").open(encoding="utf-8") as test_file:
@@ -124,7 +124,7 @@ def test_kubernetes(self):
self.assertEqual("1.8.2.2", finding.mitigation)
self.assertEqual(1, len(finding.unsaved_vulnerability_ids))
self.assertEqual("CVE-2020-27350", finding.unsaved_vulnerability_ids[0])
- self.assertEqual(["debian", "os-pkgs"], finding.tags)
+ self.assertEqual(["debian", "os-pkgs"], finding.unsaved_tags)
self.assertEqual("apt", finding.component_name)
self.assertEqual("1.8.2.1", finding.component_version)
self.assertEqual("default / Deployment / redis-follower", finding.service)
@@ -143,7 +143,7 @@ def test_kubernetes(self):
self.assertEqual("1.8.2.2", finding.mitigation)
self.assertEqual(1, len(finding.unsaved_vulnerability_ids))
self.assertEqual("CVE-2020-27350", finding.unsaved_vulnerability_ids[0])
- self.assertEqual(["debian", "os-pkgs"], finding.tags)
+ self.assertEqual(["debian", "os-pkgs"], finding.unsaved_tags)
self.assertEqual("apt", finding.component_name)
self.assertEqual("1.8.2.1", finding.component_version)
self.assertEqual("default / Deployment / redis-leader", finding.service)
@@ -171,7 +171,7 @@ def test_kubernetes(self):
self.assertEqual(re_description.strip(), re_finding_description.strip())
self.assertEqual("Set 'set containers[].securityContext.allowPrivilegeEscalation' to 'false'.", finding.mitigation)
self.assertIsNone(finding.unsaved_vulnerability_ids)
- self.assertEqual(["config", "kubernetes"], finding.tags)
+ self.assertEqual(["kubernetes", "config"], finding.unsaved_tags)
self.assertIsNone(finding.component_name)
self.assertIsNone(finding.component_version)
self.assertEqual("default / Deployment / redis-follower", finding.service)
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_create_edit_update_finding.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_create_edit_update_finding.yaml
index 27cb4916548..a266286cb37 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_create_edit_update_finding.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_create_edit_update_finding.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/92", "url_api": "http://localhost:8080/api/v2/tests/92/",
+ "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 92, "url_ui": "http://localhost:8080/test/92", "url_api": "http://localhost:8080/api/v2/tests/92/"}}'
+ 98, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/"}}'
headers:
Accept:
- application/json
@@ -24,7 +24,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.52.0-dev
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -38,22 +38,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"844\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.52.0-dev\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.18.0.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/92\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/92/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/98/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 92, \\\"url_ui\\\": \\\"http://localhost:8080/test/92\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/92/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 98, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 92,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/92/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/92\"\n },\n \"title\":
+ 98,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/98\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/92/\",\n \"url_ui\":
- \"http://localhost:8080/test/92\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n \"url_ui\":
+ \"http://localhost:8080/test/98\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Tue, 04 Nov 2025 18:02:04 GMT
+ - Fri, 16 Jan 2026 20:59:17 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/92", "url_api": "http://localhost:8080/api/v2/tests/92/",
+ null, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 92, "url_ui": "http://localhost:8080/test/92", "url_api": "http://localhost:8080/api/v2/tests/92/"},
- "finding_count": 5, "findings": {"new": [{"id": 235, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/235",
- "url_api": "http://localhost:8080/api/v2/findings/235/"}, {"id": 236, "title":
+ 98, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/"},
+ "finding_count": 5, "findings": {"new": [{"id": 254, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/254",
+ "url_api": "http://localhost:8080/api/v2/findings/254/"}, {"id": 255, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/236", "url_api":
- "http://localhost:8080/api/v2/findings/236/"}, {"id": 234, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/255", "url_api":
+ "http://localhost:8080/api/v2/findings/255/"}, {"id": 253, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/234", "url_api": "http://localhost:8080/api/v2/findings/234/"},
- {"id": 237, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/237", "url_api":
- "http://localhost:8080/api/v2/findings/237/"}, {"id": 238, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/253", "url_api": "http://localhost:8080/api/v2/findings/253/"},
+ {"id": 256, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/256", "url_api":
+ "http://localhost:8080/api/v2/findings/256/"}, {"id": 257, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/238", "url_api":
- "http://localhost:8080/api/v2/findings/238/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/257", "url_api":
+ "http://localhost:8080/api/v2/findings/257/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -126,7 +126,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.52.0-dev
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -140,82 +140,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2373\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.52.0-dev\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.18.0.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/92\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/92/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 92, \\\"url_ui\\\": \\\"http://localhost:8080/test/92\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/92/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 235, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 98, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 254, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/235\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/235/\\\"}, {\\\"id\\\": 236, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/254\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/254/\\\"}, {\\\"id\\\": 255, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/236\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/236/\\\"},
- {\\\"id\\\": 234, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/255\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/255/\\\"},
+ {\\\"id\\\": 253, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/234\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/234/\\\"},
- {\\\"id\\\": 237, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/253\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/253/\\\"},
+ {\\\"id\\\": 256, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/237\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/237/\\\"},
- {\\\"id\\\": 238, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/256\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/256/\\\"},
+ {\\\"id\\\": 257, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/238\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/238/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/257\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/257/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 235,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 254,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/235/\",\n \"url_ui\": \"http://localhost:8080/finding/235\"\n
- \ },\n {\n \"id\": 236,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/254/\",\n \"url_ui\": \"http://localhost:8080/finding/254\"\n
+ \ },\n {\n \"id\": 255,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/236/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/236\"\n },\n
- \ {\n \"id\": 234,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/255/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/255\"\n },\n
+ \ {\n \"id\": 253,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/234/\",\n \"url_ui\": \"http://localhost:8080/finding/234\"\n
- \ },\n {\n \"id\": 237,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/253/\",\n \"url_ui\": \"http://localhost:8080/finding/253\"\n
+ \ },\n {\n \"id\": 256,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/237/\",\n \"url_ui\":
- \"http://localhost:8080/finding/237\"\n },\n {\n \"id\":
- 238,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/256/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/256\"\n },\n {\n \"id\":
+ 257,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/238/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/238\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/257/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/257\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 92,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/92/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/92\"\n },\n \"title\":
+ 98,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/98\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/92/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/92\",\n \"user\": null\n }\n}\n"
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/98\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -224,7 +224,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Tue, 04 Nov 2025 18:02:04 GMT
+ - Fri, 16 Jan 2026 20:59:17 GMT
Transfer-Encoding:
- chunked
status:
@@ -249,12 +249,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:04.511+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:18.098+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 84eb414d-a348-4388-8632-08caec20d928
+ - badf2187-f0ce-4659-8f92-25a586ff04bd
Atl-Traceid:
- - 84eb414da3484388863208caec20d928
+ - badf2187f0ce46598f9225a586ff04bd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -264,9 +264,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:04 GMT
+ - Fri, 16 Jan 2026 20:59:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -274,7 +274,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=250,atl-edge;dur=227,atl-edge-internal;dur=13,atl-edge-upstream;dur=214,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Gfcwv0to1yWDtbW7j2ULUXR1haCo_GCu4Cct8PTcUas_LkF20tC8eg==",cdn-downstream-fbl;dur=253
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=350,atl-edge;dur=259,atl-edge-internal;dur=24,atl-edge-upstream;dur=235,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="77QnZ_UNkef1vDmNluueeVFA_BL0zWladagxY_mT7oWoIU2YfSEWlw==",cdn-downstream-fbl;dur=354
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -284,23 +284,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c11dc3a4786e038ddffb5e925a892302.cloudfront.net (CloudFront)
+ - 1.1 6fc2d4bdda3d8efb927d086a87e8483e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Gfcwv0to1yWDtbW7j2ULUXR1haCo_GCu4Cct8PTcUas_LkF20tC8eg==
+ - 77QnZ_UNkef1vDmNluueeVFA_BL0zWladagxY_mT7oWoIU2YfSEWlw==
X-Amz-Cf-Pop:
- DEN52-P3
X-Arequestid:
- - ea35da2fcae8ee7faf589d20046347c8
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 34c49b2e144f945494adb77bbef93bdb
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -334,9 +334,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 74ad6563-7915-49c1-a310-525d8ad81ddf
+ - 3f7ed50b-64a2-4d64-9d1c-cca75edd3b45
Atl-Traceid:
- - 74ad6563791549c1a310525d8ad81ddf
+ - 3f7ed50b64a24d649d1ccca75edd3b45
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -346,9 +346,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:05 GMT
+ - Fri, 16 Jan 2026 20:59:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -356,7 +356,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=387,atl-edge-internal;dur=17,atl-edge-upstream;dur=370,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="ERcuFkqXvhUWrBbjbx65xkdwuJ9CC7UCRONZbIMrGvFulq80JsAflg==",cdn-downstream-fbl;dur=414
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=526,atl-edge;dur=437,atl-edge-internal;dur=16,atl-edge-upstream;dur=421,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="1wm4IkSzr0ZnkZc0fWp77Bjj5R8EdO4-Fn38bBVXiEYkdF5sKpUr7A==",cdn-downstream-fbl;dur=529
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -366,26 +366,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d7b3fa0ef559ab3ac226fc78e47d311a.cloudfront.net (CloudFront)
+ - 1.1 153b67ebb1db442b5cea7f360e7f8cb6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ERcuFkqXvhUWrBbjbx65xkdwuJ9CC7UCRONZbIMrGvFulq80JsAflg==
+ - 1wm4IkSzr0ZnkZc0fWp77Bjj5R8EdO4-Fn38bBVXiEYkdF5sKpUr7A==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P1
X-Arequestid:
- - 8320bc1f1ee4ae6b83bc30b3914118e0
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 3ac3e91711288d02a7ee787a1a40175f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -395,20 +395,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -418,9 +418,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -440,7 +440,7 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3538'
+ - '3542'
Content-Type:
- application/json
User-Agent:
@@ -449,12 +449,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"23615","key":"NTEST-3174","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615"}'
+ string: '{"id":"24900","key":"NTEST-3185","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900"}'
headers:
Atl-Request-Id:
- - fd86d71b-2e0b-414c-93bf-83227145a1f9
+ - 50c0b793-7bb6-4585-b02a-f8676c1d2b48
Atl-Traceid:
- - fd86d71b2e0b414c93bf83227145a1f9
+ - 50c0b7937bb64585b02af8676c1d2b48
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -462,9 +462,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:06 GMT
+ - Fri, 16 Jan 2026 20:59:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -472,7 +472,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=854,atl-edge;dur=832,atl-edge-internal;dur=16,atl-edge-upstream;dur=815,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="f2xEZR96D6xpQ9OomNDKv3lfWsjZhVty-qF1wdICuCwfC0l5iO0TuQ==",cdn-downstream-fbl;dur=859
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=1124,atl-edge;dur=1033,atl-edge-internal;dur=14,atl-edge-upstream;dur=1019,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="Ew1PkA05lIZ_XDnVEiv_SDRt58GI-Tj8wNCPFQjHVerSWh6XBsR7lA==",cdn-downstream-fbl;dur=1130
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -482,23 +482,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 96b078df4a5d96ad3cc52cfe9d984774.cloudfront.net (CloudFront)
+ - 1.1 badefad2d1fb92bb4620df1ce11d8c92.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - f2xEZR96D6xpQ9OomNDKv3lfWsjZhVty-qF1wdICuCwfC0l5iO0TuQ==
+ - Ew1PkA05lIZ_XDnVEiv_SDRt58GI-Tj8wNCPFQjHVerSWh6XBsR7lA==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P2
X-Arequestid:
- - 1ce41d39aece41fe84b44e5ce0cc8d06
- X-Beta-Ratelimit-Limit:
- - '200'
- X-Beta-Ratelimit-Remaining:
- - '199'
+ - c60a8d817165097e7f9bfe7a2d2d5969
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -520,30 +520,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -553,9 +553,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -565,12 +565,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 96839452-3336-4f57-8765-9c56c75eeac2
+ - d73e0c2b-f0f7-45de-a8ef-0ed23bb8fb95
Atl-Traceid:
- - 9683945233364f5787659c56c75eeac2
+ - d73e0c2bf0f745dea8ef0ed23bb8fb95
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -580,9 +580,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:06 GMT
+ - Fri, 16 Jan 2026 20:59:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -590,7 +590,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=18,atl-edge-upstream;dur=240,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="0k39cfEPK8vpFSYLsBoMQwFrZviUH94jg3gHiPyLSBzhW3kDLCTrJg==",cdn-downstream-fbl;dur=284
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=348,atl-edge;dur=260,atl-edge-internal;dur=16,atl-edge-upstream;dur=244,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="pHYjVnuZxFiHr0v7mSADa4zE-3hJECP2tHxPwv0nzrT5uxiHkY9Cww==",cdn-downstream-fbl;dur=352
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -600,23 +600,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f6327093dd59f54131617ea3ab04bd94.cloudfront.net (CloudFront)
+ - 1.1 01d835ea37857868734425d8c45ea35c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0k39cfEPK8vpFSYLsBoMQwFrZviUH94jg3gHiPyLSBzhW3kDLCTrJg==
+ - pHYjVnuZxFiHr0v7mSADa4zE-3hJECP2tHxPwv0nzrT5uxiHkY9Cww==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P1
X-Arequestid:
- - ec452c2a04c8d88d082d8c4db2d5cb8d
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - b514291c86da374f3c2e517aeb485662
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -638,30 +638,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -671,9 +671,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -683,12 +683,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 698ab61c-4988-460f-a848-47aafb0030f7
+ - 5a491c26-b622-45bc-87cb-ca9940ebbb46
Atl-Traceid:
- - 698ab61c4988460fa84847aafb0030f7
+ - 5a491c26b62245bc87cbca9940ebbb46
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -698,9 +698,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:06 GMT
+ - Fri, 16 Jan 2026 20:59:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -708,7 +708,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=401,atl-edge;dur=313,atl-edge-internal;dur=20,atl-edge-upstream;dur=292,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="vWi3EdHtOzg-Tp1ak4kNRPHt2UOn5LuhJDXy-eZFyqWiJUUWu76_Cw==",cdn-downstream-fbl;dur=406
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=274,atl-edge;dur=250,atl-edge-internal;dur=17,atl-edge-upstream;dur=233,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="jHyzgOY0jJQ0dUPasymEWRoucaBhbzOl2JnkwcYBGBhHfAGFQz70zQ==",cdn-downstream-fbl;dur=277
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -718,23 +718,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 5a94950aa5895e56460f82b3086d0b0c.cloudfront.net (CloudFront)
+ - 1.1 3dc4c80cd959e984309833cac8f5a630.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - vWi3EdHtOzg-Tp1ak4kNRPHt2UOn5LuhJDXy-eZFyqWiJUUWu76_Cw==
+ - jHyzgOY0jJQ0dUPasymEWRoucaBhbzOl2JnkwcYBGBhHfAGFQz70zQ==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P2
X-Arequestid:
- - 9ff91c9d4335bf63a04a9a6dd144022c
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - cd8855601c5045959f0fee5ead50d5b3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -759,12 +759,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:07.222+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:21.463+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 70955815-9d28-48cf-90e9-669e3d4bc0a7
+ - 49ff60e3-445e-4c36-a61f-ca0141202345
Atl-Traceid:
- - 709558159d2848cf90e9669e3d4bc0a7
+ - 49ff60e3445e4c36a61fca0141202345
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -774,9 +774,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:07 GMT
+ - Fri, 16 Jan 2026 20:59:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -784,7 +784,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Qa9URLPaMa6ikMG2OW5Rg29O7Nnbx0ui3Bddg1weVHvUdq2vNauS9A==",cdn-downstream-fbl;dur=270,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=267,atl-edge;dur=176,atl-edge-internal;dur=20,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2"
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=69,cdn-upstream-fbl;dur=272,atl-edge;dur=179,atl-edge-internal;dur=17,atl-edge-upstream;dur=163,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="pbKI7zUrQsj4qS8iAO5EnvwKh9BCoa1zFay-VZhaZuNLLXRycLY9lg==",cdn-downstream-fbl;dur=277
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -794,23 +794,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 949f831c3bb70b840d7eecaeb220bbfa.cloudfront.net (CloudFront)
+ - 1.1 85d3c7f5b91d4c8492ba27d65fa677d0.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Qa9URLPaMa6ikMG2OW5Rg29O7Nnbx0ui3Bddg1weVHvUdq2vNauS9A==
+ - pbKI7zUrQsj4qS8iAO5EnvwKh9BCoa1zFay-VZhaZuNLLXRycLY9lg==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN52-P1
X-Arequestid:
- - 42d62cd510d79b6ffb0403234017575a
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 660543d75c0c1115c78f67c24c7bf452
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -832,30 +832,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -865,9 +865,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -877,12 +877,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - fb011005-80a3-4d39-8537-813dddbd6615
+ - 2c0c7ea8-f482-4dbe-8225-558261d50ca9
Atl-Traceid:
- - fb01100580a34d398537813dddbd6615
+ - 2c0c7ea8f4824dbe8225558261d50ca9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -892,9 +892,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:07 GMT
+ - Fri, 16 Jan 2026 20:59:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -902,7 +902,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=21,cdn-upstream-fbl;dur=419,atl-edge;dur=331,atl-edge-internal;dur=21,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="8vx7EoxVuI99a62P5Tr9aCsgWdh7eUfOB7jOs-9OtyVtTB-tPqHKsQ==",cdn-downstream-fbl;dur=423
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=266,atl-edge;dur=243,atl-edge-internal;dur=20,atl-edge-upstream;dur=223,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="I1giWepZPEBOqlxqr7VDaCRVEr7duCNIpFjIyXAXyw3cXs4DM4BA9g==",cdn-downstream-fbl;dur=269
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -912,23 +912,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 05fe6f95b77eb54d0691950915c27264.cloudfront.net (CloudFront)
+ - 1.1 d09fd0ac0a8733df98f134da74eec098.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 8vx7EoxVuI99a62P5Tr9aCsgWdh7eUfOB7jOs-9OtyVtTB-tPqHKsQ==
+ - I1giWepZPEBOqlxqr7VDaCRVEr7duCNIpFjIyXAXyw3cXs4DM4BA9g==
X-Amz-Cf-Pop:
- DEN52-P2
X-Arequestid:
- - 0faee4be973ae5ac859f02e5d753201d
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - e95fa237e50cc86abf3d6f7d148271cc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -953,12 +953,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:08.101+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:22.386+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 3e93b632-404f-4c97-8b5e-e53e89385eb3
+ - 81b5a05d-e613-481d-8ad0-5079530973ef
Atl-Traceid:
- - 3e93b632404f4c978b5ee53e89385eb3
+ - 81b5a05de613481d8ad05079530973ef
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -968,9 +968,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:08 GMT
+ - Fri, 16 Jan 2026 20:59:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -978,7 +978,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=202,atl-edge;dur=177,atl-edge-internal;dur=16,atl-edge-upstream;dur=162,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="etpLicu7TQewaNacytUJJrOszSnNNDLK7WvjA_YA-cV4iTRd1ndbdw==",cdn-downstream-fbl;dur=206
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=254,atl-edge;dur=165,atl-edge-internal;dur=13,atl-edge-upstream;dur=151,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="hMBVrBXAxnzXbj7bDAdG95K_kAr-Psq0lH-_y_Jr-J4EuD1dx9SL9Q==",cdn-downstream-fbl;dur=257
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -988,23 +988,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ba437ea2340585e48bd8901315998164.cloudfront.net (CloudFront)
+ - 1.1 007f474c20bf8a7a3cce4825eb52f2c8.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - etpLicu7TQewaNacytUJJrOszSnNNDLK7WvjA_YA-cV4iTRd1ndbdw==
+ - hMBVrBXAxnzXbj7bDAdG95K_kAr-Psq0lH-_y_Jr-J4EuD1dx9SL9Q==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P1
X-Arequestid:
- - c57807bdcb2be629f110daeee436bb9a
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - a1a9a3c8d567c362955ce80cc6c3aa72
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1026,30 +1026,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1059,9 +1059,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1071,12 +1071,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - acb193c1-a63a-4ad8-906e-c872eb0eafa9
+ - 5666c78c-9325-4fcf-b166-77aaed96606a
Atl-Traceid:
- - acb193c1a63a4ad8906ec872eb0eafa9
+ - 5666c78c93254fcfb16677aaed96606a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1086,9 +1086,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:08 GMT
+ - Fri, 16 Jan 2026 20:59:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1096,7 +1096,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=512,atl-edge;dur=420,atl-edge-internal;dur=17,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Cc5h3Hl1bFI6KVrRPSVLXFG78TNyB1Mo3IfEMiKwiVqQpwgL1ekbug==",cdn-downstream-fbl;dur=515
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=296,atl-edge;dur=272,atl-edge-internal;dur=17,atl-edge-upstream;dur=255,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="nkoQR6dvQW8ntPW0lIoJvN_VQ_vkrzkY6b14tQ9UFMYm41e5D-CquQ==",cdn-downstream-fbl;dur=300
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1106,23 +1106,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 38eee5097e81ef860ba8d4b144d6ea36.cloudfront.net (CloudFront)
+ - 1.1 16d72e0791ff01fc4470d27fc024527a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Cc5h3Hl1bFI6KVrRPSVLXFG78TNyB1Mo3IfEMiKwiVqQpwgL1ekbug==
+ - nkoQR6dvQW8ntPW0lIoJvN_VQ_vkrzkY6b14tQ9UFMYm41e5D-CquQ==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P2
X-Arequestid:
- - dd075a25136f284c01fa591892a8c618
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '396'
+ - 9861131fabacf632e8b97b8ccb8db38c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1156,9 +1156,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 0b828255-2c3d-4429-b94f-a2a8529253f1
+ - c54caff7-cecf-4516-81c7-826b64a64f91
Atl-Traceid:
- - 0b8282552c3d4429b94fa2a8529253f1
+ - c54caff7cecf451681c7826b64a64f91
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1168,9 +1168,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:09 GMT
+ - Fri, 16 Jan 2026 20:59:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1178,7 +1178,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=456,atl-edge;dur=366,atl-edge-internal;dur=19,atl-edge-upstream;dur=346,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="SYgu4cfSX83fpR2L6ikLwZgVbmPxx8DWaN23u1pJ3jQkBs93fJ4rHQ==",cdn-downstream-fbl;dur=461
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=319,atl-edge;dur=295,atl-edge-internal;dur=17,atl-edge-upstream;dur=278,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="sh-CIhjRE4iAfcgk9zn-KgfCN3vRDOAnf9duN2AWyRm5OFAtCxgtVg==",cdn-downstream-fbl;dur=323
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1188,26 +1188,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 89771419757f75b08f6c8fd411f8ef54.cloudfront.net (CloudFront)
+ - 1.1 f111faa3f37b2169cefb225b0f246234.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - SYgu4cfSX83fpR2L6ikLwZgVbmPxx8DWaN23u1pJ3jQkBs93fJ4rHQ==
+ - sh-CIhjRE4iAfcgk9zn-KgfCN3vRDOAnf9duN2AWyRm5OFAtCxgtVg==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P2
X-Arequestid:
- - 946843fc13402b91740f85fc0d144693
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 0abcb0fb1f0604af648ee754595fdb49
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1217,20 +1217,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1240,9 +1240,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1262,21 +1262,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3552'
+ - '3556'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 1b62f2cc-df65-4434-b86c-65327d48692c
+ - 63425d80-87c1-4219-a92f-7d491f59ee6e
Atl-Traceid:
- - 1b62f2ccdf654434b86c65327d48692c
+ - 63425d8087c14219a92f7d491f59ee6e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1284,9 +1284,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:09 GMT
+ - Fri, 16 Jan 2026 20:59:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1294,7 +1294,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=435,atl-edge;dur=409,atl-edge-internal;dur=17,atl-edge-upstream;dur=392,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="pkPSgUhZnEDVvSzTho9jSU3DkHyXp5Qk0olAlRnMksJcU_Wv0CL-3Q==",cdn-downstream-fbl;dur=439
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=436,atl-edge;dur=346,atl-edge-internal;dur=14,atl-edge-upstream;dur=331,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="TrlD-v4jNxN-BZwzg0vsuyRvPo1oWLksGRG7K75rLwO8JbS3O6WWJw==",cdn-downstream-fbl;dur=440
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1302,23 +1302,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 708370555615eac6a25379c04fbdd8ea.cloudfront.net (CloudFront)
+ - 1.1 e1dbbcedf936fc7d0284466c9c65e78c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - pkPSgUhZnEDVvSzTho9jSU3DkHyXp5Qk0olAlRnMksJcU_Wv0CL-3Q==
+ - TrlD-v4jNxN-BZwzg0vsuyRvPo1oWLksGRG7K75rLwO8JbS3O6WWJw==
X-Amz-Cf-Pop:
- DEN53-P3
X-Arequestid:
- - be8eb4961a4102d8ade8937be8e4b8f6
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 8ab9a982dbc079a594f01b741345dc7e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1340,30 +1340,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1373,9 +1373,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1385,12 +1385,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4c02c32a-927c-46ac-b551-1ac15ac5f1bc
+ - 89339060-a958-47ee-aaeb-a97b3af2a625
Atl-Traceid:
- - 4c02c32a927c46acb5511ac15ac5f1bc
+ - 89339060a95847eeaaeba97b3af2a625
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1400,9 +1400,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:10 GMT
+ - Fri, 16 Jan 2026 20:59:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1410,7 +1410,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=307,atl-edge;dur=283,atl-edge-internal;dur=19,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="limXlHkur7WkBoc__dXe5Z7lMUJXTEvbQsB-cjBcViHkB8Pnf9J2XA==",cdn-downstream-fbl;dur=310
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=335,atl-edge;dur=246,atl-edge-internal;dur=19,atl-edge-upstream;dur=226,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="L0oyy2QC2C-xRf1AzAbgs-NWzzAxTDBHQafv0ESgbLer2A1Q5nkASA==",cdn-downstream-fbl;dur=340
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1420,23 +1420,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 76f2e1e449c547c66904d58101f10ea6.cloudfront.net (CloudFront)
+ - 1.1 c32fdf48b73fea3b9209f753dcec51b6.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - limXlHkur7WkBoc__dXe5Z7lMUJXTEvbQsB-cjBcViHkB8Pnf9J2XA==
+ - L0oyy2QC2C-xRf1AzAbgs-NWzzAxTDBHQafv0ESgbLer2A1Q5nkASA==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P3
X-Arequestid:
- - 531933026dbce014e7494f0296ce64df
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 1712a4e52b280f7e75934a2f89dafaf3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1461,12 +1461,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:10.471+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:24.604+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 22ded4a6-f69f-47ef-ab07-3196ad878fb3
+ - a68e50ca-9b46-4d2a-9f25-77ec2d38f0f4
Atl-Traceid:
- - 22ded4a6f69f47efab073196ad878fb3
+ - a68e50ca9b464d2a9f2577ec2d38f0f4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1476,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:10 GMT
+ - Fri, 16 Jan 2026 20:59:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1486,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=213,atl-edge;dur=190,atl-edge-internal;dur=17,atl-edge-upstream;dur=173,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="hreyU7MUxxAXKkDe_ZyotpsDIUFD2mCeMLKLsiI-g882Ythw-xmQJw==",cdn-downstream-fbl;dur=217
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=256,atl-edge;dur=164,atl-edge-internal;dur=15,atl-edge-upstream;dur=150,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="xJMG0fWxzP2rq2oaj2sx-Z4Zq3FEUFa42RsuUn2kaLtzfIXnT8iQsA==",cdn-downstream-fbl;dur=260
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1496,23 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b86386058101394cf48b049b58f8d788.cloudfront.net (CloudFront)
+ - 1.1 a2d53e5681632128f329f3657122d00e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hreyU7MUxxAXKkDe_ZyotpsDIUFD2mCeMLKLsiI-g882Ythw-xmQJw==
+ - xJMG0fWxzP2rq2oaj2sx-Z4Zq3FEUFa42RsuUn2kaLtzfIXnT8iQsA==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P2
X-Arequestid:
- - 8402396b323202bf7f468f30dc19b8bc
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - b4413c8dd1478fe50091f3df05781ab7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1534,30 +1534,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1567,9 +1567,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1579,12 +1579,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - eb2e2e11-5982-4940-90a2-008f1c3c2118
+ - 485763d6-f683-4090-bbfd-2fb1b614ad85
Atl-Traceid:
- - eb2e2e115982494090a2008f1c3c2118
+ - 485763d6f6834090bbfd2fb1b614ad85
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1594,9 +1594,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:10 GMT
+ - Fri, 16 Jan 2026 20:59:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1604,7 +1604,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=337,atl-edge;dur=314,atl-edge-internal;dur=33,atl-edge-upstream;dur=278,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="UTGgSNcbBEZ9gXBOrJFZpWjFi-FCeAaLxs0caWpPW2OScGY8fzkJrQ==",cdn-downstream-fbl;dur=341
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=361,atl-edge;dur=272,atl-edge-internal;dur=15,atl-edge-upstream;dur=257,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="mbORpXV1IqVycULmWQZCxD-jYFuMuq6_tlvizhA4e5licxaGvShD2A==",cdn-downstream-fbl;dur=365
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1614,23 +1614,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 77dfdef79344c95f75de8512042d4bac.cloudfront.net (CloudFront)
+ - 1.1 a7c0ba01db75946f7df3f7eaf69984b6.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UTGgSNcbBEZ9gXBOrJFZpWjFi-FCeAaLxs0caWpPW2OScGY8fzkJrQ==
+ - mbORpXV1IqVycULmWQZCxD-jYFuMuq6_tlvizhA4e5licxaGvShD2A==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P2
X-Arequestid:
- - 598e1c541f46b55e14ff1d61b301538f
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 72f9a0a2a0796b3f5887c8957613376a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1655,12 +1655,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:11.127+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:25.275+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 12aafee7-dbee-4176-9d25-3b5f6c24c890
+ - 90fa4b41-cd49-4734-bbfb-b2286e1daa72
Atl-Traceid:
- - 12aafee7dbee41769d253b5f6c24c890
+ - 90fa4b41cd494734bbfbb2286e1daa72
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1670,9 +1670,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:11 GMT
+ - Fri, 16 Jan 2026 20:59:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1680,7 +1680,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=208,atl-edge;dur=185,atl-edge-internal;dur=15,atl-edge-upstream;dur=168,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="_svgmad-2g87POgHOFQA_8eWqA5tfzydFB8_JkkOl9ux0Q-34y3OjA==",cdn-downstream-fbl;dur=211
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=190,atl-edge;dur=167,atl-edge-internal;dur=14,atl-edge-upstream;dur=153,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="3erXSJDx6YGd8B5Oq23n3MRCV2Lc31b8u5fRwF8ZAT5IXK2GzhOreQ==",cdn-downstream-fbl;dur=194
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1690,23 +1690,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b93403e5b15ed21bc6e80b8108e9d988.cloudfront.net (CloudFront)
+ - 1.1 47bd30b1233fcd4bea962db4946b0ff2.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - _svgmad-2g87POgHOFQA_8eWqA5tfzydFB8_JkkOl9ux0Q-34y3OjA==
+ - 3erXSJDx6YGd8B5Oq23n3MRCV2Lc31b8u5fRwF8ZAT5IXK2GzhOreQ==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN52-P1
X-Arequestid:
- - 52936e1b6d5a4a947debcbeef38be0ea
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - 04ac48199146fb85d603998b78b45860
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1728,30 +1728,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1761,9 +1761,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1773,12 +1773,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - bdb80fe7-822d-4055-8cf4-79b2a6a048ed
+ - 045488d2-7d9e-4433-bfc7-1ca1816606e7
Atl-Traceid:
- - bdb80fe7822d40558cf479b2a6a048ed
+ - 045488d27d9e4433bfc71ca1816606e7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1788,9 +1788,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:11 GMT
+ - Fri, 16 Jan 2026 20:59:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1798,7 +1798,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=306,atl-edge;dur=283,atl-edge-internal;dur=20,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="bfc6kJYAadYp7um0y2GJYsSrrBUBQxPUIYhtfO4E9sEaAs36Ts9M_Q==",cdn-downstream-fbl;dur=310
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=304,atl-edge;dur=281,atl-edge-internal;dur=15,atl-edge-upstream;dur=266,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="0poJVbcMNEmakz1UJe0iGTv5opBZCoY2ed1wA2invbt_7bBOYWLXEQ==",cdn-downstream-fbl;dur=308
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1808,23 +1808,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 66fbb9efab6146079af1497f336edf9e.cloudfront.net (CloudFront)
+ - 1.1 b8620ad7aedba28451ef92dbe52bd094.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - bfc6kJYAadYp7um0y2GJYsSrrBUBQxPUIYhtfO4E9sEaAs36Ts9M_Q==
+ - 0poJVbcMNEmakz1UJe0iGTv5opBZCoY2ed1wA2invbt_7bBOYWLXEQ==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN52-P1
X-Arequestid:
- - 7d73a15af779a11b3d3b75d217ad163c
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - f8506a8287c5a18d5a934212a3957ebc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1849,12 +1849,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:12.083+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:25.926+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - d0276e3b-06fb-4b2c-a97c-7cb59d11d3e1
+ - 288b6ca6-0967-4531-8cf5-04274ef57609
Atl-Traceid:
- - d0276e3b06fb4b2ca97c7cb59d11d3e1
+ - 288b6ca6096745318cf504274ef57609
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1864,9 +1864,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:12 GMT
+ - Fri, 16 Jan 2026 20:59:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1874,7 +1874,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=21,cdn-upstream-fbl;dur=499,atl-edge;dur=410,atl-edge-internal;dur=19,atl-edge-upstream;dur=390,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="tIKRicT5RfAyIWF7PXHG8sRuaA_osVKZZ0KCu7taydD0uT0RLKQ94w==",cdn-downstream-fbl;dur=504
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=191,atl-edge;dur=167,atl-edge-internal;dur=15,atl-edge-upstream;dur=152,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="8D7htGh5J1C5N6H4Yuk2941F5TLP6QogqFPmurAuOxVfIML10bxz1w==",cdn-downstream-fbl;dur=195
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1884,23 +1884,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 93a2323067b2c60f3b86c822765cf3d2.cloudfront.net (CloudFront)
+ - 1.1 4727c17386dca598865fa547bcafadfa.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - tIKRicT5RfAyIWF7PXHG8sRuaA_osVKZZ0KCu7taydD0uT0RLKQ94w==
+ - 8D7htGh5J1C5N6H4Yuk2941F5TLP6QogqFPmurAuOxVfIML10bxz1w==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P1
X-Arequestid:
- - f805233f74018ed4e5cc5b5b7ad65133
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '347'
+ - 814db693c107280daa5d8cbf1d7d0a5f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1922,30 +1922,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1955,9 +1955,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1967,12 +1967,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 59d3740d-9752-4be3-9634-0bd5846bc0b8
+ - a4c5c27b-9274-4e9f-8b14-77204d5544db
Atl-Traceid:
- - 59d3740d97524be396340bd5846bc0b8
+ - a4c5c27b92744e9f8b1477204d5544db
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1982,9 +1982,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:12 GMT
+ - Fri, 16 Jan 2026 20:59:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1992,7 +1992,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=371,atl-edge;dur=282,atl-edge-internal;dur=18,atl-edge-upstream;dur=262,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="xFq9uPMG9CRshuqmTO_vuiDuItFsogLXAV-C2PAqci9nA2gcZl1uzw==",cdn-downstream-fbl;dur=375
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=342,atl-edge;dur=253,atl-edge-internal;dur=18,atl-edge-upstream;dur=235,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="6500BYtg2z6hvtgc7qgq-oBafiAXF3StXyExkCRbCqcwccHLDyZABw==",cdn-downstream-fbl;dur=347
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2002,23 +2002,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3349382fe72101eee491170c132b7e3c.cloudfront.net (CloudFront)
+ - 1.1 c965c698e00469f12854479079151e98.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - xFq9uPMG9CRshuqmTO_vuiDuItFsogLXAV-C2PAqci9nA2gcZl1uzw==
+ - 6500BYtg2z6hvtgc7qgq-oBafiAXF3StXyExkCRbCqcwccHLDyZABw==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P3
X-Arequestid:
- - 9e2b1a834627751bcce4a3515ab37072
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 574cb759f968669227a8aa2321fb960f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2052,9 +2052,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - cafbc97b-52fb-4e81-8877-4b260e9a9749
+ - 8adbc8a5-422f-4ce6-9dd6-3eb4afe5e53f
Atl-Traceid:
- - cafbc97b52fb4e8188774b260e9a9749
+ - 8adbc8a5422f4ce69dd63eb4afe5e53f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2064,9 +2064,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:13 GMT
+ - Fri, 16 Jan 2026 20:59:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2074,7 +2074,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=527,atl-edge;dur=437,atl-edge-internal;dur=18,atl-edge-upstream;dur=419,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="xkl-rAU1Om3tF4GT58NRciQiHy4DFZJFh_5kJ_JCDOCy8J_cqG6JGw==",cdn-downstream-fbl;dur=532
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=416,atl-edge;dur=326,atl-edge-internal;dur=16,atl-edge-upstream;dur=310,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="LKYmS66pjRAnHsk9MFyDFDPj38jeVCdWrKg0As6cNeC0XO4H4KflFg==",cdn-downstream-fbl;dur=420
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2084,26 +2084,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 73ad00d68a5eb9671b517ae19c83ae52.cloudfront.net (CloudFront)
+ - 1.1 5a94950aa5895e56460f82b3086d0b0c.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - xkl-rAU1Om3tF4GT58NRciQiHy4DFZJFh_5kJ_JCDOCy8J_cqG6JGw==
+ - LKYmS66pjRAnHsk9MFyDFDPj38jeVCdWrKg0As6cNeC0XO4H4KflFg==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P1
X-Arequestid:
- - e5e3222a3cfcd273504ab373d6c94703
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - f290476e9ecfeef2c952153297766fd5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2113,20 +2113,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2136,9 +2136,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2158,21 +2158,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3552'
+ - '3556'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 66d8b50b-2e60-4ae5-b631-8142958d28eb
+ - b03da3f9-549f-4065-a45e-8f64f1f20b42
Atl-Traceid:
- - 66d8b50b2e604ae5b6318142958d28eb
+ - b03da3f9549f4065a45e8f64f1f20b42
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2180,9 +2180,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:13 GMT
+ - Fri, 16 Jan 2026 20:59:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2190,7 +2190,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=393,atl-edge;dur=368,atl-edge-internal;dur=18,atl-edge-upstream;dur=350,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="EW4e3c6E25wWQjSlzbFn5GdaTZGWtIddAqyc4QfQFDZjmij7nH0Mkw==",cdn-downstream-fbl;dur=399
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=388,atl-edge;dur=363,atl-edge-internal;dur=16,atl-edge-upstream;dur=347,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Kco3Fp5MctnpQFLaovS0iusauwxa56hjPom_Ofvr2nR9mMMy2o-TnA==",cdn-downstream-fbl;dur=393
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2198,23 +2198,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 25c0c572fef0588285c0d89bc75071be.cloudfront.net (CloudFront)
+ - 1.1 dcf66d063397a0f56f1520115d84eb20.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - EW4e3c6E25wWQjSlzbFn5GdaTZGWtIddAqyc4QfQFDZjmij7nH0Mkw==
+ - Kco3Fp5MctnpQFLaovS0iusauwxa56hjPom_Ofvr2nR9mMMy2o-TnA==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P1
X-Arequestid:
- - dc66bb1bf21005c8f9d7345f28888df8
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 80cd3d00357e629bcf8c1d53db8e6824
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2236,30 +2236,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2269,9 +2269,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2281,12 +2281,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 0aa75647-dc46-4f8c-b999-89f1ed7950e2
+ - 3100ee56-ec93-461d-b831-a49a6c8833aa
Atl-Traceid:
- - 0aa75647dc464f8cb99989f1ed7950e2
+ - 3100ee56ec93461db831a49a6c8833aa
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2296,9 +2296,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:14 GMT
+ - Fri, 16 Jan 2026 20:59:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2306,7 +2306,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=471,atl-edge;dur=380,atl-edge-internal;dur=21,atl-edge-upstream;dur=359,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="lDDyxIeawTp0JNd1mxgqAQPS9NWCu9LafnFb2EcPN0F-CjiiHxSTuQ==",cdn-downstream-fbl;dur=474
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=69,cdn-upstream-fbl;dur=390,atl-edge;dur=298,atl-edge-internal;dur=18,atl-edge-upstream;dur=280,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="oiEkgDigNS3zQ4EaEvKGvo1O9It4UWlwrjG2gqihf07kRGhbG4CS1A==",cdn-downstream-fbl;dur=393
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2316,23 +2316,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c29cc996206d7483aa0efdd00191d936.cloudfront.net (CloudFront)
+ - 1.1 9eceed849af3c369b60088e6ae5ad92c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - lDDyxIeawTp0JNd1mxgqAQPS9NWCu9LafnFb2EcPN0F-CjiiHxSTuQ==
+ - oiEkgDigNS3zQ4EaEvKGvo1O9It4UWlwrjG2gqihf07kRGhbG4CS1A==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P2
X-Arequestid:
- - 20be13273370706533068faf479a6a7f
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 78a91508b2524d88c14b642b3f42cfb1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2357,12 +2357,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:14.438+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:28.310+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - ff86994c-3756-404b-a894-11ee1fcd0b5a
+ - e794e898-c392-451e-8a8b-1da6a709bc04
Atl-Traceid:
- - ff86994c3756404ba89411ee1fcd0b5a
+ - e794e898c392451e8a8b1da6a709bc04
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2372,9 +2372,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:14 GMT
+ - Fri, 16 Jan 2026 20:59:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2382,7 +2382,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=197,atl-edge;dur=174,atl-edge-internal;dur=14,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="AM7_bpFecKj_cGFzk9tVe6NWJqkc2v00rXUInWnZZmXlXFuJxy2uBQ==",cdn-downstream-fbl;dur=200
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=263,atl-edge;dur=171,atl-edge-internal;dur=15,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="lt6eir7dNQe0e-cTZrhuYsmAhg0PL779mXAvIdpvEk8ITMjfaYtBEA==",cdn-downstream-fbl;dur=267
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2392,23 +2392,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0ecc9d4faf14441bafb84971a4117abc.cloudfront.net (CloudFront)
+ - 1.1 2049902380178fd7b885115d80ccf966.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - AM7_bpFecKj_cGFzk9tVe6NWJqkc2v00rXUInWnZZmXlXFuJxy2uBQ==
+ - lt6eir7dNQe0e-cTZrhuYsmAhg0PL779mXAvIdpvEk8ITMjfaYtBEA==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN52-P3
X-Arequestid:
- - 33c13ab7c3c77c36ed590668cb5e2b5e
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 5b431b1a630f5d01b5e71230ad565479
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2430,30 +2430,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2463,9 +2463,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2475,12 +2475,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 9f81f68a-63bc-4ec4-ac0c-db8cda2b9aa4
+ - 922bacc5-7459-4939-a4fa-2cb16cc2b400
Atl-Traceid:
- - 9f81f68a63bc4ec4ac0cdb8cda2b9aa4
+ - 922bacc574594939a4fa2cb16cc2b400
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2490,9 +2490,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:14 GMT
+ - Fri, 16 Jan 2026 20:59:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2500,7 +2500,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=283,atl-edge;dur=260,atl-edge-internal;dur=17,atl-edge-upstream;dur=243,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="mxSqW12DlFC89a7I2k6p5GVBTzi_gzgElTc55OAe_yrDf0bJ7kNoRg==",cdn-downstream-fbl;dur=286
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=297,atl-edge;dur=274,atl-edge-internal;dur=16,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="IR7_XNfoYCCWqTPj-0-OeKOUAUCWyEwTU521S3WeN4-KF5Nx2E75PQ==",cdn-downstream-fbl;dur=302
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2510,23 +2510,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e559b1049f75d818d7420cfc59459998.cloudfront.net (CloudFront)
+ - 1.1 2049902380178fd7b885115d80ccf966.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - mxSqW12DlFC89a7I2k6p5GVBTzi_gzgElTc55OAe_yrDf0bJ7kNoRg==
+ - IR7_XNfoYCCWqTPj-0-OeKOUAUCWyEwTU521S3WeN4-KF5Nx2E75PQ==
X-Amz-Cf-Pop:
- DEN52-P3
X-Arequestid:
- - 5491a4ea21bc0e72852d4e8a1660e400
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 287a95b2c4356fe9ade58f7757858535
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2551,12 +2551,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:15.099+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:29.089+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - ab5c19f2-16c2-4c4a-8bef-0e4bd5f0719a
+ - 5e131fcd-6509-47f5-82b3-29c05184c0f7
Atl-Traceid:
- - ab5c19f216c24c4a8bef0e4bd5f0719a
+ - 5e131fcd650947f582b329c05184c0f7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2566,9 +2566,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:15 GMT
+ - Fri, 16 Jan 2026 20:59:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2576,7 +2576,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=205,atl-edge;dur=182,atl-edge-internal;dur=15,atl-edge-upstream;dur=167,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="_C-cobHnZPjJdN97SBe43TbJtulZGq1NoCA6tyYlc8P0Xx5m04PPog==",cdn-downstream-fbl;dur=211
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=195,atl-edge;dur=172,atl-edge-internal;dur=16,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="DSq2AKYEOAikexDbw5OVlAY-4MJk_gmrDNMf-eGDoQbYrX8rFA9vuQ==",cdn-downstream-fbl;dur=199
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2586,23 +2586,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c4c8de00fdd2495cb82daf882e1daacc.cloudfront.net (CloudFront)
+ - 1.1 270fdef5b99b63ae592608f44e3043b6.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - _C-cobHnZPjJdN97SBe43TbJtulZGq1NoCA6tyYlc8P0Xx5m04PPog==
+ - DSq2AKYEOAikexDbw5OVlAY-4MJk_gmrDNMf-eGDoQbYrX8rFA9vuQ==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P3
X-Arequestid:
- - ae16cde63bccd1666904484014632824
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - db2575d1d9ac72ce09531187f1fd1606
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2624,30 +2624,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:05.644+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:19.764+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2657,9 +2657,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2669,12 +2669,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 950d72e6-9fba-4ce9-a7c7-ebad308373e5
+ - f1a47d5a-7a0e-48b1-8b05-e6e9fb726338
Atl-Traceid:
- - 950d72e69fba4ce9a7c7ebad308373e5
+ - f1a47d5a7a0e48b18b05e6e9fb726338
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2684,9 +2684,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:15 GMT
+ - Fri, 16 Jan 2026 20:59:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2694,7 +2694,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=326,atl-edge;dur=301,atl-edge-internal;dur=19,atl-edge-upstream;dur=284,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="y419r0ZO3D26d1K3DbwKJsCpb5C912VYELwPgA699f-dvjXrAb96Zg==",cdn-downstream-fbl;dur=330
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=329,atl-edge;dur=239,atl-edge-internal;dur=16,atl-edge-upstream;dur=223,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="ywMQbuacHrWbDq08yGlezC89IBWJqVeYDlaSt9w8UZ0cxhmmBk3Jwg==",cdn-downstream-fbl;dur=332
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2704,23 +2704,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront)
+ - 1.1 8e8ff6f69325d8196c02b63be536a6d0.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - y419r0ZO3D26d1K3DbwKJsCpb5C912VYELwPgA699f-dvjXrAb96Zg==
+ - ywMQbuacHrWbDq08yGlezC89IBWJqVeYDlaSt9w8UZ0cxhmmBk3Jwg==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN53-P1
X-Arequestid:
- - f4a8afa1f9023254d97fb72e5de75313
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - 3aa52db88061cd3252428258d930ce3b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2754,9 +2754,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 4215d28c-ff83-4677-97e2-84339612aa0f
+ - b811029d-caaa-4fdf-b898-7727c26a14e3
Atl-Traceid:
- - 4215d28cff83467797e284339612aa0f
+ - b811029dcaaa4fdfb8987727c26a14e3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2766,9 +2766,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:16 GMT
+ - Fri, 16 Jan 2026 20:59:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2776,7 +2776,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=419,atl-edge;dur=396,atl-edge-internal;dur=17,atl-edge-upstream;dur=380,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="KwMEjf_fhEUoSol06_7ER4Jy2ef0-xbJPj2H1m4kUSJwOGKrNei1wQ==",cdn-downstream-fbl;dur=423
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=348,atl-edge;dur=325,atl-edge-internal;dur=16,atl-edge-upstream;dur=309,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="hN1Gi-oQiNZMF-4tH6LhEjCvgVnaNfg1aWXBVeVjwxxu4FbCRYq9hw==",cdn-downstream-fbl;dur=351
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2786,26 +2786,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e1dbbcedf936fc7d0284466c9c65e78c.cloudfront.net (CloudFront)
+ - 1.1 6baae223a8a0bac3ed58b2661c840b8e.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - KwMEjf_fhEUoSol06_7ER4Jy2ef0-xbJPj2H1m4kUSJwOGKrNei1wQ==
+ - hN1Gi-oQiNZMF-4tH6LhEjCvgVnaNfg1aWXBVeVjwxxu4FbCRYq9hw==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN53-P1
X-Arequestid:
- - 6daa4f5587e93f1590f81650f6519cb7
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 02fad3c3e0cdec68a6c8eee48434d092
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2815,20 +2815,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* Medium\n *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2838,9 +2838,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2860,21 +2860,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3560'
+ - '3566'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 07301fee-2f2c-4b77-a529-6cc8f69e956b
+ - a2bf34f4-7c47-421a-bbac-32b58974b389
Atl-Traceid:
- - 07301fee2f2c4b77a5296cc8f69e956b
+ - a2bf34f47c47421abbac32b58974b389
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2882,9 +2882,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:16 GMT
+ - Fri, 16 Jan 2026 20:59:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2892,7 +2892,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=603,atl-edge;dur=579,atl-edge-internal;dur=20,atl-edge-upstream;dur=558,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="cMir0zB98cXT5Kw12uXTy0IGSFjprWY-1wH64dAXYQ43ndOTkAA_1A==",cdn-downstream-fbl;dur=608
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=679,atl-edge;dur=585,atl-edge-internal;dur=17,atl-edge-upstream;dur=569,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="sSyYm76_LLAaKUOGssRUDrAAOn7h1_s4WDvNgy9tFTm4Zkfs_KS0Gg==",cdn-downstream-fbl;dur=685
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2900,23 +2900,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6d3c3e0af3263a7b3c6878f2fa9bbff6.cloudfront.net (CloudFront)
+ - 1.1 c3ec3fa9c5962899febb10c3fdc31872.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - cMir0zB98cXT5Kw12uXTy0IGSFjprWY-1wH64dAXYQ43ndOTkAA_1A==
+ - sSyYm76_LLAaKUOGssRUDrAAOn7h1_s4WDvNgy9tFTm4Zkfs_KS0Gg==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P2
X-Arequestid:
- - 068a2f7c30152724a73a3fddd724dc51
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 6a1b19052c8dd06ca827164ebc9448f2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2938,30 +2938,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:16.604+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:30.432+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* Medium\n *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2971,9 +2971,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2983,12 +2983,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 1c5583e2-783a-4932-84d0-937b91403c25
+ - d5b82473-0761-4bc1-85c7-1f96efae9e28
Atl-Traceid:
- - 1c5583e2783a493284d0937b91403c25
+ - d5b8247307614bc185c71f96efae9e28
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2998,9 +2998,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:17 GMT
+ - Fri, 16 Jan 2026 20:59:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3008,7 +3008,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=361,atl-edge;dur=339,atl-edge-internal;dur=19,atl-edge-upstream;dur=320,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="WWmdLWach6_EiC-NpRc-2C74nLCAvT44B6eeqQVngEMx87hrJ_bEig==",cdn-downstream-fbl;dur=365
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=332,atl-edge;dur=242,atl-edge-internal;dur=18,atl-edge-upstream;dur=225,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="EbNxrYf2fLceKgyMZJvXb3VBw7Ao47Ue7_L7IZeSxjwERQWI6-ItFw==",cdn-downstream-fbl;dur=335
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3018,23 +3018,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 057707d7f80ca305efe5fad72e15b94c.cloudfront.net (CloudFront)
+ - 1.1 e5778a61da2e928608d7fdc9242d1f8e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - WWmdLWach6_EiC-NpRc-2C74nLCAvT44B6eeqQVngEMx87hrJ_bEig==
+ - EbNxrYf2fLceKgyMZJvXb3VBw7Ao47Ue7_L7IZeSxjwERQWI6-ItFw==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P3
X-Arequestid:
- - e0fe52aab773bd8dca6281eb92a39c6e
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - c4eba8cae20474305455cc786ba5200a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3059,12 +3059,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:17.647+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:31.396+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - b0e4bd09-950b-4154-bfce-7a7a32a9b180
+ - 27442ec9-fcc1-4607-8dc3-f5ade5e663a3
Atl-Traceid:
- - b0e4bd09950b4154bfce7a7a32a9b180
+ - 27442ec9fcc146078dc3f5ade5e663a3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3074,9 +3074,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:17 GMT
+ - Fri, 16 Jan 2026 20:59:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3084,7 +3084,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=200,atl-edge;dur=176,atl-edge-internal;dur=15,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="0teRSuD506uDmqmqcjG8litU-FyYD0nMf4Tmwo82TFEQhxcGoQJnvg==",cdn-downstream-fbl;dur=203
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=191,atl-edge;dur=168,atl-edge-internal;dur=12,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="qz8s78I8ub7d3KMKvar9v7-3bmQcVkOL1N-GkJxM84mx5gWYJBoNcA==",cdn-downstream-fbl;dur=195
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3094,23 +3094,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 153b67ebb1db442b5cea7f360e7f8cb6.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0teRSuD506uDmqmqcjG8litU-FyYD0nMf4Tmwo82TFEQhxcGoQJnvg==
+ - qz8s78I8ub7d3KMKvar9v7-3bmQcVkOL1N-GkJxM84mx5gWYJBoNcA==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P3
X-Arequestid:
- - 01969eb5a814b88e679421007835b28b
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - e76b5959c09f60a0dd826037699c7e8a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3132,30 +3132,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:16.604+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:30.432+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* Medium\n *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3165,9 +3165,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3177,12 +3177,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 9287b432-8a6b-477c-8bda-04e776059298
+ - 894d2b33-358e-4e33-ba1d-955d3deb4156
Atl-Traceid:
- - 9287b4328a6b477c8bda04e776059298
+ - 894d2b33358e4e33ba1d955d3deb4156
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3192,9 +3192,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:18 GMT
+ - Fri, 16 Jan 2026 20:59:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3202,7 +3202,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=295,atl-edge;dur=273,atl-edge-internal;dur=17,atl-edge-upstream;dur=256,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="65GVAZ5M-WBpYboVMCLB11ztgq_zYRtFNx8-GS5QyzpQSUTzHnWoow==",cdn-downstream-fbl;dur=299
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=392,atl-edge;dur=301,atl-edge-internal;dur=31,atl-edge-upstream;dur=269,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="WOtpZ0auxyRhQTfPBtRZ_tzgmsSH23AOoFGbgyCfB2KBBQUTp7UB_Q==",cdn-downstream-fbl;dur=395
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3212,23 +3212,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f65dcddaf4d3d1ea834dd4e676c13038.cloudfront.net (CloudFront)
+ - 1.1 2b6f0b2cd8495233ea20114fbb247772.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 65GVAZ5M-WBpYboVMCLB11ztgq_zYRtFNx8-GS5QyzpQSUTzHnWoow==
+ - WOtpZ0auxyRhQTfPBtRZ_tzgmsSH23AOoFGbgyCfB2KBBQUTp7UB_Q==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P3
X-Arequestid:
- - 2b1c493d36a7239aa31e5f19ad106153
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - c4943e1712c6c5a58e833fcc88e8f995
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3253,12 +3253,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:18.362+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:32.274+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - ac1ae67c-82d9-4511-8731-138bd4222dcc
+ - 137c44d1-ca61-49a1-b9d4-830b08bc981e
Atl-Traceid:
- - ac1ae67c82d945118731138bd4222dcc
+ - 137c44d1ca6149a1b9d4830b08bc981e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3268,9 +3268,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:18 GMT
+ - Fri, 16 Jan 2026 20:59:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3278,7 +3278,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=218,atl-edge;dur=194,atl-edge-internal;dur=15,atl-edge-upstream;dur=180,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="rc_gvP98kUGw9hxGU9pInLW1FPSAWDWqz-ftLnBKKU-cIA5RCpeicQ==",cdn-downstream-fbl;dur=221
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=198,atl-edge;dur=175,atl-edge-internal;dur=14,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="XlfOZONFDkeauE_jeCU-KO5QQrg9htxHikritgB6n5i7J8s4Xid0XQ==",cdn-downstream-fbl;dur=202
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3288,23 +3288,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f6327093dd59f54131617ea3ab04bd94.cloudfront.net (CloudFront)
+ - 1.1 9eceed849af3c369b60088e6ae5ad92c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - rc_gvP98kUGw9hxGU9pInLW1FPSAWDWqz-ftLnBKKU-cIA5RCpeicQ==
+ - XlfOZONFDkeauE_jeCU-KO5QQrg9htxHikritgB6n5i7J8s4Xid0XQ==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P2
X-Arequestid:
- - 418bf4381df42086b99d13c11fe4f9c7
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - 32c9e124ffd8565a2118f2bc8c5e091c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3326,30 +3326,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:16.604+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:30.432+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/235]\n*Defect Dojo link:* http://localhost:8080/finding/235
- (235)\n*Severity:* Medium\n *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/254]\n*Defect Dojo link:* http://localhost:8080/finding/254
+ (254)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3359,9 +3359,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3371,12 +3371,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ec0a253d-040d-4e9c-9c61-4ae4ce26fed0
+ - 73edbd2f-0f80-48c5-a635-d97deeb7bfe5
Atl-Traceid:
- - ec0a253d040d4e9c9c614ae4ce26fed0
+ - 73edbd2f0f8048c5a635d97deeb7bfe5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3386,9 +3386,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:18 GMT
+ - Fri, 16 Jan 2026 20:59:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3396,7 +3396,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=303,atl-edge;dur=279,atl-edge-internal;dur=19,atl-edge-upstream;dur=261,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="sVRnGfux1qMBn7xsr9Tp5lQdVbZ0wRttlilvS7nHJC3AVV8H54eMlA==",cdn-downstream-fbl;dur=307
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=538,atl-edge;dur=515,atl-edge-internal;dur=49,atl-edge-upstream;dur=465,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="yFislw4QJzPOlW94RNCzgEfVzVu6TqTS8igM6SNjgztqBeBvOEoIHQ==",cdn-downstream-fbl;dur=542
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3406,23 +3406,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 185338419e21d148fae1747402a58e8a.cloudfront.net (CloudFront)
+ - 1.1 f3ddfa13c95148b404ddbc8398e73286.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sVRnGfux1qMBn7xsr9Tp5lQdVbZ0wRttlilvS7nHJC3AVV8H54eMlA==
+ - yFislw4QJzPOlW94RNCzgEfVzVu6TqTS8igM6SNjgztqBeBvOEoIHQ==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P3
X-Arequestid:
- - 570ff8977c1e34b277ab3e617c3ca059
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - d7ebbb38a4fb6fd2c3dba52cf96ca457
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3456,9 +3456,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - eb57cbb0-3717-464b-9743-c8f0b21332e0
+ - 0f24fd58-178b-49d8-bc81-04d48870147c
Atl-Traceid:
- - eb57cbb03717464b9743c8f0b21332e0
+ - 0f24fd58178b49d8bc8104d48870147c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3468,9 +3468,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:19 GMT
+ - Fri, 16 Jan 2026 20:59:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3478,7 +3478,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=429,atl-edge;dur=405,atl-edge-internal;dur=18,atl-edge-upstream;dur=388,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="ktsbO9_jiCfL6nXrqpAjiP0Gz8D_7mC5XD7hZOb5pd1MhIgm9FBKhA==",cdn-downstream-fbl;dur=432
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=463,atl-edge;dur=375,atl-edge-internal;dur=18,atl-edge-upstream;dur=357,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="cPytnOOdaxHmU5uIhofM3F8vzJPdfy_FsUCBAeEUV47Jx7SjsdAvjg==",cdn-downstream-fbl;dur=468
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3488,26 +3488,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3349382fe72101eee491170c132b7e3c.cloudfront.net (CloudFront)
+ - 1.1 b1a94c3ca6429736112e2213a359c78a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ktsbO9_jiCfL6nXrqpAjiP0Gz8D_7mC5XD7hZOb5pd1MhIgm9FBKhA==
+ - cPytnOOdaxHmU5uIhofM3F8vzJPdfy_FsUCBAeEUV47Jx7SjsdAvjg==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P3
X-Arequestid:
- - ac2fdf85b64a9d9775ca926a7b5f4813
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 9eb9783797c3f1e5ec01cb390ca7cf2b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3517,20 +3517,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3540,9 +3540,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3562,21 +3562,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3552'
+ - '3556'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 01c257d5-582f-4338-bdde-5c54168925a8
+ - 554426d4-3372-410b-a36f-11eb78815bf6
Atl-Traceid:
- - 01c257d5582f4338bdde5c54168925a8
+ - 554426d43372410ba36f11eb78815bf6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3584,9 +3584,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:20 GMT
+ - Fri, 16 Jan 2026 20:59:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3594,7 +3594,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=654,atl-edge;dur=628,atl-edge-internal;dur=15,atl-edge-upstream;dur=612,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="w4B8vupClB96Siy6jxa9ucvkK3W5UdOsKDg07yVvq_zx83zgAGYEgg==",cdn-downstream-fbl;dur=659
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=661,atl-edge;dur=572,atl-edge-internal;dur=15,atl-edge-upstream;dur=556,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="xQSR0isbWSfSvnSFYk7omONe-y_63UoFjHAtrkmOhOj9C5lWwAnO3w==",cdn-downstream-fbl;dur=667
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3602,23 +3602,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 cb4937748c19bcccb40a5a5875f01552.cloudfront.net (CloudFront)
+ - 1.1 f919695384def1b11aac2656ceef40bc.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - w4B8vupClB96Siy6jxa9ucvkK3W5UdOsKDg07yVvq_zx83zgAGYEgg==
+ - xQSR0isbWSfSvnSFYk7omONe-y_63UoFjHAtrkmOhOj9C5lWwAnO3w==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P3
X-Arequestid:
- - fa67414b72a74c12a7c4312cc58d4056
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 845dd54057189dacf029225c65f4730f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3640,30 +3640,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:19.903+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:33.979+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/234]\n*Defect Dojo link:* http://localhost:8080/finding/234
- (234)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ 0.6.0)|http://localhost:8080/finding/253]\n*Defect Dojo link:* http://localhost:8080/finding/253
+ (253)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3673,9 +3673,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3685,12 +3685,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4eb3c00f-29db-4e73-b451-0c56228484d2
+ - 4c9bcaed-ef2a-4db6-90cf-f2df53c1fad6
Atl-Traceid:
- - 4eb3c00f29db4e73b4510c56228484d2
+ - 4c9bcaedef2a4db690cff2df53c1fad6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3700,9 +3700,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:20 GMT
+ - Fri, 16 Jan 2026 20:59:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3710,7 +3710,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=262,atl-edge;dur=240,atl-edge-internal;dur=16,atl-edge-upstream;dur=222,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="lQgy1v4B9EumMwE8ljoo2-gymI-Ok4Jj2T81cBl4QjfvH3JqJ-SxOg==",cdn-downstream-fbl;dur=266
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=288,atl-edge;dur=265,atl-edge-internal;dur=15,atl-edge-upstream;dur=249,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="m7m5-jOtj_G8sgb0NDwmHnVfWpc5ASNxSJPpQfL-JYxZLRKEQUX0EQ==",cdn-downstream-fbl;dur=292
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3720,23 +3720,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6767782218a3548f894151ef053fe67e.cloudfront.net (CloudFront)
+ - 1.1 9d0c0f607ed2753212b70ce75683881e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - lQgy1v4B9EumMwE8ljoo2-gymI-Ok4Jj2T81cBl4QjfvH3JqJ-SxOg==
+ - m7m5-jOtj_G8sgb0NDwmHnVfWpc5ASNxSJPpQfL-JYxZLRKEQUX0EQ==
X-Amz-Cf-Pop:
- DEN53-P3
X-Arequestid:
- - 33707d82c635970cc166e449d3358406
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 0cfdc172b5dac488d9e9c31ecbaffcb1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3761,12 +3761,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:20.777+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:34.902+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 74e18565-d099-4ad6-9d6b-d28d96bf8459
+ - 6cb5c4a9-5b01-4874-8264-c675dc4504c4
Atl-Traceid:
- - 74e18565d0994ad69d6bd28d96bf8459
+ - 6cb5c4a95b0148748264c675dc4504c4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3776,9 +3776,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:20 GMT
+ - Fri, 16 Jan 2026 20:59:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3786,7 +3786,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=192,atl-edge;dur=169,atl-edge-internal;dur=16,atl-edge-upstream;dur=153,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="0TaBKfnLKtbgnXw2Qdtr1eDydCIKD399_fj8MNHlgv68MVYnsxmo2g==",cdn-downstream-fbl;dur=196
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=259,atl-edge;dur=168,atl-edge-internal;dur=14,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="FcOU3Oo1bsZ2hmPXO2HOsecCzSoqj7nwopQIwDdoQDDnJFQc3lvOTQ==",cdn-downstream-fbl;dur=262
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3796,23 +3796,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 78848e87583c98ba04111361257adc96.cloudfront.net (CloudFront)
+ - 1.1 7ee47747c4818585fe9ee49bdf1ecccc.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0TaBKfnLKtbgnXw2Qdtr1eDydCIKD399_fj8MNHlgv68MVYnsxmo2g==
+ - FcOU3Oo1bsZ2hmPXO2HOsecCzSoqj7nwopQIwDdoQDDnJFQc3lvOTQ==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN53-P2
X-Arequestid:
- - 1c2d36b4f8924bdf469af152b9f32e38
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 6c59af202e11bcb33a91160cd0cbdf8e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3834,30 +3834,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:19.903+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:33.979+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/234]\n*Defect Dojo link:* http://localhost:8080/finding/234
- (234)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ 0.6.0)|http://localhost:8080/finding/253]\n*Defect Dojo link:* http://localhost:8080/finding/253
+ (253)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3867,9 +3867,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3879,12 +3879,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - cc51c816-6c4d-4b18-8e3f-fd5570bb454c
+ - 01841964-c9e4-4438-9631-bb2df9c6ed84
Atl-Traceid:
- - cc51c8166c4d4b188e3ffd5570bb454c
+ - 01841964c9e444389631bb2df9c6ed84
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3894,9 +3894,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:21 GMT
+ - Fri, 16 Jan 2026 20:59:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3904,7 +3904,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=357,atl-edge;dur=265,atl-edge-internal;dur=22,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="OT0tZjbdTj4Q0GhynMs_mtY29Pdgw1jVqZR7IEcz5I6qRaxLbhrV4w==",cdn-downstream-fbl;dur=362
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=275,atl-edge;dur=252,atl-edge-internal;dur=17,atl-edge-upstream;dur=234,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="8yZoW4IbjSfz3SD3V6k-lPdzgokPL81qPO6NlXDSuD10ltFvGeB5sg==",cdn-downstream-fbl;dur=278
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3914,23 +3914,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fb583d18c6b0f24d4447146b294e4f68.cloudfront.net (CloudFront)
+ - 1.1 da745b01c27611dac38d175371cb7b54.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - OT0tZjbdTj4Q0GhynMs_mtY29Pdgw1jVqZR7IEcz5I6qRaxLbhrV4w==
+ - 8yZoW4IbjSfz3SD3V6k-lPdzgokPL81qPO6NlXDSuD10ltFvGeB5sg==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P2
X-Arequestid:
- - 5d83d2afbfce3bf3e5ae58b331faba05
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - ea5e40ee6b2b58d534673db0a7b2bb97
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3955,12 +3955,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:21.464+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:35.610+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 687b50ac-ec0e-44a3-9d58-fd99f66384fd
+ - e80dc305-f915-4c64-8bf3-fc55dd24852c
Atl-Traceid:
- - 687b50acec0e44a39d58fd99f66384fd
+ - e80dc305f9154c648bf3fc55dd24852c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3970,9 +3970,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:21 GMT
+ - Fri, 16 Jan 2026 20:59:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3980,7 +3980,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=197,atl-edge;dur=174,atl-edge-internal;dur=18,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="ZQN2BfOEdAKhFoAt9OZ0N58efP6aofU9tNgPeSZvtwL-shLpVjX9HA==",cdn-downstream-fbl;dur=202
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=250,atl-edge;dur=160,atl-edge-internal;dur=14,atl-edge-upstream;dur=146,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="tFRtsFBLSIlpN1QhP-bhuxHmR6wBZ7toh2QhwygRBWsniS72gV_Hhg==",cdn-downstream-fbl;dur=254
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3990,23 +3990,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2049902380178fd7b885115d80ccf966.cloudfront.net (CloudFront)
+ - 1.1 afe2a1120748a37da1066bf9f260ec02.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ZQN2BfOEdAKhFoAt9OZ0N58efP6aofU9tNgPeSZvtwL-shLpVjX9HA==
+ - tFRtsFBLSIlpN1QhP-bhuxHmR6wBZ7toh2QhwygRBWsniS72gV_Hhg==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - 229239e5000d8dd0c8e8ba625cfd4704
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - d47bcc500dd1f5cc87c3be29eaa0a784
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4028,30 +4028,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:19.903+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:33.979+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/234]\n*Defect Dojo link:* http://localhost:8080/finding/234
- (234)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ 0.6.0)|http://localhost:8080/finding/253]\n*Defect Dojo link:* http://localhost:8080/finding/253
+ (253)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4061,9 +4061,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4073,12 +4073,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 5faf540f-0924-41b3-ac00-52853f96beaf
+ - bef727b9-1f64-4eef-b886-a58c7b4eece0
Atl-Traceid:
- - 5faf540f092441b3ac0052853f96beaf
+ - bef727b91f644eefb886a58c7b4eece0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4088,9 +4088,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:21 GMT
+ - Fri, 16 Jan 2026 20:59:36 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4098,7 +4098,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=266,atl-edge;dur=243,atl-edge-internal;dur=16,atl-edge-upstream;dur=225,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="rswtz3OxLDcQEuIK6ZW0R1GZW5YtX4c1Pl9HXjOlw_I9UYPPTcc9cg==",cdn-downstream-fbl;dur=269
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=289,atl-edge;dur=267,atl-edge-internal;dur=16,atl-edge-upstream;dur=251,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="T-dq4PqaNG5xLMODSyjYxNpH4rlosgCCJI4bNEr_fHIrmWwVfRPmcA==",cdn-downstream-fbl;dur=293
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4108,23 +4108,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a0b647da77edd97cca88fb4c4b1a9d08.cloudfront.net (CloudFront)
+ - 1.1 2909646f89d966029e8e630552d19c46.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - rswtz3OxLDcQEuIK6ZW0R1GZW5YtX4c1Pl9HXjOlw_I9UYPPTcc9cg==
+ - T-dq4PqaNG5xLMODSyjYxNpH4rlosgCCJI4bNEr_fHIrmWwVfRPmcA==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - ee93271a45c760e65898abf3bb73720a
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - b7102e10cdd260f67e8b3ca172ed1af8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4149,12 +4149,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:22.089+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:36.323+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 2822b0a1-2381-4898-adfc-01f5c6446f77
+ - c834682d-1651-4e88-a7a4-5ebec2d23dde
Atl-Traceid:
- - 2822b0a123814898adfc01f5c6446f77
+ - c834682d16514e88a7a45ebec2d23dde
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4164,9 +4164,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:22 GMT
+ - Fri, 16 Jan 2026 20:59:36 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4174,7 +4174,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=198,atl-edge;dur=173,atl-edge-internal;dur=15,atl-edge-upstream;dur=158,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="880lPGrOwzakRp5eLoiSlW4K6O4oM-JN4AyoHA53PKQ-8dHee9TXDA==",cdn-downstream-fbl;dur=203
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=194,atl-edge;dur=171,atl-edge-internal;dur=15,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="0BE19mfRbDuiFH6vQez3IkzGmW-4ZWhq3jFM_Fjq_lY9hW2V1uI58g==",cdn-downstream-fbl;dur=199
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4184,23 +4184,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 89771419757f75b08f6c8fd411f8ef54.cloudfront.net (CloudFront)
+ - 1.1 c965c698e00469f12854479079151e98.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 880lPGrOwzakRp5eLoiSlW4K6O4oM-JN4AyoHA53PKQ-8dHee9TXDA==
+ - 0BE19mfRbDuiFH6vQez3IkzGmW-4ZWhq3jFM_Fjq_lY9hW2V1uI58g==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P3
X-Arequestid:
- - 40bd4fa845184618839ea8aa67c1ae16
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '347'
+ - 6677a7e7e7355f53d39d65bd8fffcc23
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4222,30 +4222,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:19.903+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:33.979+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/234]\n*Defect Dojo link:* http://localhost:8080/finding/234
- (234)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ 0.6.0)|http://localhost:8080/finding/253]\n*Defect Dojo link:* http://localhost:8080/finding/253
+ (253)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4255,9 +4255,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4267,12 +4267,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 63abcc9a-dffc-4ece-a76c-e2f9d667fd10
+ - a2cf54fd-6d38-4396-909f-7db3107ac821
Atl-Traceid:
- - 63abcc9adffc4ecea76ce2f9d667fd10
+ - a2cf54fd6d384396909f7db3107ac821
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4282,9 +4282,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:22 GMT
+ - Fri, 16 Jan 2026 20:59:36 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4292,7 +4292,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=353,atl-edge;dur=330,atl-edge-internal;dur=17,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="1pMJWHmN_3EOqCq9a4w_biaZxFl52ZvHu6VAv68O4h2BnwgMs5P2KQ==",cdn-downstream-fbl;dur=357
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=391,atl-edge;dur=302,atl-edge-internal;dur=17,atl-edge-upstream;dur=284,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="QLivOnH6l9jvpvbYPA5Oc9cfweM441saOOsuiFol063mzx7qVxqydQ==",cdn-downstream-fbl;dur=395
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4302,23 +4302,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 94d9d221defc9832eeda31acd3f6f552.cloudfront.net (CloudFront)
+ - 1.1 f0fd475ee39ced21db4c99c5a3fdb1b2.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 1pMJWHmN_3EOqCq9a4w_biaZxFl52ZvHu6VAv68O4h2BnwgMs5P2KQ==
+ - QLivOnH6l9jvpvbYPA5Oc9cfweM441saOOsuiFol063mzx7qVxqydQ==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P1
X-Arequestid:
- - cfccbfc79ed740076668c127d4688744
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '396'
+ - 0c55b39d3a3e7e7a628293789f9c788d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4343,12 +4343,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:22.814+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:37.067+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - eca1e81f-0a94-4a03-b9bd-4a93f6a84b6d
+ - 350e09d4-e859-4352-8896-607296b946c3
Atl-Traceid:
- - eca1e81f0a944a03b9bd4a93f6a84b6d
+ - 350e09d4e85943528896607296b946c3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4358,9 +4358,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:22 GMT
+ - Fri, 16 Jan 2026 20:59:37 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4368,7 +4368,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,atl-edge;dur=170,atl-edge-internal;dur=15,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="jXY1uKBLKaT59_SDOMTLB73M4F2RM4inplIprXEu-_qK2TVwIN-VoA==",cdn-downstream-fbl;dur=197
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=189,atl-edge;dur=167,atl-edge-internal;dur=16,atl-edge-upstream;dur=150,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="W6UODN7K3M8Q-m6ExEGFCY1Jfr7M1lnXcwmYlCe9LztchEdteS52qQ==",cdn-downstream-fbl;dur=194
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4378,23 +4378,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d18c8670421cff5c9fa297b260cb2814.cloudfront.net (CloudFront)
+ - 1.1 a2d53e5681632128f329f3657122d00e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - jXY1uKBLKaT59_SDOMTLB73M4F2RM4inplIprXEu-_qK2TVwIN-VoA==
+ - W6UODN7K3M8Q-m6ExEGFCY1Jfr7M1lnXcwmYlCe9LztchEdteS52qQ==
X-Amz-Cf-Pop:
- DEN53-P2
X-Arequestid:
- - 5f9fc9cf6d353db1070c2ce65d6ee085
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '346'
+ - c076dd082e8930e2d9e53095a1a544e4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '346'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4416,30 +4416,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:19.903+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:33.979+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/234]\n*Defect Dojo link:* http://localhost:8080/finding/234
- (234)\n*Severity:* High\n *Due Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ 0.6.0)|http://localhost:8080/finding/253]\n*Defect Dojo link:* http://localhost:8080/finding/253
+ (253)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4449,9 +4449,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4461,12 +4461,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e29016e5-2b61-4ad7-a841-5c6f1ffa5b88
+ - 35fd86f5-3780-4a10-8208-260057e904a1
Atl-Traceid:
- - e29016e52b614ad7a8415c6f1ffa5b88
+ - 35fd86f537804a108208260057e904a1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4476,9 +4476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:23 GMT
+ - Fri, 16 Jan 2026 20:59:37 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4486,7 +4486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=312,atl-edge;dur=289,atl-edge-internal;dur=16,atl-edge-upstream;dur=273,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="IpfW2dTSUI44CfpFjY1wyc7RmTVxoEJqC6LoedNzO-mwplIp053yaQ==",cdn-downstream-fbl;dur=315
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=299,atl-edge;dur=275,atl-edge-internal;dur=18,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="YRY97yAltTWqSTYGmdToJbKubu9BlKo2yYAyYbCBU0nX7qKdvrZ0EQ==",cdn-downstream-fbl;dur=303
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4496,23 +4496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 51185e40453f61916e037fc6db50766c.cloudfront.net (CloudFront)
+ - 1.1 a08d0c528a82de68a642b3996b12dc5e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IpfW2dTSUI44CfpFjY1wyc7RmTVxoEJqC6LoedNzO-mwplIp053yaQ==
+ - YRY97yAltTWqSTYGmdToJbKubu9BlKo2yYAyYbCBU0nX7qKdvrZ0EQ==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN53-P2
X-Arequestid:
- - d81f8e468ee18767472c4e7e01b201f8
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '395'
+ - 106f520d339072099935342312b6fadc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '395'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4546,9 +4546,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 5f1f2d03-c16d-4955-a9f5-4c05b2bc082c
+ - 249e95ac-0158-407a-95d5-635d85deaf76
Atl-Traceid:
- - 5f1f2d03c16d4955a9f54c05b2bc082c
+ - 249e95ac0158407a95d5635d85deaf76
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4558,9 +4558,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:23 GMT
+ - Fri, 16 Jan 2026 20:59:37 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4568,7 +4568,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=358,atl-edge;dur=335,atl-edge-internal;dur=22,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="sM8fwxHxq_B2PqZMcjrcgbC-5sLYKRyH70Ul5GaznVzvbdt2dz9IcQ==",cdn-downstream-fbl;dur=361
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=384,atl-edge;dur=294,atl-edge-internal;dur=14,atl-edge-upstream;dur=280,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="SxgX8K0zIYdvsg329GbTME-sZBG1rK47IJzSUnf4V4gjXCKmZLaGmA==",cdn-downstream-fbl;dur=388
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4578,26 +4578,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 20c46424adb033d4de178e11a807b304.cloudfront.net (CloudFront)
+ - 1.1 6b1026dc8b63f06fce4b4aec8b9a03d6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sM8fwxHxq_B2PqZMcjrcgbC-5sLYKRyH70Ul5GaznVzvbdt2dz9IcQ==
+ - SxgX8K0zIYdvsg329GbTME-sZBG1rK47IJzSUnf4V4gjXCKmZLaGmA==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P2
X-Arequestid:
- - 804a816c21eaf24300509ecb38dd5507
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - c67ff6857e6e389589b5ccf53d03e5a3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4607,20 +4607,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified and
- Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
- || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4630,9 +4630,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4652,21 +4652,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3567'
+ - '3572'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 5e4a76c4-2c55-4756-87d4-5a8ec9255775
+ - 1156e6b6-3a4c-4b27-bcd8-c238e941e9e5
Atl-Traceid:
- - 5e4a76c42c55475687d45a8ec9255775
+ - 1156e6b63a4c4b27bcd8c238e941e9e5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4674,9 +4674,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:24 GMT
+ - Fri, 16 Jan 2026 20:59:38 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4684,7 +4684,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=686,atl-edge;dur=596,atl-edge-internal;dur=16,atl-edge-upstream;dur=578,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="s55Hg-FMAK2BF6raSImonxHF7Q-u10K4gbf3AIrmmqLoiP57cVpeBw==",cdn-downstream-fbl;dur=691
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=498,atl-edge;dur=474,atl-edge-internal;dur=17,atl-edge-upstream;dur=457,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="WeNdL6BqYdSdQGqyoUZFfeHhoHt6EgF_EhKvJJhlhHvLmGICGy20pw==",cdn-downstream-fbl;dur=501
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4692,23 +4692,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c3ec3fa9c5962899febb10c3fdc31872.cloudfront.net (CloudFront)
+ - 1.1 1023ce3fdfbe06146e0996714c07ebcc.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - s55Hg-FMAK2BF6raSImonxHF7Q-u10K4gbf3AIrmmqLoiP57cVpeBw==
+ - WeNdL6BqYdSdQGqyoUZFfeHhoHt6EgF_EhKvJJhlhHvLmGICGy20pw==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P3
X-Arequestid:
- - 5bebbc7c18cad54fcbfa61b0fdbd2e6c
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 94cd61cfddba8fe8fadc0fcf4b161d2e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4730,30 +4730,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:24.236+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:38.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4763,9 +4763,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4775,12 +4775,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e8dfb429-82a2-4913-9676-ef1e7db01c69
+ - 7eb86608-e661-4401-bc1c-8f1728bc71de
Atl-Traceid:
- - e8dfb42982a249139676ef1e7db01c69
+ - 7eb86608e6614401bc1c8f1728bc71de
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4790,9 +4790,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:24 GMT
+ - Fri, 16 Jan 2026 20:59:38 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4800,7 +4800,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=270,atl-edge;dur=248,atl-edge-internal;dur=16,atl-edge-upstream;dur=232,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="VeqylHLio8CVvKGruHDMtmZCr3l4kgov2bpTNSYfujEf59PJohGSsw==",cdn-downstream-fbl;dur=274
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=283,atl-edge;dur=260,atl-edge-internal;dur=16,atl-edge-upstream;dur=244,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="9xyYsoNA4aBL7N5LsNVxcGOA5LcHC02dfdp4ht7hTf2pA2aq-OzaQw==",cdn-downstream-fbl;dur=287
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4810,23 +4810,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 91ce9b89afcd32f5bca16bfe69ee21c2.cloudfront.net (CloudFront)
+ - 1.1 f0fd475ee39ced21db4c99c5a3fdb1b2.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - VeqylHLio8CVvKGruHDMtmZCr3l4kgov2bpTNSYfujEf59PJohGSsw==
+ - 9xyYsoNA4aBL7N5LsNVxcGOA5LcHC02dfdp4ht7hTf2pA2aq-OzaQw==
X-Amz-Cf-Pop:
- DEN52-P1
X-Arequestid:
- - 76316377dd541fb74e21401d0a8d2bd3
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 3cf75750efc9f46237bcd7b1d7b2dc75
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4851,12 +4851,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:25.203+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:39.241+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 1f4b4c5f-4bcb-4864-a104-5aa50bd85c8c
+ - e03a48b1-8c00-456a-9d71-227c33ca8064
Atl-Traceid:
- - 1f4b4c5f4bcb4864a1045aa50bd85c8c
+ - e03a48b18c00456a9d71227c33ca8064
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4866,9 +4866,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:25 GMT
+ - Fri, 16 Jan 2026 20:59:39 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4876,7 +4876,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=273,atl-edge;dur=183,atl-edge-internal;dur=24,atl-edge-upstream;dur=159,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="fQ4bGgNUnmCBFvheKbWLDsUu5bAKJXPxyMzSK10OAVYU3vjbriNIQg==",cdn-downstream-fbl;dur=277
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=194,atl-edge;dur=171,atl-edge-internal;dur=17,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="-I0LNfM8J3hZU9wIL6FXahq4N4tPrGF3urO9urPkt15XpWv9nD2M2Q==",cdn-downstream-fbl;dur=198
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4886,23 +4886,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 16d72e0791ff01fc4470d27fc024527a.cloudfront.net (CloudFront)
+ - 1.1 badefad2d1fb92bb4620df1ce11d8c92.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - fQ4bGgNUnmCBFvheKbWLDsUu5bAKJXPxyMzSK10OAVYU3vjbriNIQg==
+ - -I0LNfM8J3hZU9wIL6FXahq4N4tPrGF3urO9urPkt15XpWv9nD2M2Q==
X-Amz-Cf-Pop:
- DEN52-P2
X-Arequestid:
- - 02d48cf190374fc86b16af4accf371d7
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - de1163fe5f22020a50cbdf61de427599
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4924,30 +4924,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:24.236+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:38.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4957,9 +4957,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4969,12 +4969,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 701ffec8-07e8-4cc8-beaa-e7589f2d4d84
+ - dac2de37-6573-4752-81ec-f30fe597b582
Atl-Traceid:
- - 701ffec807e84cc8beaae7589f2d4d84
+ - dac2de376573475281ecf30fe597b582
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4984,9 +4984,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:26 GMT
+ - Fri, 16 Jan 2026 20:59:39 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4994,7 +4994,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=756,atl-edge;dur=668,atl-edge-internal;dur=23,atl-edge-upstream;dur=645,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="mIK4SyiIdDVu6RGtG5tCHeQAmcJu0xKZFMg_GJeDO6EtdP5G5CHN4g==",cdn-downstream-fbl;dur=761
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=260,atl-edge;dur=237,atl-edge-internal;dur=16,atl-edge-upstream;dur=221,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="053WxZGW4Hql0ZwFQq9An0hu5XznNJIn8w0n7_0LFCVO67S5E9RiDg==",cdn-downstream-fbl;dur=264
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5004,23 +5004,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 cb4937748c19bcccb40a5a5875f01552.cloudfront.net (CloudFront)
+ - 1.1 53adc26e8b32faa60084ec86ec1e916e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - mIK4SyiIdDVu6RGtG5tCHeQAmcJu0xKZFMg_GJeDO6EtdP5G5CHN4g==
+ - 053WxZGW4Hql0ZwFQq9An0hu5XznNJIn8w0n7_0LFCVO67S5E9RiDg==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P3
X-Arequestid:
- - 46b14ce616c15f26c99f15f0242f139c
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - da42c9d501b2cf4991d1380608e526af
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5054,9 +5054,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 91123068-c739-49f8-9735-4d8165d59ba2
+ - b3b65cff-becd-4309-acda-59aa080af092
Atl-Traceid:
- - 91123068c73949f897354d8165d59ba2
+ - b3b65cffbecd4309acda59aa080af092
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5066,9 +5066,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:26 GMT
+ - Fri, 16 Jan 2026 20:59:40 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5076,7 +5076,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=485,atl-edge;dur=396,atl-edge-internal;dur=20,atl-edge-upstream;dur=372,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="AqvsB_y8_rvzry1Pzab-nQYaNJe4pKSotehyV8aHE6qs8lQ9BvMbFw==",cdn-downstream-fbl;dur=488
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=332,atl-edge;dur=309,atl-edge-internal;dur=16,atl-edge-upstream;dur=290,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="LbE7_4rNArpUR7uJ7xpci0G2W60-U3QFxhaOIGax7Sfjr1rR-zls8A==",cdn-downstream-fbl;dur=336
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5086,26 +5086,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 64544648f8289d0bd61ef02997afb698.cloudfront.net (CloudFront)
+ - 1.1 77dfdef79344c95f75de8512042d4bac.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - AqvsB_y8_rvzry1Pzab-nQYaNJe4pKSotehyV8aHE6qs8lQ9BvMbFw==
+ - LbE7_4rNArpUR7uJ7xpci0G2W60-U3QFxhaOIGax7Sfjr1rR-zls8A==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - 73c1cc123a70221112e623f422cf6a61
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 3b191e72d28d626a79fbc877f711b135
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5115,20 +5115,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
High *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5138,9 +5138,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5160,21 +5160,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3572'
+ - '3575'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 6c0835c8-c46a-47af-b2d1-529803d3187e
+ - 8188538d-a629-4739-a949-8afcb7832fe5
Atl-Traceid:
- - 6c0835c8c46a47afb2d1529803d3187e
+ - 8188538da6294739a9498afcb7832fe5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5182,9 +5182,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:27 GMT
+ - Fri, 16 Jan 2026 20:59:40 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5192,7 +5192,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=655,atl-edge;dur=631,atl-edge-internal;dur=15,atl-edge-upstream;dur=616,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="M8BsbPNg6JPvGWu1PlT0Pyv6lVgFrE9URhwnN215kPDxeDUhmL4KDA==",cdn-downstream-fbl;dur=659
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=571,atl-edge;dur=547,atl-edge-internal;dur=16,atl-edge-upstream;dur=530,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="n5X200OcMkWPB1XbpGsEXyYFeSCIjaLM1FiC3-nAmUXLAM7leGuKdw==",cdn-downstream-fbl;dur=576
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5200,23 +5200,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 db94b8e3e5f45aab1e90db086a8debc0.cloudfront.net (CloudFront)
+ - 1.1 acc243f78de7eeb0f922e11bff25a22a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - M8BsbPNg6JPvGWu1PlT0Pyv6lVgFrE9URhwnN215kPDxeDUhmL4KDA==
+ - n5X200OcMkWPB1XbpGsEXyYFeSCIjaLM1FiC3-nAmUXLAM7leGuKdw==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P2
X-Arequestid:
- - f90b26e068979b5ae9420c34a55ad1d0
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - fd794b3435e68a9e996021118e104498
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5238,30 +5238,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:05.858+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:19.945+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:27.082+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:40.525+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
High *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5271,9 +5271,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5283,12 +5283,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4eae537c-d355-44a8-8f77-be67905c5cf4
+ - f73c7276-77b3-43ea-af57-8fe090984df5
Atl-Traceid:
- - 4eae537cd35544a88f77be67905c5cf4
+ - f73c727677b343eaaf578fe090984df5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5298,9 +5298,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:27 GMT
+ - Fri, 16 Jan 2026 20:59:41 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5308,7 +5308,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=340,atl-edge;dur=317,atl-edge-internal;dur=16,atl-edge-upstream;dur=301,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="NPfl8EGZ9a4ePeNO1bYPwYn4tU5OA3NXHpVl7w9WDJvJaHGH_OnJKQ==",cdn-downstream-fbl;dur=344
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=333,atl-edge;dur=243,atl-edge-internal;dur=17,atl-edge-upstream;dur=226,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="e74LmbyzinEGrovFX493OiK2M1rwwyGjc5NmEJva9oLyjHHEkzBYmw==",cdn-downstream-fbl;dur=336
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5318,23 +5318,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f0a2a95cb4d25b2414a9c1a7a754943e.cloudfront.net (CloudFront)
+ - 1.1 94d9d221defc9832eeda31acd3f6f552.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - NPfl8EGZ9a4ePeNO1bYPwYn4tU5OA3NXHpVl7w9WDJvJaHGH_OnJKQ==
+ - e74LmbyzinEGrovFX493OiK2M1rwwyGjc5NmEJva9oLyjHHEkzBYmw==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN53-P1
X-Arequestid:
- - 4b013436975334dac71b5a4a95663298
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - dd266adb10fe00adcc994cc37796c5df
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5358,15 +5358,15 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: POST
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/transitions
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/transitions
response:
body:
string: ''
headers:
Atl-Request-Id:
- - e318c0b2-404d-418a-ad27-51c03002fc80
+ - bd62a3d0-3135-47d6-8cf1-d2fb2e3a36c1
Atl-Traceid:
- - e318c0b2404d418aad2751c03002fc80
+ - bd62a3d0313547d68cf1d2fb2e3a36c1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5374,9 +5374,9 @@ interactions:
Content-Type:
- text/html;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:28 GMT
+ - Fri, 16 Jan 2026 20:59:41 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5384,7 +5384,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=699,atl-edge;dur=675,atl-edge-internal;dur=18,atl-edge-upstream;dur=658,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="IR71YWtovfyr_it1N_h3rU9HL4Zc7X63-R6GTE6z5da29SvZGcvxNw==",cdn-downstream-fbl;dur=702
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=500,atl-edge;dur=477,atl-edge-internal;dur=17,atl-edge-upstream;dur=460,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="l7Dk4xmLKw_TkeegIXxjE4oxjftSYbLZFDMblaVcHG0CvsZodMaSkg==",cdn-downstream-fbl;dur=504
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5392,23 +5392,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b5a2e617d7392a245dec0250ae9c6002.cloudfront.net (CloudFront)
+ - 1.1 25c0c572fef0588285c0d89bc75071be.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IR71YWtovfyr_it1N_h3rU9HL4Zc7X63-R6GTE6z5da29SvZGcvxNw==
+ - l7Dk4xmLKw_TkeegIXxjE4oxjftSYbLZFDMblaVcHG0CvsZodMaSkg==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN53-P2
X-Arequestid:
- - c29c3ac0da5eb8b4309793ef9f63c36f
- X-Beta-Ratelimit-Limit:
- - '200'
- X-Beta-Ratelimit-Remaining:
- - '199'
+ - fc147af766674a973f641426b772d3c1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '198'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5433,12 +5433,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:28.855+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:41.931+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 76b4e1d5-a31b-464c-94ae-60353561bde4
+ - 1a1353c7-082b-473d-a58d-4fcf3da2b2e8
Atl-Traceid:
- - 76b4e1d5a31b464c94ae60353561bde4
+ - 1a1353c7082b473da58d4fcf3da2b2e8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5448,9 +5448,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:28 GMT
+ - Fri, 16 Jan 2026 20:59:41 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5458,7 +5458,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=266,atl-edge;dur=176,atl-edge-internal;dur=23,atl-edge-upstream;dur=153,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="0cHjzpUYaf1RmN2UfXsV1qVWcpC3AqAQKLWo1i4UwGXp8DzStFIOaA==",cdn-downstream-fbl;dur=269
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=185,atl-edge;dur=162,atl-edge-internal;dur=14,atl-edge-upstream;dur=148,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="8X-thjkcZ80dP3wNQ4LLKala1B0E5EHVqT_Jo2gPUsHA2ODM6Jrqcw==",cdn-downstream-fbl;dur=189
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5468,23 +5468,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 99f4e9fd554682341f34ffd484d44998.cloudfront.net (CloudFront)
+ - 1.1 fdb71c154448c5637ac452d623bb2ad6.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0cHjzpUYaf1RmN2UfXsV1qVWcpC3AqAQKLWo1i4UwGXp8DzStFIOaA==
+ - 8X-thjkcZ80dP3wNQ4LLKala1B0E5EHVqT_Jo2gPUsHA2ODM6Jrqcw==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P3
X-Arequestid:
- - 69984953ed411b7b0aa2ea595befc83f
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 364adef3d480b348760a214f9fb2e2cd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5506,29 +5506,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:28.160+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:41.457+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
High *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5538,9 +5538,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5550,12 +5550,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 85062ccd-d61a-4d7a-8136-14e7e49c427c
+ - 69b31509-4359-42d5-ba58-9bca3a825a57
Atl-Traceid:
- - 85062ccdd61a4d7a813614e7e49c427c
+ - 69b31509435942d5ba589bca3a825a57
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5565,9 +5565,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:29 GMT
+ - Fri, 16 Jan 2026 20:59:42 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5575,7 +5575,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=430,atl-edge;dur=339,atl-edge-internal;dur=20,atl-edge-upstream;dur=317,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="P_u679crHqEzpRwu3Z6uz8bDrSJgqFr9HjFTKAHrYfeIP9wFw74aIA==",cdn-downstream-fbl;dur=433
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=17,atl-edge-upstream;dur=239,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="AAB4hxPN1L2wmFrZQqVuAltrhpvly5iAqMbuK50_RqRS7UJZzF_eBg==",cdn-downstream-fbl;dur=284
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5585,23 +5585,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f0ef5666a43050928ff9758d51713e72.cloudfront.net (CloudFront)
+ - 1.1 d898fedd2c97412525c0a8011787cf32.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - P_u679crHqEzpRwu3Z6uz8bDrSJgqFr9HjFTKAHrYfeIP9wFw74aIA==
+ - AAB4hxPN1L2wmFrZQqVuAltrhpvly5iAqMbuK50_RqRS7UJZzF_eBg==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P2
X-Arequestid:
- - ddfeb3714c3598a803d35afe890aa0f2
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 5fc5c0ae507d8383d2252e3809813572
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5626,12 +5626,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:29.670+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:42.756+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 0ea5aafc-2b64-46e2-a588-b4d7d70bd5a5
+ - 4548be11-dd36-48ca-b7b4-a22d598e675e
Atl-Traceid:
- - 0ea5aafc2b6446e2a588b4d7d70bd5a5
+ - 4548be11dd3648cab7b4a22d598e675e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5641,9 +5641,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:29 GMT
+ - Fri, 16 Jan 2026 20:59:42 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5651,7 +5651,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=198,atl-edge;dur=175,atl-edge-internal;dur=14,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="hm1eeI7e3RynwJYjjKvAf5FCmMsa5OWana5C6u_NXxV_jp2OpjPekA==",cdn-downstream-fbl;dur=201
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=419,atl-edge;dur=395,atl-edge-internal;dur=15,atl-edge-upstream;dur=380,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="W_zxqYB82dURg-DhTsL8yODtYoD4waZTF704cVe0DzWBFgEMP4VOrQ==",cdn-downstream-fbl;dur=422
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5661,23 +5661,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 da745b01c27611dac38d175371cb7b54.cloudfront.net (CloudFront)
+ - 1.1 ae2999d214179b68f3cdd080c9f4c304.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hm1eeI7e3RynwJYjjKvAf5FCmMsa5OWana5C6u_NXxV_jp2OpjPekA==
+ - W_zxqYB82dURg-DhTsL8yODtYoD4waZTF704cVe0DzWBFgEMP4VOrQ==
X-Amz-Cf-Pop:
- DEN53-P2
X-Arequestid:
- - 3ed200499a43fc519641aa2dd72fbaf2
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - 1a7938980b1831bdb9cecfe6723cb99e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5699,29 +5699,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:28.160+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:41.457+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
High *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5731,9 +5731,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5743,12 +5743,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 2ed7b440-b994-467f-9323-aa4bcad1e65e
+ - afb517fe-6de7-40f8-b0d3-bef0fffda66f
Atl-Traceid:
- - 2ed7b440b994467f9323aa4bcad1e65e
+ - afb517fe6de740f8b0d3bef0fffda66f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5758,9 +5758,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:30 GMT
+ - Fri, 16 Jan 2026 20:59:43 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5768,7 +5768,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=308,atl-edge;dur=283,atl-edge-internal;dur=17,atl-edge-upstream;dur=267,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Qy8aJ2Wbzi0R46MhwPjsDT0vqRGdejoHowouTYwUanEJ7Fi4NoPpkQ==",cdn-downstream-fbl;dur=312
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=492,atl-edge;dur=469,atl-edge-internal;dur=15,atl-edge-upstream;dur=454,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="KGYF4jiEPPCPMqqRnpHAzYHXO9MN__n6SUYgWWwgtbF4PDykerBK-w==",cdn-downstream-fbl;dur=496
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5778,23 +5778,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1a5bcf25cf6144683736a6579a7fb98e.cloudfront.net (CloudFront)
+ - 1.1 37a4ef6008154b58024bba8916008f66.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Qy8aJ2Wbzi0R46MhwPjsDT0vqRGdejoHowouTYwUanEJ7Fi4NoPpkQ==
+ - KGYF4jiEPPCPMqqRnpHAzYHXO9MN__n6SUYgWWwgtbF4PDykerBK-w==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P3
X-Arequestid:
- - bcdd2be845605b1af6e83a93d85706d1
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 173ffa018e400a8c3bcab3d2b44a1123
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5819,12 +5819,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:30.412+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:43.618+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - dc8a785e-7f1a-4ed3-8f3b-a44e6cc0d9f0
+ - 97a55613-a9c8-4107-9cd1-fe3879d781f3
Atl-Traceid:
- - dc8a785e7f1a4ed38f3ba44e6cc0d9f0
+ - 97a55613a9c841079cd1fe3879d781f3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5834,9 +5834,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:30 GMT
+ - Fri, 16 Jan 2026 20:59:43 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5844,7 +5844,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=189,atl-edge;dur=167,atl-edge-internal;dur=14,atl-edge-upstream;dur=153,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="hXD5-bcewdUjjXxgpMsngfnZa31qeEQo8u7qeeI4cawgXXo5_kGFCA==",cdn-downstream-fbl;dur=193
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=186,atl-edge;dur=162,atl-edge-internal;dur=16,atl-edge-upstream;dur=146,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="HgZc5VRmiX1atkkX7uuzx8rCJJIb5DiwD_zQW6mDzpCizeu8dg-5AA==",cdn-downstream-fbl;dur=189
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5854,23 +5854,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9379390e7d447e1d911f7741c8ae2f24.cloudfront.net (CloudFront)
+ - 1.1 cef95c13f18c85adb4a10ae72f19bf38.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hXD5-bcewdUjjXxgpMsngfnZa31qeEQo8u7qeeI4cawgXXo5_kGFCA==
+ - HgZc5VRmiX1atkkX7uuzx8rCJJIb5DiwD_zQW6mDzpCizeu8dg-5AA==
X-Amz-Cf-Pop:
- DEN52-P1
X-Arequestid:
- - 4c87fd04b308864ca1f62aab6b4ca418
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '347'
+ - 8c22bbf3c045f24de1662abf8842e879
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5892,29 +5892,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:28.160+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:41.457+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
High *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|High|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Inactive,
Verified, Mitigated|\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5924,9 +5924,9 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5936,12 +5936,12 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ef4afb82-570f-4e40-907f-d3e3f4ac01f8
+ - ca19d555-cac6-455c-8601-df4c5a48d64f
Atl-Traceid:
- - ef4afb82570f4e40907fd3e3f4ac01f8
+ - ca19d555cac6455c8601df4c5a48d64f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5951,9 +5951,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:30 GMT
+ - Fri, 16 Jan 2026 20:59:44 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5961,7 +5961,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=298,atl-edge;dur=275,atl-edge-internal;dur=16,atl-edge-upstream;dur=259,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Eey6fhnPCtbAksd0SHoiuMOPIrIJZ3QvuTZf_kaCxf81JCuIu6bDRg==",cdn-downstream-fbl;dur=301
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=15,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="-g6iisJEhxsQpnlHs1mZ7w8rvL_ekjic-F8NIsYeU1tlSdudjvWj7Q==",cdn-downstream-fbl;dur=284
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5971,23 +5971,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 db28001b9bfb563d1bfcaccd38c4436a.cloudfront.net (CloudFront)
+ - 1.1 e9b2affad5fcea678c9381d59c2d8e5c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Eey6fhnPCtbAksd0SHoiuMOPIrIJZ3QvuTZf_kaCxf81JCuIu6bDRg==
+ - -g6iisJEhxsQpnlHs1mZ7w8rvL_ekjic-F8NIsYeU1tlSdudjvWj7Q==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P3
X-Arequestid:
- - 4a65143fd32e1fb94325d3d02b65f1b3
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - 536e36ff6914ae81147ecc2ecfbeb806
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6021,9 +6021,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 26d68e00-fc97-4615-8c36-35fc6eb20bd4
+ - 0b81d7fe-f61f-4b6a-8b03-61f3c63cb224
Atl-Traceid:
- - 26d68e00fc9746158c3635fc6eb20bd4
+ - 0b81d7fef61f4b6a8b0361f3c63cb224
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6033,9 +6033,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:31 GMT
+ - Fri, 16 Jan 2026 20:59:44 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6043,7 +6043,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=367,atl-edge;dur=342,atl-edge-internal;dur=19,atl-edge-upstream;dur=324,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="qqGsJCw07be3XxAxHmleKdXeyaaYfHzftA96yWBHzgeefUuQlTO9EQ==",cdn-downstream-fbl;dur=371
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=316,atl-edge;dur=293,atl-edge-internal;dur=17,atl-edge-upstream;dur=276,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="_WNGgn7pZWqAiOFevXumXARQW2syLxQ6cG3RNx2LTATAdB3yX_yi6g==",cdn-downstream-fbl;dur=320
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6053,26 +6053,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 272eaf2883bb602816447bd7132021d2.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - qqGsJCw07be3XxAxHmleKdXeyaaYfHzftA96yWBHzgeefUuQlTO9EQ==
+ - _WNGgn7pZWqAiOFevXumXARQW2syLxQ6cG3RNx2LTATAdB3yX_yi6g==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P3
X-Arequestid:
- - b59f40b78e4805b78dc498f71f2d354a
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 8939d7241906f242cd3b5c3299973276
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6082,20 +6082,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
Medium *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6105,8 +6105,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n *CWE:*
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n *CWE:*
[CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6126,21 +6126,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3535'
+ - '3537'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 13a948f5-f71b-4862-9552-c33a25c0439a
+ - cde2a2b2-3444-41f0-a639-08a98e57b851
Atl-Traceid:
- - 13a948f5f71b48629552c33a25c0439a
+ - cde2a2b2344441f0a63908a98e57b851
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6148,9 +6148,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:32 GMT
+ - Fri, 16 Jan 2026 20:59:45 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6158,7 +6158,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=560,atl-edge;dur=536,atl-edge-internal;dur=17,atl-edge-upstream;dur=520,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="G_nlrRB-sJiE1FRGZKzb9-SDjnLhxEHBZGxZThGVXO5FwA9YXoy_Ow==",cdn-downstream-fbl;dur=565
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=563,atl-edge;dur=539,atl-edge-internal;dur=14,atl-edge-upstream;dur=525,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="ePE0tHaM40pYwwbbUegvPkaB6xotMv6xa5S56qz-fOp5pT96QVDw1w==",cdn-downstream-fbl;dur=570
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6166,23 +6166,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9062d4391fad2aec3a7d6f3edcebc662.cloudfront.net (CloudFront)
+ - 1.1 81677ea21ca4917e071a8c310dd9130c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - G_nlrRB-sJiE1FRGZKzb9-SDjnLhxEHBZGxZThGVXO5FwA9YXoy_Ow==
+ - ePE0tHaM40pYwwbbUegvPkaB6xotMv6xa5S56qz-fOp5pT96QVDw1w==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P3
X-Arequestid:
- - f3a36fc91e1f81cbe921f0cbd84eaf37
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 191d0b92a5151b615794e9ff7c78ec69
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6204,29 +6204,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:31.787+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:44.774+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
Medium *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6236,8 +6236,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -6248,12 +6248,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 0c38a635-3b3e-4910-9c5d-2f6a1c4cc2a3
+ - 0d31aa83-fc07-4324-95d2-14369ae8d3c4
Atl-Traceid:
- - 0c38a6353b3e49109c5d2f6a1c4cc2a3
+ - 0d31aa83fc07432495d214369ae8d3c4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6263,9 +6263,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:32 GMT
+ - Fri, 16 Jan 2026 20:59:45 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6273,7 +6273,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=259,atl-edge;dur=236,atl-edge-internal;dur=16,atl-edge-upstream;dur=220,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="Xiw3f1mCwgx6460JhWRmS5qzMM_ICjpNWNWUnO1U3a52_vIGhNlNLQ==",cdn-downstream-fbl;dur=263
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=251,atl-edge;dur=229,atl-edge-internal;dur=16,atl-edge-upstream;dur=212,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="wtdVFghlvK_5LiQyEam3x-qVwjDwbYdkAerRAnGlYh-qa-XQ0uZ-7w==",cdn-downstream-fbl;dur=256
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6283,23 +6283,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 98d9402866aa771c6e6bbecb98c200aa.cloudfront.net (CloudFront)
+ - 1.1 0e87c7138186d05e35dac8a520dc0682.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Xiw3f1mCwgx6460JhWRmS5qzMM_ICjpNWNWUnO1U3a52_vIGhNlNLQ==
+ - wtdVFghlvK_5LiQyEam3x-qVwjDwbYdkAerRAnGlYh-qa-XQ0uZ-7w==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P1
X-Arequestid:
- - a3a53d0a7e425f419a7174ea00993c37
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 347b6bc9a0c19632a3230dfd4f21135a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6324,12 +6324,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:32.594+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:45.641+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - f896cac3-c253-4eff-a552-e3465f3b8464
+ - e0f8c082-15f0-40f6-a809-2d37f903f3e4
Atl-Traceid:
- - f896cac3c2534effa552e3465f3b8464
+ - e0f8c08215f040f6a8092d37f903f3e4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6339,9 +6339,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:32 GMT
+ - Fri, 16 Jan 2026 20:59:45 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6349,7 +6349,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=202,atl-edge;dur=177,atl-edge-internal;dur=19,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="W5cGxk-h4odaQxyMDqhKlF9wwqCPm0MV9su9qQjvj4zbL5imSb7j0w==",cdn-downstream-fbl;dur=205
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=252,atl-edge;dur=161,atl-edge-internal;dur=12,atl-edge-upstream;dur=148,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="G8Ff6Y4sNcEfaoTjE3Y9-W6b2qYdtM7w3jfBIKyDfTIdFc8ZDfLmvg==",cdn-downstream-fbl;dur=257
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6359,23 +6359,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d18c8670421cff5c9fa297b260cb2814.cloudfront.net (CloudFront)
+ - 1.1 a0b647da77edd97cca88fb4c4b1a9d08.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - W5cGxk-h4odaQxyMDqhKlF9wwqCPm0MV9su9qQjvj4zbL5imSb7j0w==
+ - G8Ff6Y4sNcEfaoTjE3Y9-W6b2qYdtM7w3jfBIKyDfTIdFc8ZDfLmvg==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN52-P3
X-Arequestid:
- - 6863671811f04aede958d531f927fc9b
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - f1922751a7ea489471d78470ea7090f9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6397,29 +6397,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:31.787+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:44.774+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
Medium *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6429,8 +6429,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -6441,12 +6441,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 1568bced-3eeb-443f-abf4-67c78967c96f
+ - e6afa43b-543c-4066-9570-06d73f7ca391
Atl-Traceid:
- - 1568bced3eeb443fabf467c78967c96f
+ - e6afa43b543c4066957006d73f7ca391
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6456,9 +6456,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:33 GMT
+ - Fri, 16 Jan 2026 20:59:46 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6466,7 +6466,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=308,atl-edge;dur=285,atl-edge-internal;dur=18,atl-edge-upstream;dur=267,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Zmh-PTuHoi8Wz9yaxe3JQqsS1gucXJ0zR_BNggfl_y04kQ737GiKwg==",cdn-downstream-fbl;dur=312
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=299,atl-edge;dur=276,atl-edge-internal;dur=16,atl-edge-upstream;dur=260,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="ryLWBKrhmX7s9pI2xJB9JsXBhg3j_1avIZBFPmABequCZvVzyebMHg==",cdn-downstream-fbl;dur=303
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6476,23 +6476,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 86b6aab4b36e97123c5f76cc2e3ac8ec.cloudfront.net (CloudFront)
+ - 1.1 ffbfc85d825a264940b73c5e04566ff4.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Zmh-PTuHoi8Wz9yaxe3JQqsS1gucXJ0zR_BNggfl_y04kQ737GiKwg==
+ - ryLWBKrhmX7s9pI2xJB9JsXBhg3j_1avIZBFPmABequCZvVzyebMHg==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P3
X-Arequestid:
- - 1574c10e7f6fb37c538e545415c4bdd8
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - feea6e83a78bdc0c5e837310c66334bc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6517,12 +6517,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:33.308+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:46.259+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 295e2098-a67e-4e03-844a-fc073a9000a4
+ - 69d65108-1d23-4173-b9af-cead55eebbe0
Atl-Traceid:
- - 295e2098a67e4e03844afc073a9000a4
+ - 69d651081d234173b9afcead55eebbe0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6532,9 +6532,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:33 GMT
+ - Fri, 16 Jan 2026 20:59:46 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6542,7 +6542,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=21,cdn-upstream-fbl;dur=268,atl-edge;dur=180,atl-edge-internal;dur=18,atl-edge-upstream;dur=159,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="5w4SsVzYCnEby_tzpIqXDOGfyOAiKRC2lRTWddWsv6lduT-A9No-PA==",cdn-downstream-fbl;dur=272
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,atl-edge;dur=169,atl-edge-internal;dur=14,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="UcaoHL6EpfrQskLjV8MlBrMh4U6IN-ViRRQxqiCFfO4kc_57k_huVg==",cdn-downstream-fbl;dur=197
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6552,23 +6552,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9d0c0f607ed2753212b70ce75683881e.cloudfront.net (CloudFront)
+ - 1.1 94d9d221defc9832eeda31acd3f6f552.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5w4SsVzYCnEby_tzpIqXDOGfyOAiKRC2lRTWddWsv6lduT-A9No-PA==
+ - UcaoHL6EpfrQskLjV8MlBrMh4U6IN-ViRRQxqiCFfO4kc_57k_huVg==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN53-P1
X-Arequestid:
- - 9f8a86f14c9aab40078ee3ccc6b383bc
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - 08afd145adc7937e983efc611d05f0a3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6590,29 +6590,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:31.787+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:44.774+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
Medium *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6622,8 +6622,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -6634,12 +6634,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 32e21ec6-d322-48c1-9104-6a4b55975dc7
+ - b1ac3eb4-06e2-40af-bff7-10390174bcf5
Atl-Traceid:
- - 32e21ec6d32248c191046a4b55975dc7
+ - b1ac3eb406e240afbff710390174bcf5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6649,9 +6649,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:33 GMT
+ - Fri, 16 Jan 2026 20:59:46 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6659,7 +6659,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=310,atl-edge;dur=287,atl-edge-internal;dur=17,atl-edge-upstream;dur=270,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="S8JDi7gASAqQRgM9mClF2vcbWBlgDmU43jXkmvp6E3qqrfF9OUWEqg==",cdn-downstream-fbl;dur=314
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=342,atl-edge;dur=253,atl-edge-internal;dur=16,atl-edge-upstream;dur=237,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="DcU6lk2nJsyrfdHu0810ycntsC94k2R8WH1EtfFTYL4cg1N53Kj71g==",cdn-downstream-fbl;dur=347
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6669,23 +6669,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 057707d7f80ca305efe5fad72e15b94c.cloudfront.net (CloudFront)
+ - 1.1 7415745dbfe9603bd58616b0c7789f90.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - S8JDi7gASAqQRgM9mClF2vcbWBlgDmU43jXkmvp6E3qqrfF9OUWEqg==
+ - DcU6lk2nJsyrfdHu0810ycntsC94k2R8WH1EtfFTYL4cg1N53Kj71g==
X-Amz-Cf-Pop:
- DEN53-P3
X-Arequestid:
- - c7eacd26c03d831698066a736bce84b1
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - 1d65a8c134b9f2050c958a8234d7ebd8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6710,12 +6710,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:34.077+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:46.997+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 06dbdc39-0311-47f8-b906-d9fd82535f8d
+ - a2fb2ac1-cf2d-4b14-9d20-082e2d97ed26
Atl-Traceid:
- - 06dbdc39031147f8b906d9fd82535f8d
+ - a2fb2ac1cf2d4b149d20082e2d97ed26
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6725,9 +6725,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:34 GMT
+ - Fri, 16 Jan 2026 20:59:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6735,7 +6735,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=202,atl-edge;dur=179,atl-edge-internal;dur=16,atl-edge-upstream;dur=164,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="GOYaMNJjoXVZli20mbVW0g3t8lc73E_GRlEF9aQQBl__IfezzmDZ0A==",cdn-downstream-fbl;dur=207
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=192,atl-edge;dur=169,atl-edge-internal;dur=12,atl-edge-upstream;dur=157,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Mq3PonejB3kmSBa5_h6YxVJuIkDzylBP9S1Mslw2MBdTCZf1gq-xVA==",cdn-downstream-fbl;dur=196
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6745,23 +6745,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b1a94c3ca6429736112e2213a359c78a.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - GOYaMNJjoXVZli20mbVW0g3t8lc73E_GRlEF9aQQBl__IfezzmDZ0A==
+ - Mq3PonejB3kmSBa5_h6YxVJuIkDzylBP9S1Mslw2MBdTCZf1gq-xVA==
X-Amz-Cf-Pop:
- DEN53-P3
X-Arequestid:
- - 166986c9991bdf435aff80675b7f872b
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '347'
+ - bc61a07b5cdbbe7c342bc54751badfd4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6783,29 +6783,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:31.787+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:44.774+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
Medium *Due Date:* None \n\nFindings matching the Active, Verified and Severity
criteria:\n|| Severity || CVE || CWE || Component || Version || Title || Status
||\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Inactive,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Inactive,
Verified, Mitigated|\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6815,8 +6815,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -6827,12 +6827,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 28b2cda1-0c97-4c69-80ca-3a86d6495f8b
+ - d95f0a70-821b-4285-af32-0d4c33949cf7
Atl-Traceid:
- - 28b2cda10c974c6980ca3a86d6495f8b
+ - d95f0a70821b4285af320d4c33949cf7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6842,9 +6842,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:34 GMT
+ - Fri, 16 Jan 2026 20:59:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6852,7 +6852,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=281,atl-edge;dur=258,atl-edge-internal;dur=16,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="30aCFrMyTvzA6QXBfYx1ZW4LjaiDACISKsHmdH3EGQRcsP7SHVqevg==",cdn-downstream-fbl;dur=285
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=298,atl-edge-internal;dur=15,atl-edge-upstream;dur=282,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="NTU1zOIIZnrQlD6n828mFdTsJvc0J-_qPNy2qlKS8kI1DLX8qRifIg==",cdn-downstream-fbl;dur=325
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6862,23 +6862,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b1a94c3ca6429736112e2213a359c78a.cloudfront.net (CloudFront)
+ - 1.1 53adc26e8b32faa60084ec86ec1e916e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 30aCFrMyTvzA6QXBfYx1ZW4LjaiDACISKsHmdH3EGQRcsP7SHVqevg==
+ - NTU1zOIIZnrQlD6n828mFdTsJvc0J-_qPNy2qlKS8kI1DLX8qRifIg==
X-Amz-Cf-Pop:
- DEN53-P3
X-Arequestid:
- - 8d37bcebb95e3160bd9dae0333c3900b
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '396'
+ - df44279ada33a7b9bb2221d9769b62ef
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6912,9 +6912,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 5cb85511-2e94-43ba-bc7e-cb4c1c56d866
+ - 650df602-9858-45d4-9a01-e27a98ba5ba5
Atl-Traceid:
- - 5cb855112e9443babc7ecb4c1c56d866
+ - 650df602985845d49a01e27a98ba5ba5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -6924,9 +6924,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:34 GMT
+ - Fri, 16 Jan 2026 20:59:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -6934,7 +6934,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=300,atl-edge-internal;dur=16,atl-edge-upstream;dur=283,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="UTnXXrNGyq-Ixf3YtPiPvKLHb172wh3ukKpTHeJ5P0ctQRjI4F7gPg==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=369,atl-edge;dur=281,atl-edge-internal;dur=17,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="taQtY3LoZvRgJSnja7GgBWmhJZRgF-2KzYwh68wLyfG9G7WQRFWqNw==",cdn-downstream-fbl;dur=373
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -6944,26 +6944,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
+ - 1.1 ebee7985d4830e80d4035a7dc7425a68.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UTnXXrNGyq-Ixf3YtPiPvKLHb172wh3ukKpTHeJ5P0ctQRjI4F7gPg==
+ - taQtY3LoZvRgJSnja7GgBWmhJZRgF-2KzYwh68wLyfG9G7WQRFWqNw==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - a069f61a8ac5604f7792c5ba426a342f
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 4b97f384a569587badfd4b6ba8131fc8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -6973,20 +6973,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -6996,8 +6996,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n *CWE:*
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n *CWE:*
[CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -7017,21 +7017,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3530'
+ - '3534'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - ac6e0b47-49a9-46db-a88c-1c9b8c8714b2
+ - c3861860-d677-4df4-a08c-bf5b88eae28f
Atl-Traceid:
- - ac6e0b4749a946dba88c1c9b8c8714b2
+ - c3861860d6774df4a08cbf5b88eae28f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7039,9 +7039,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:35 GMT
+ - Fri, 16 Jan 2026 20:59:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7049,7 +7049,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=779,atl-edge;dur=755,atl-edge-internal;dur=18,atl-edge-upstream;dur=737,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="irL834izS-OYI0_8uL515V7w_BLDXG2LymmClVTiSFH2U5AC3jZx1w==",cdn-downstream-fbl;dur=784
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=592,atl-edge;dur=567,atl-edge-internal;dur=15,atl-edge-upstream;dur=552,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="IYd32HJdiBVbwHVyC20IbyFbKU33cKVM3SuR9w_mpuNQTR17Tx_FOA==",cdn-downstream-fbl;dur=596
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7057,23 +7057,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a7c0ba01db75946f7df3f7eaf69984b6.cloudfront.net (CloudFront)
+ - 1.1 16d72e0791ff01fc4470d27fc024527a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - irL834izS-OYI0_8uL515V7w_BLDXG2LymmClVTiSFH2U5AC3jZx1w==
+ - IYd32HJdiBVbwHVyC20IbyFbKU33cKVM3SuR9w_mpuNQTR17Tx_FOA==
X-Amz-Cf-Pop:
- DEN52-P2
X-Arequestid:
- - 0b99efe7925c20669d0dde45dd27eef4
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 9d2195700058a8454014aed26e6b6241
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7095,29 +7095,29 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:28.161+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:41.457+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"},"resolution":{"self":"https://defectdojo.atlassian.net/rest/api/2/resolution/10000","id":"10000","description":"Work
has been completed on this issue.","name":"Done"},"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10002","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Done","id":"10002","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/3","id":3,"key":"done","colorName":"green","name":"Done"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2025-11-04T19:02:28.127+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_22594_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:35.656+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":"2026-01-16T21:59:41.445+0100","workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":"10000_*:*_1_*:*_21784_*|*_10002_*:*_1_*:*_0","customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:48.270+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -7127,8 +7127,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -7139,12 +7139,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c4cee2ba-8ec5-4981-82db-dbff0edc2657
+ - fca1a218-d025-4d3d-85a7-74f5ae58ff30
Atl-Traceid:
- - c4cee2ba8ec5498182dbdbff0edc2657
+ - fca1a218d0254d3d85a774f5ae58ff30
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7154,9 +7154,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:36 GMT
+ - Fri, 16 Jan 2026 20:59:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7164,7 +7164,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=272,atl-edge;dur=249,atl-edge-internal;dur=17,atl-edge-upstream;dur=232,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="IEFnfQxZL_y0ZHrTyPdPAyUstPTMb7PdW8rqvbT45w0xgF-EB11lPQ==",cdn-downstream-fbl;dur=276
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=278,atl-edge;dur=256,atl-edge-internal;dur=18,atl-edge-upstream;dur=238,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="ahA_ABB5HTuGyfMj38BEw5UsZSHy5QtBzgB0gLe-PcaFnqcL9nyaCA==",cdn-downstream-fbl;dur=283
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7174,23 +7174,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront)
+ - 1.1 08d2ad2df7ae14c356e73a61afe3347c.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IEFnfQxZL_y0ZHrTyPdPAyUstPTMb7PdW8rqvbT45w0xgF-EB11lPQ==
+ - ahA_ABB5HTuGyfMj38BEw5UsZSHy5QtBzgB0gLe-PcaFnqcL9nyaCA==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN52-P1
X-Arequestid:
- - ee30362c6c652b26dbe77bbd8a8e1226
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 9946a5d996991ab88e5c692acf32624e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7214,15 +7214,15 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: POST
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/transitions
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/transitions
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 88795a8f-0446-4486-8b01-94aa6086d89d
+ - 14bbbb1f-95b3-4ef5-9bc5-0b30f928920e
Atl-Traceid:
- - 88795a8f044644868b0194aa6086d89d
+ - 14bbbb1f95b34ef59bc50b30f928920e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7230,9 +7230,9 @@ interactions:
Content-Type:
- text/html;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:36 GMT
+ - Fri, 16 Jan 2026 20:59:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7240,7 +7240,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=594,atl-edge;dur=501,atl-edge-internal;dur=21,atl-edge-upstream;dur=481,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="hinoF4kJkunQNqxVpGq9aYFk_kOPIredaUFg1TdQ0U1lA8Ha5PuFzA==",cdn-downstream-fbl;dur=598
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=457,atl-edge;dur=433,atl-edge-internal;dur=16,atl-edge-upstream;dur=416,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="CLR0m9usCFe1NJzC0rf56TKzOQV9e-9q7sAo_kE-VH1LG-6JXnzExg==",cdn-downstream-fbl;dur=460
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7248,23 +7248,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d7b3fa0ef559ab3ac226fc78e47d311a.cloudfront.net (CloudFront)
+ - 1.1 9367844cfa8aaebd6a8f032ea2e7d4ec.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hinoF4kJkunQNqxVpGq9aYFk_kOPIredaUFg1TdQ0U1lA8Ha5PuFzA==
+ - CLR0m9usCFe1NJzC0rf56TKzOQV9e-9q7sAo_kE-VH1LG-6JXnzExg==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN52-P3
X-Arequestid:
- - c88049880f993932b4f9398331d24f97
- X-Beta-Ratelimit-Limit:
- - '200'
- X-Beta-Ratelimit-Remaining:
- - '199'
+ - 29218c4823529614b1d46de8af8d3540
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7289,12 +7289,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:37.119+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:49.891+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 2771b662-4b46-499a-aaf3-2ffb6229ca81
+ - 6ae4b839-c731-44ad-94e5-658002e109a8
Atl-Traceid:
- - 2771b6624b46499aaaf32ffb6229ca81
+ - 6ae4b839c73144ad94e5658002e109a8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7304,9 +7304,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:37 GMT
+ - Fri, 16 Jan 2026 20:59:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7314,7 +7314,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=201,atl-edge;dur=177,atl-edge-internal;dur=17,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="zWEDoTZAzfgL-0o_rHae_HfM387v5AsBKgmiDF8S6izbyT9IlNQ6TA==",cdn-downstream-fbl;dur=204
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=235,atl-edge;dur=213,atl-edge-internal;dur=13,atl-edge-upstream;dur=200,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Go4kgd5XIlp6pcw1IPVn5GU-7M16mSnEjDUaHa2A-F6Co6cSs7VvWg==",cdn-downstream-fbl;dur=239
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7324,23 +7324,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3fddcbe99f78632bf14e5e80e6c14058.cloudfront.net (CloudFront)
+ - 1.1 a08d0c528a82de68a642b3996b12dc5e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - zWEDoTZAzfgL-0o_rHae_HfM387v5AsBKgmiDF8S6izbyT9IlNQ6TA==
+ - Go4kgd5XIlp6pcw1IPVn5GU-7M16mSnEjDUaHa2A-F6Co6cSs7VvWg==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN53-P2
X-Arequestid:
- - 6d3bb40d7f6dc856eb5acf3c920edb4f
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 79ef2939d0d76080035c7009d2a3467c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7362,30 +7362,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:36.581+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:49.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:36.580+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:49.298+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -7395,8 +7395,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -7407,12 +7407,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 1c5abdf4-3914-4f5d-a876-4c4e68f8a09f
+ - 50e98b61-8792-40ff-8033-565474dcebbf
Atl-Traceid:
- - 1c5abdf439144f5da8764c4e68f8a09f
+ - 50e98b61879240ff8033565474dcebbf
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7422,9 +7422,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:37 GMT
+ - Fri, 16 Jan 2026 20:59:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7432,7 +7432,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=379,atl-edge;dur=287,atl-edge-internal;dur=20,atl-edge-upstream;dur=265,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="9cxUthhe0oOIKEM0V1U6EJk_8fcGOFqyjzLWHgRzC0VocNRmJHN9KQ==",cdn-downstream-fbl;dur=383
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=286,atl-edge;dur=263,atl-edge-internal;dur=19,atl-edge-upstream;dur=243,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="LFnF1vLF9caKAJPfl6Y8721JyYqZi0mkCPyGpG5k4dSfhRbR01yxtw==",cdn-downstream-fbl;dur=289
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7442,23 +7442,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 81c07f42f70c1aec766dc553e24f3864.cloudfront.net (CloudFront)
+ - 1.1 d99e1939ecc9ba777a9fa6749a5b276a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9cxUthhe0oOIKEM0V1U6EJk_8fcGOFqyjzLWHgRzC0VocNRmJHN9KQ==
+ - LFnF1vLF9caKAJPfl6Y8721JyYqZi0mkCPyGpG5k4dSfhRbR01yxtw==
X-Amz-Cf-Pop:
- DEN53-P1
X-Arequestid:
- - 835607e3053047c761aa5c91f7e0a434
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - a47ae98b905706cb8bc27b1e0874f08d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7483,12 +7483,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:37.910+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:50.618+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 5b91aeac-74eb-4042-9faf-7ee67acafa0e
+ - adb8c03d-6c9d-480e-872c-952c5ce07043
Atl-Traceid:
- - 5b91aeac74eb40429faf7ee67acafa0e
+ - adb8c03d6c9d480e872c952c5ce07043
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7498,9 +7498,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:37 GMT
+ - Fri, 16 Jan 2026 20:59:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7508,7 +7508,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=21,cdn-upstream-fbl;dur=262,atl-edge;dur=173,atl-edge-internal;dur=18,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="w9HcJnW4ya4xOv-WC42GmXRHifLJNmmMsa7EIx-8zZhn5GO2sJETAw==",cdn-downstream-fbl;dur=265
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=260,atl-edge;dur=169,atl-edge-internal;dur=14,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="AnKKfjccnVaVRHByZd50mYkv2Q0i5De32aeliJXK9S9HjOh64oFqOw==",cdn-downstream-fbl;dur=263
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7518,23 +7518,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0ec4ee481d2d7e134f4c87a9b9fc4e06.cloudfront.net (CloudFront)
+ - 1.1 d99e1939ecc9ba777a9fa6749a5b276a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - w9HcJnW4ya4xOv-WC42GmXRHifLJNmmMsa7EIx-8zZhn5GO2sJETAw==
+ - AnKKfjccnVaVRHByZd50mYkv2Q0i5De32aeliJXK9S9HjOh64oFqOw==
X-Amz-Cf-Pop:
- - DEN53-P2
+ - DEN53-P1
X-Arequestid:
- - 1f0f20862036e67e517c2ea31fb6bf8b
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '348'
+ - c74adfe713c1ca9ddac1a0ab50699853
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7556,30 +7556,30 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:36.581+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:49.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:36.580+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:49.298+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -7589,8 +7589,8 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
@@ -7601,12 +7601,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 3102e328-9341-48c0-87f1-fac846f0479f
+ - 3fb0bbfe-21d3-4c4f-bb27-6685aa6c1eb5
Atl-Traceid:
- - 3102e328934148c087f1fac846f0479f
+ - 3fb0bbfe21d34c4fbb276685aa6c1eb5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7616,9 +7616,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:38 GMT
+ - Fri, 16 Jan 2026 20:59:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7626,7 +7626,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=272,atl-edge;dur=249,atl-edge-internal;dur=17,atl-edge-upstream;dur=233,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Q1yTY_KYiQGdw1sg51d9MDHhbpncBiQ5GIhnYq8sNAZSvT35nIWIHA==",cdn-downstream-fbl;dur=275
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=368,atl-edge;dur=277,atl-edge-internal;dur=20,atl-edge-upstream;dur=257,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="4AY-EORdr3ImQ-2Zr2QJEOdmOmvVF7-HSbplg5PpWl_atMutElRxyw==",cdn-downstream-fbl;dur=372
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7636,23 +7636,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 be287e7673276d1e72db92a6f145d6f0.cloudfront.net (CloudFront)
+ - 1.1 8cd822060c267532e9427046d86093de.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Q1yTY_KYiQGdw1sg51d9MDHhbpncBiQ5GIhnYq8sNAZSvT35nIWIHA==
+ - 4AY-EORdr3ImQ-2Zr2QJEOdmOmvVF7-HSbplg5PpWl_atMutElRxyw==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P1
X-Arequestid:
- - 87efe3c9a1d9479690e8f6a2afc128de
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 393bf426a71fd5810c4eb269db083fd2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7677,12 +7677,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:38.634+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:51.469+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - f09f13bb-6bff-4e89-b9b2-27496af5197e
+ - 96b53ace-df1a-4c84-8681-3fbd2251ff0d
Atl-Traceid:
- - f09f13bb6bff4e89b9b227496af5197e
+ - 96b53acedf1a4c8486813fbd2251ff0d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7692,9 +7692,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:38 GMT
+ - Fri, 16 Jan 2026 20:59:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7702,7 +7702,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=194,atl-edge;dur=171,atl-edge-internal;dur=14,atl-edge-upstream;dur=157,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="yxQ51jK65LA7XZPIWd5HhQ-XmUXZS62bxZr7SnScQq_IXmUlcR-R-Q==",cdn-downstream-fbl;dur=199
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=211,atl-edge;dur=188,atl-edge-internal;dur=15,atl-edge-upstream;dur=173,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="a_dawB4qKWZOcnHL9n4x2EBIbrgLOkBSPdhlzu5nOWlRfcLDsql6RQ==",cdn-downstream-fbl;dur=215
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7712,23 +7712,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d1f45df4933065053cea3fd574dc6f20.cloudfront.net (CloudFront)
+ - 1.1 22cbebcbe97dd961cd3fddb13b91b816.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - yxQ51jK65LA7XZPIWd5HhQ-XmUXZS62bxZr7SnScQq_IXmUlcR-R-Q==
+ - a_dawB4qKWZOcnHL9n4x2EBIbrgLOkBSPdhlzu5nOWlRfcLDsql6RQ==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P3
X-Arequestid:
- - 7a28763ee8b48feccc860cc348673990
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '347'
+ - 05ec3fb26879ccb3ed9115e269b4238c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7762,9 +7762,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 9f121170-5613-49b2-9458-36faa4027b83
+ - 1a6cdfdd-1016-42de-b375-46b6d26e1433
Atl-Traceid:
- - 9f121170561349b2945836faa4027b83
+ - 1a6cdfdd101642deb37546b6d26e1433
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7774,9 +7774,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:39 GMT
+ - Fri, 16 Jan 2026 20:59:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7784,7 +7784,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=377,atl-edge;dur=353,atl-edge-internal;dur=23,atl-edge-upstream;dur=325,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="rjavgbg41Lw3jUfrFCPvDVqm_0Kd6HGOUfIiAMaZRKUcB5-F7hWpsw==",cdn-downstream-fbl;dur=380
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=350,atl-edge;dur=327,atl-edge-internal;dur=17,atl-edge-upstream;dur=309,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="yFd5hXxnoDiQ8KIg-Ju7AUzxwPCl_Wu7eNpvtUbYTVNyvEW2i6XnEA==",cdn-downstream-fbl;dur=354
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7794,26 +7794,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
+ - 1.1 73ad00d68a5eb9671b517ae19c83ae52.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - rjavgbg41Lw3jUfrFCPvDVqm_0Kd6HGOUfIiAMaZRKUcB5-F7hWpsw==
+ - yFd5hXxnoDiQ8KIg-Ju7AUzxwPCl_Wu7eNpvtUbYTVNyvEW2i6XnEA==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN53-P3
X-Arequestid:
- - 5d7b16c4113abcc24cb4933892410004
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - ab273767a6e9c5d87eabe37f651feeaf
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7822,11 +7822,11 @@ interactions:
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Jira Api Test 2", "description": "\n\n\n\n\n\n\n*Title*: [Jira Api
- Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:* http://localhost:8080/finding/240
- (240)\n\n*Severity:* Medium\n\n\n*Due Date:* Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:* http://localhost:8080/finding/259
+ (259)\n\n*Severity:* Medium\n\n\n*Due Date:* April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
[Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language` header
@@ -7845,7 +7845,7 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '1444'
+ - '1446'
Content-Type:
- application/json
User-Agent:
@@ -7854,12 +7854,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"23616","key":"NTEST-3175","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616"}'
+ string: '{"id":"24901","key":"NTEST-3186","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901"}'
headers:
Atl-Request-Id:
- - 6b2750a9-1062-4dc5-b3ec-61f0097a0872
+ - 067b2a28-73e1-4cb4-862e-6e3c819d1685
Atl-Traceid:
- - 6b2750a910624dc5b3ec61f0097a0872
+ - 067b2a2873e14cb4862e6e3c819d1685
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7867,9 +7867,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:40 GMT
+ - Fri, 16 Jan 2026 20:59:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7877,7 +7877,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=726,atl-edge;dur=703,atl-edge-internal;dur=14,atl-edge-upstream;dur=688,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="tnaIJlYR3CEPOa40bygU6PTgmnQMkfQNisxxl2V6s5tH_crOqMjSnA==",cdn-downstream-fbl;dur=729
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=751,atl-edge;dur=727,atl-edge-internal;dur=16,atl-edge-upstream;dur=712,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="_U6WRFIJ96SS-w1a1dbTYNwruDtXCtVje_CabYUcsKCRQI_j7O3I5w==",cdn-downstream-fbl;dur=754
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7887,23 +7887,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 21d788b44c2b3d335a275c07a54548b6.cloudfront.net (CloudFront)
+ - 1.1 1c80fe425edf82026702c486fb324fd0.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - tnaIJlYR3CEPOa40bygU6PTgmnQMkfQNisxxl2V6s5tH_crOqMjSnA==
+ - _U6WRFIJ96SS-w1a1dbTYNwruDtXCtVje_CabYUcsKCRQI_j7O3I5w==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN52-P2
X-Arequestid:
- - a2f8f1918bc73d63154c68803bf11a34
- X-Beta-Ratelimit-Limit:
- - '200'
- X-Beta-Ratelimit-Remaining:
- - '199'
+ - e98e5f2fe296d432c0bfed1129677901
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -7925,21 +7925,21 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23616","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616","key":"NTEST-3175","fields":{"statuscategorychangedate":"2025-11-04T19:02:39.969+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24901","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901","key":"NTEST-3186","fields":{"statuscategorychangedate":"2026-01-16T21:59:52.597+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:39.717+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sv:","updated":"2025-11-04T19:02:39.806+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
- [Jira Api Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:*
- http://localhost:8080/finding/240 (240)\n\n*Severity:* Medium\n\n\n*Due Date:*
- Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:52.338+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fb:","updated":"2026-01-16T21:59:52.423+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Jira Api Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:*
+ http://localhost:8080/finding/259 (259)\n\n*Severity:* Medium\n\n\n*Due Date:*
+ April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
[Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
@@ -7948,12 +7948,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
- Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616/comment","maxResults":0,"total":0,"startAt":0}}}'
+ Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 6ccf0ef9-fd9b-4432-bf8a-2e8f11fba7c9
+ - 83ab516d-c261-47e8-bbd6-d3d09e0b48d2
Atl-Traceid:
- - 6ccf0ef9fd9b4432bf8a2e8f11fba7c9
+ - 83ab516dc26147e8bbd6d3d09e0b48d2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -7963,9 +7963,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:40 GMT
+ - Fri, 16 Jan 2026 20:59:53 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -7973,7 +7973,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=266,atl-edge;dur=242,atl-edge-internal;dur=18,atl-edge-upstream;dur=224,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="e02RKJIW0cRX3HMIMmt_45NvZh27FVNFbnXcy8k50hy-CEBTgRcZcA==",cdn-downstream-fbl;dur=269
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=358,atl-edge;dur=267,atl-edge-internal;dur=18,atl-edge-upstream;dur=249,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="15NDvfGgIaMQKSoxmi6MT8OZ_zqkKuvh9Mb8TOy9F3NDKyXgUPjX7A==",cdn-downstream-fbl;dur=362
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -7983,23 +7983,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
+ - 1.1 1152d84b916a23e4b38cef1a20064b3e.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - e02RKJIW0cRX3HMIMmt_45NvZh27FVNFbnXcy8k50hy-CEBTgRcZcA==
+ - 15NDvfGgIaMQKSoxmi6MT8OZ_zqkKuvh9Mb8TOy9F3NDKyXgUPjX7A==
X-Amz-Cf-Pop:
- DEN52-P2
X-Arequestid:
- - 709529d7d52f54071c194da2384bf701
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 3203f97bd9e4578c63d17fb808609f06
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8021,21 +8021,21 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23616
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24901
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23616","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616","key":"NTEST-3175","fields":{"statuscategorychangedate":"2025-11-04T19:02:39.969+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24901","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901","key":"NTEST-3186","fields":{"statuscategorychangedate":"2026-01-16T21:59:52.597+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:39.717+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sv:","updated":"2025-11-04T19:02:39.806+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
- [Jira Api Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:*
- http://localhost:8080/finding/240 (240)\n\n*Severity:* Medium\n\n\n*Due Date:*
- Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:52.338+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fb:","updated":"2026-01-16T21:59:52.423+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Jira Api Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:*
+ http://localhost:8080/finding/259 (259)\n\n*Severity:* Medium\n\n\n*Due Date:*
+ April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
[Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
@@ -8044,12 +8044,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
- Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616/comment","maxResults":0,"total":0,"startAt":0}}}'
+ Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 6d8fec0e-0266-4452-b189-fde910fcf29f
+ - 85ebdaae-04fe-44f5-af34-3e6b10005a7a
Atl-Traceid:
- - 6d8fec0e02664452b189fde910fcf29f
+ - 85ebdaae04fe44f5af343e6b10005a7a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8059,9 +8059,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:40 GMT
+ - Fri, 16 Jan 2026 20:59:53 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8069,7 +8069,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=296,atl-edge;dur=273,atl-edge-internal;dur=15,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="asmmql3a2Z0pcoxmf8Cmcy0y3dp_rm8faaNSwJktAl0ZSrkNcIt3ew==",cdn-downstream-fbl;dur=300
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=272,atl-edge;dur=249,atl-edge-internal;dur=17,atl-edge-upstream;dur=231,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="SsNb6SLKAraA8gOxRUnRT-eDeVsuksvadqmZCFn7BiuitS9YL4vNjQ==",cdn-downstream-fbl;dur=276
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8079,23 +8079,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 be287e7673276d1e72db92a6f145d6f0.cloudfront.net (CloudFront)
+ - 1.1 e62d5638b40841e7b8480ae5876ef040.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - asmmql3a2Z0pcoxmf8Cmcy0y3dp_rm8faaNSwJktAl0ZSrkNcIt3ew==
+ - SsNb6SLKAraA8gOxRUnRT-eDeVsuksvadqmZCFn7BiuitS9YL4vNjQ==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P1
X-Arequestid:
- - 1b1113d26dbfc8e11c2df4be6693a6a0
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 6616fcbafc0bf1eafc26398b9294bdfa
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8120,12 +8120,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:41.075+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:53.848+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 016d8ff3-a43f-4d81-bf8e-f691137c58f5
+ - a9e4e8ee-1441-4508-bd1e-3431e4e95866
Atl-Traceid:
- - 016d8ff3a43f4d81bf8ef691137c58f5
+ - a9e4e8ee14414508bd1e3431e4e95866
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8135,9 +8135,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:41 GMT
+ - Fri, 16 Jan 2026 20:59:53 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8145,7 +8145,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=192,atl-edge;dur=170,atl-edge-internal;dur=17,atl-edge-upstream;dur=153,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="lTP-q8vlhlkRdbHTgDAY4oyfp4jlIQNqeJ9ibJAq6z0rCuWXZpTYiQ==",cdn-downstream-fbl;dur=196
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=209,atl-edge;dur=183,atl-edge-internal;dur=16,atl-edge-upstream;dur=166,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="I-WC0Xuoem3KWgdri3D9ycCL0klo0qBgYG_2NUQHUNZL5jBwLSwaRw==",cdn-downstream-fbl;dur=213
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8155,23 +8155,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 56a79b3a2ac1e2942686c2337f96fb72.cloudfront.net (CloudFront)
+ - 1.1 86b6aab4b36e97123c5f76cc2e3ac8ec.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - lTP-q8vlhlkRdbHTgDAY4oyfp4jlIQNqeJ9ibJAq6z0rCuWXZpTYiQ==
+ - I-WC0Xuoem3KWgdri3D9ycCL0klo0qBgYG_2NUQHUNZL5jBwLSwaRw==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - 5d06f50f5ef93cbde9fa1e577883230d
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 21ad96da5d483ac7313369038ddfa514
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8193,57 +8193,35 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24901
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:36.581+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24901","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901","key":"NTEST-3186","fields":{"statuscategorychangedate":"2026-01-16T21:59:52.597+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:36.580+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
- group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
- in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
- Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
- Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
- Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
- *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
- [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:52.338+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fb:","updated":"2026-01-16T21:59:52.423+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Jira Api Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:*
+ http://localhost:8080/finding/259 (259)\n\n*Severity:* Medium\n\n\n*Due Date:*
+ April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
+ [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
+ Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 8a0885a3-64ab-454b-b777-8ae81e3e2249
+ - 696f2011-e6b2-4273-aa4c-ffea14f0f238
Atl-Traceid:
- - 8a0885a364ab454bb7778ae81e3e2249
+ - 696f2011e6b24273aa4cffea14f0f238
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8253,9 +8231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:41 GMT
+ - Fri, 16 Jan 2026 20:59:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8263,7 +8241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=264,atl-edge;dur=240,atl-edge-internal;dur=17,atl-edge-upstream;dur=224,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="Tz9Kl-gyfx0SS0anc4lJCHIJ93_ulSiq_VI82qKtKWxmLRU8m3F81A==",cdn-downstream-fbl;dur=270
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=269,atl-edge;dur=245,atl-edge-internal;dur=18,atl-edge-upstream;dur=227,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="5wtHK6QFLt2KpJnxA-_-zidYWnNJPbQCUN0zWK0NKYAsdPFwBRNe1Q==",cdn-downstream-fbl;dur=272
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8273,23 +8251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d4fb3448d1a8d3229dcf0a89f4bbe7e8.cloudfront.net (CloudFront)
+ - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Tz9Kl-gyfx0SS0anc4lJCHIJ93_ulSiq_VI82qKtKWxmLRU8m3F81A==
+ - 5wtHK6QFLt2KpJnxA-_-zidYWnNJPbQCUN0zWK0NKYAsdPFwBRNe1Q==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN52-P3
X-Arequestid:
- - 644349756098d57ed8a5f63c0c3e9cb0
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '397'
+ - 054dd592e8c7bcc249814065045b85a3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8323,9 +8301,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - cb94304c-b90d-475a-9408-02305effd22b
+ - 3e7704c4-39d3-41f7-befc-1fd5c3328ba3
Atl-Traceid:
- - cb94304cb90d475a940802305effd22b
+ - 3e7704c439d341f7befc1fd5c3328ba3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8335,9 +8313,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:41 GMT
+ - Fri, 16 Jan 2026 20:59:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8345,7 +8323,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=346,atl-edge;dur=323,atl-edge-internal;dur=23,atl-edge-upstream;dur=299,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="UnzuSKU2SzUmQRueawdpvO8eJVqoi7YWFHW1iQD1TkfFj4rl0M_GUQ==",cdn-downstream-fbl;dur=350
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=343,atl-edge;dur=320,atl-edge-internal;dur=19,atl-edge-upstream;dur=301,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="6Hsi0_atQgV2Ey5dDI6UZ0hWq7eKZa1mI6fajpAAq2KC7Ml7zSJleQ==",cdn-downstream-fbl;dur=348
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8355,26 +8333,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2a3bfb7cadc3003297b11ce744cb58fa.cloudfront.net (CloudFront)
+ - 1.1 5957ea451aa45a9d254075e89c5df686.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UnzuSKU2SzUmQRueawdpvO8eJVqoi7YWFHW1iQD1TkfFj4rl0M_GUQ==
+ - 6Hsi0_atQgV2Ey5dDI6UZ0hWq7eKZa1mI6fajpAAq2KC7Ml7zSJleQ==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P2
X-Arequestid:
- - 7d2d0cd26a0660da11dba68d43e4bc1c
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 06466e58318c7620050b2e897a4ba804
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8382,55 +8360,20 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
- group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
- in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
- Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
- Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Jira
- Api Test 2|http://localhost:8080/finding/240]|Active, Verified|\n\nFindings
- *not* matching the Active, Verified and Severity criteria:\n|| Severity || CVE
- || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
- Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language` header
- value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
- Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 2|http://localhost:8080/finding/240]\n*Defect
- Dojo link:* http://localhost:8080/finding/240 (240)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language` header
- value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
- Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n *CWE:*
- [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ "summary": "Jira Api Test 2", "description": "\n\n\n\n\n\n\n*Title*: [Jira Api
+ Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:* http://localhost:8080/finding/259
+ (259)\n\n*Severity:* Medium\n\n\n*Due Date:* April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
+ [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language` header
value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ [(admin) ()|mailto:]\n"}, "update": {}}'
headers:
Accept:
- application/json,*/*;q=0.9
@@ -8441,21 +8384,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '4764'
+ - '1428'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24901
response:
body:
string: ''
headers:
Atl-Request-Id:
- - ce61edb7-6706-4805-9ac1-1c30234c320a
+ - bb56f49d-89ae-419d-94b4-30e879f184d3
Atl-Traceid:
- - ce61edb7670648059ac11c30234c320a
+ - bb56f49d89ae419d94b430e879f184d3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8463,9 +8406,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:42 GMT
+ - Fri, 16 Jan 2026 20:59:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8473,7 +8416,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=562,atl-edge;dur=538,atl-edge-internal;dur=17,atl-edge-upstream;dur=520,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="cxl1rRHLiXOEFKy_eyIofdI3UZVoTxL4SWjH6xhTVVV7Kkzxk-aEow==",cdn-downstream-fbl;dur=568
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=312,atl-edge;dur=287,atl-edge-internal;dur=22,atl-edge-upstream;dur=265,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="rREa_WhuCZ4aCzsAARDbELHXwVixqN8JSOXA6LnzSfp2Tfyyr9LZPw==",cdn-downstream-fbl;dur=317
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8481,23 +8424,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a827400055d7bbab6e387896737d4e50.cloudfront.net (CloudFront)
+ - 1.1 89771419757f75b08f6c8fd411f8ef54.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - cxl1rRHLiXOEFKy_eyIofdI3UZVoTxL4SWjH6xhTVVV7Kkzxk-aEow==
+ - rREa_WhuCZ4aCzsAARDbELHXwVixqN8JSOXA6LnzSfp2Tfyyr9LZPw==
X-Amz-Cf-Pop:
- DEN52-P1
X-Arequestid:
- - f7ad31b3894d785b676afb78dc128180
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - e6a2e59c7cb5749cad53f8e1af2b481a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8519,70 +8462,35 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23615
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24901
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23615","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615","key":"NTEST-3174","fields":{"statuscategorychangedate":"2025-11-04T19:02:36.581+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24901","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901","key":"NTEST-3186","fields":{"statuscategorychangedate":"2026-01-16T21:59:52.597+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3174/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:05.566+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sn:","updated":"2025-11-04T19:02:42.347+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
- group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
- in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Feb. 2, 2026 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]|Active,
- Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Jira
- Api Test 2|http://localhost:8080/finding/240]|Active, Verified|\n\nFindings
- *not* matching the Active, Verified and Severity criteria:\n|| Severity ||
- CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]|Active,
- Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/235]\n*Defect
- Dojo link:* http://localhost:8080/finding/235 (235)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 2|http://localhost:8080/finding/240]\n*Defect
- Dojo link:* http://localhost:8080/finding/240 (240)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/234]\n*Defect
- Dojo link:* http://localhost:8080/finding/234 (234)\n*Severity:* Info\n\n
- *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
- [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3186/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:52.338+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fb:","updated":"2026-01-16T21:59:52.423+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Jira Api Test 2|http://localhost:8080/finding/259]\n\n*Defect Dojo link:*
+ http://localhost:8080/finding/259 (259)\n\n*Severity:* Medium\n\n\n*Due Date:*
+ April 16, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
+ [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
+ [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
+ Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23615/comment","maxResults":0,"total":0,"startAt":0}}}'
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
+ Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24901/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - fadaa2e1-100d-4bbc-bdf3-5bf631e08237
+ - 6592c6f7-ba53-4261-ad06-3087ddd8a57a
Atl-Traceid:
- - fadaa2e1100d4bbcbdf35bf631e08237
+ - 6592c6f7ba534261ad063087ddd8a57a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8592,9 +8500,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:42 GMT
+ - Fri, 16 Jan 2026 20:59:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8602,7 +8510,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=301,atl-edge;dur=279,atl-edge-internal;dur=20,atl-edge-upstream;dur=253,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="RUbk1CdNKX7HoVgONK_ddfuDd6jvvT9KnT7lZdVli7qKkzR8gqxZCg==",cdn-downstream-fbl;dur=306
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=317,atl-edge;dur=229,atl-edge-internal;dur=17,atl-edge-upstream;dur=211,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="pScsEiVNZB05LdntmNXvvMV4uECuBgZ_9t5-OS5CzZ6DAkJbEeZ20A==",cdn-downstream-fbl;dur=321
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8612,23 +8520,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 acb55e8d2b8ad7df45561a8bccaaa688.cloudfront.net (CloudFront)
+ - 1.1 5ca5d4f769888ca013d817040942ebf2.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - RUbk1CdNKX7HoVgONK_ddfuDd6jvvT9KnT7lZdVli7qKkzR8gqxZCg==
+ - pScsEiVNZB05LdntmNXvvMV4uECuBgZ_9t5-OS5CzZ6DAkJbEeZ20A==
X-Amz-Cf-Pop:
- - DEN52-P3
+ - DEN53-P1
X-Arequestid:
- - af1bc4a4037d335a6067d2270f53a0af
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - 8de0f45866cee883d19a25d845723794
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8653,12 +8561,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:43.167+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:55.735+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 15ee5d90-3231-41f0-b2c3-892b9bb8b695
+ - 49bde769-6b33-433f-b0de-f65105d1a407
Atl-Traceid:
- - 15ee5d90323141f0b2c3892b9bb8b695
+ - 49bde7696b33433fb0def65105d1a407
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8668,9 +8576,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:43 GMT
+ - Fri, 16 Jan 2026 20:59:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8678,7 +8586,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=195,atl-edge;dur=171,atl-edge-internal;dur=17,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="nExqnuGvnhpuFvjIy1W6iJ9uj_BtDk-SYXS4-1rwhyo3o8yRTibDDw==",cdn-downstream-fbl;dur=198
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=266,atl-edge;dur=168,atl-edge-internal;dur=13,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="ZwnSGyNyM_T0nOa4j5l7ranApaLYunpOG9036phkdYfhSKyE_tk_xw==",cdn-downstream-fbl;dur=271
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8688,23 +8596,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6d3c3e0af3263a7b3c6878f2fa9bbff6.cloudfront.net (CloudFront)
+ - 1.1 5957ea451aa45a9d254075e89c5df686.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - nExqnuGvnhpuFvjIy1W6iJ9uj_BtDk-SYXS4-1rwhyo3o8yRTibDDw==
+ - ZwnSGyNyM_T0nOa4j5l7ranApaLYunpOG9036phkdYfhSKyE_tk_xw==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P2
X-Arequestid:
- - 7f1d87d441b373a938bc920152a2ec43
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - b8e44d2c0d4f164c2be6688176cd2df9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8726,35 +8634,57 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23616
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23616","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616","key":"NTEST-3175","fields":{"statuscategorychangedate":"2025-11-04T19:02:39.969+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:49.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:39.717+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sv:","updated":"2025-11-04T19:02:39.806+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
- [Jira Api Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:*
- http://localhost:8080/finding/240 (240)\n\n*Severity:* Medium\n\n\n*Due Date:*
- Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
- [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
- [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
- Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:49.298+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
+ Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
+ *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
+ [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
- Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616/comment","maxResults":0,"total":0,"startAt":0}}}'
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4805d705-c762-4bef-9534-74f236add184
+ - a2d33cd4-45f0-4c93-9a41-2f1fb90b5c74
Atl-Traceid:
- - 4805d705c7624bef953474f236add184
+ - a2d33cd445f04c939a412f1fb90b5c74
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8764,9 +8694,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:43 GMT
+ - Fri, 16 Jan 2026 20:59:56 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8774,7 +8704,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=289,atl-edge;dur=265,atl-edge-internal;dur=18,atl-edge-upstream;dur=247,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Zi4DV03f3prUN_qAqPJO9_YD7e3Fvw04xjDtLQBDnybyYknn8nf3aA==",cdn-downstream-fbl;dur=292
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=256,atl-edge;dur=233,atl-edge-internal;dur=16,atl-edge-upstream;dur=217,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="4GQgsi--m87CxUYl0Kv-Pl1s0e0I8tNMB5oGMReoW-_u0q6OBqZGUQ==",cdn-downstream-fbl;dur=259
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8784,23 +8714,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 81677ea21ca4917e071a8c310dd9130c.cloudfront.net (CloudFront)
+ - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Zi4DV03f3prUN_qAqPJO9_YD7e3Fvw04xjDtLQBDnybyYknn8nf3aA==
+ - 4GQgsi--m87CxUYl0Kv-Pl1s0e0I8tNMB5oGMReoW-_u0q6OBqZGUQ==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P2
X-Arequestid:
- - 1a2e9b1564b19619e2747681e843e1a1
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 7df5d1a23031931dae9239264a0db6f8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8834,9 +8764,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - c9481dbb-3484-4690-bf94-d3f810005d81
+ - db793a5e-3f66-4503-9c65-0113afd8c195
Atl-Traceid:
- - c9481dbb34844690bf94d3f810005d81
+ - db793a5e3f6645039c650113afd8c195
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8846,9 +8776,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:43 GMT
+ - Fri, 16 Jan 2026 20:59:56 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8856,7 +8786,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=327,atl-edge;dur=305,atl-edge-internal;dur=20,atl-edge-upstream;dur=285,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="DDNJSELk2umNkLUpRl83Ri-Wqk7IZ_UfCdDwOHouvM4q9vJl-nhcFQ==",cdn-downstream-fbl;dur=331
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=392,atl-edge;dur=303,atl-edge-internal;dur=17,atl-edge-upstream;dur=284,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="e0NbFwjJDag7Pot-gS3KfSKPiF4bXuf4nuxlYPc-7opBJKLdfU_u-A==",cdn-downstream-fbl;dur=396
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8866,26 +8796,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a42ce842e0f60814700ead82353e9f08.cloudfront.net (CloudFront)
+ - 1.1 c7b824e75cbf9cd365bcdd74ef25829a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - DDNJSELk2umNkLUpRl83Ri-Wqk7IZ_UfCdDwOHouvM4q9vJl-nhcFQ==
+ - e0NbFwjJDag7Pot-gS3KfSKPiF4bXuf4nuxlYPc-7opBJKLdfU_u-A==
X-Amz-Cf-Pop:
- - DEN52-P2
+ - DEN53-P2
X-Arequestid:
- - 17931357cbd8d5561f50d4a6c5d51d92
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - f73a7d77ffa44b0e89540885575d1722
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8893,20 +8823,55 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Jira Api Test 2", "description": "\n\n\n\n\n\n\n*Title*: [Jira Api
- Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:* http://localhost:8080/finding/240
- (240)\n\n*Severity:* Medium\n\n\n*Due Date:* Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
- [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
- [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
- Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Jira
+ Api Test 2|http://localhost:8080/finding/259]|Active, Verified|\n\nFindings
+ *not* matching the Active, Verified and Severity criteria:\n|| Severity || CVE
+ || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
+ Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 2|http://localhost:8080/finding/259]\n*Defect
+ Dojo link:* http://localhost:8080/finding/259 (259)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language` header
value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n"}, "update": {}}'
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n *CWE:*
+ [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
headers:
Accept:
- application/json,*/*;q=0.9
@@ -8917,21 +8882,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '1426'
+ - '4770'
Content-Type:
- application/json
User-Agent:
- python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23616
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 42bbf820-b6e4-44be-82b7-c8fc9f825dc6
+ - b631dafb-8eb4-42d9-8bbf-2ae8ba4251af
Atl-Traceid:
- - 42bbf820b6e444be82b7c8fc9f825dc6
+ - b631dafb8eb442d98bbf2ae8ba4251af
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -8939,9 +8904,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:44 GMT
+ - Fri, 16 Jan 2026 20:59:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -8949,7 +8914,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=446,atl-edge;dur=354,atl-edge-internal;dur=20,atl-edge-upstream;dur=331,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="1zwYeyeyM5h3EcErX6VDA1L8AtPCV6shNb2x90yUvQ3qj5NIVdvUEg==",cdn-downstream-fbl;dur=449
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=605,atl-edge;dur=513,atl-edge-internal;dur=17,atl-edge-upstream;dur=496,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="5gs0gG7edTEe1gajDY_7QicLZo9hrDqC0t7FRkh-hadAU__c8j6eNg==",cdn-downstream-fbl;dur=610
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -8957,23 +8922,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 979fd411be7856884369a8fd4e9bff60.cloudfront.net (CloudFront)
+ - 1.1 4a3448a83573e51d340356257951f57a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 1zwYeyeyM5h3EcErX6VDA1L8AtPCV6shNb2x90yUvQ3qj5NIVdvUEg==
+ - 5gs0gG7edTEe1gajDY_7QicLZo9hrDqC0t7FRkh-hadAU__c8j6eNg==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN52-P3
X-Arequestid:
- - 250615aeabcfbe557737065a62c1a215
- X-Beta-Ratelimit-Limit:
- - '300'
- X-Beta-Ratelimit-Remaining:
- - '299'
+ - 2618dbc428db4f623522e130294153bf
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -8995,35 +8960,70 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23616
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24900
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23616","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616","key":"NTEST-3175","fields":{"statuscategorychangedate":"2025-11-04T19:02:39.969+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24900","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900","key":"NTEST-3185","fields":{"statuscategorychangedate":"2026-01-16T21:59:49.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3175/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:39.717+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013sv:","updated":"2025-11-04T19:02:39.806+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
- [Jira Api Test 2|http://localhost:8080/finding/240]\n\n*Defect Dojo link:*
- http://localhost:8080/finding/240 (240)\n\n*Severity:* Medium\n\n\n*Due Date:*
- Feb. 2, 2026\n\n\n\n*CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]\n\n\n\n*CVE:*
- [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n*Product/Engagement/Test:*
- [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\n\n\n\n\n\n\n\n\n\n\n*Vulnerable
- Component*: negotiator - 0.5.3\n\n\n\n\n*Source File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3185/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:19.673+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014f3:","updated":"2026-01-16T21:59:57.047+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/67]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Jira
+ Api Test 2|http://localhost:8080/finding/259]|Active, Verified|\n\nFindings
+ *not* matching the Active, Verified and Severity criteria:\n|| Severity ||
+ CVE || CWE || Component || Version || Title || Status ||\n|Info|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]|Active,
+ Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
+ Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 2|http://localhost:8080/finding/259]\n*Defect
+ Dojo link:* http://localhost:8080/finding/259 (259)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
attacks, which trigger upon parsing a specially crafted `Accept-Language`
header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Jira
- Api Test 2","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23616/comment","maxResults":0,"total":0,"startAt":0}}}'
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/253]\n*Defect
+ Dojo link:* http://localhost:8080/finding/253 (253)\n*Severity:* Info\n\n
+ *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html] \n*CVE:*
+ [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24900/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ba8d4084-be1d-41a8-b845-11eeaae5fbf8
+ - a88b2468-395d-4a67-bd61-bdad2f6eda36
Atl-Traceid:
- - ba8d4084be1d41a8b84511eeaae5fbf8
+ - a88b2468395d4a67bd61bdad2f6eda36
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9033,9 +9033,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:44 GMT
+ - Fri, 16 Jan 2026 20:59:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9043,7 +9043,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=285,atl-edge;dur=261,atl-edge-internal;dur=20,atl-edge-upstream;dur=241,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="p0w-2Wu461GEaaUAAuGKKMTPDFg3gy68nanm9VTBubulSlIWx76EjA==",cdn-downstream-fbl;dur=289
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=282,atl-edge;dur=259,atl-edge-internal;dur=19,atl-edge-upstream;dur=240,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="1U0ixAwaI6d7pJTMeQxWE470GhpH-leRT-urL2B6zARcQH7okfEs_A==",cdn-downstream-fbl;dur=286
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9053,23 +9053,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 96b078df4a5d96ad3cc52cfe9d984774.cloudfront.net (CloudFront)
+ - 1.1 8e3b59cbfaa682579fb24502d1ad1194.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - p0w-2Wu461GEaaUAAuGKKMTPDFg3gy68nanm9VTBubulSlIWx76EjA==
+ - 1U0ixAwaI6d7pJTMeQxWE470GhpH-leRT-urL2B6zARcQH7okfEs_A==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P2
X-Arequestid:
- - 303423a52da482af79f56c2902e4ae4d
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - b9d86eb8d0312e1c3a1dddf9d07019de
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -9094,12 +9094,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2025-11-03T11:21:33.000+0100","serverTime":"2025-11-04T19:02:45.170+0100","scmInfo":"c7faf2d76294a838eccb8baf436ee325c9a178b7","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T21:59:58.030+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 578f99f1-7db0-4a70-900a-d2fe9ab5dc21
+ - 6fe510e3-87b1-4f18-83be-f7235c105430
Atl-Traceid:
- - 578f99f17db04a70900ad2fe9ab5dc21
+ - 6fe510e387b14f1883bef7235c105430
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9109,9 +9109,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:45 GMT
+ - Fri, 16 Jan 2026 20:59:58 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9119,7 +9119,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=209,atl-edge;dur=186,atl-edge-internal;dur=19,atl-edge-upstream;dur=167,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="tHbo3eG0ebfklHCicGGPg8lN1TzwCNFvJ8-oxnY5mfHt19cZzJDaog==",cdn-downstream-fbl;dur=214
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=194,atl-edge;dur=171,atl-edge-internal;dur=13,atl-edge-upstream;dur=157,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="5qwXFQ3WHRLyQnoqA9i0o6mt7XCV-TBN7-VpZsDuQ9tmI5uZmI-NKw==",cdn-downstream-fbl;dur=197
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9129,23 +9129,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2bdc0b4100727fdf0a312e81266d0496.cloudfront.net (CloudFront)
+ - 1.1 272eaf2883bb602816447bd7132021d2.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - tHbo3eG0ebfklHCicGGPg8lN1TzwCNFvJ8-oxnY5mfHt19cZzJDaog==
+ - 5qwXFQ3WHRLyQnoqA9i0o6mt7XCV-TBN7-VpZsDuQ9tmI5uZmI-NKw==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P1
X-Arequestid:
- - a29488c93f08409502186ecb3eacf80e
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - dbba20ad18d1b06be2a2ed0ad50685a2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -9179,9 +9179,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - ff32b5a4-2422-46ac-8447-e342cc6e2062
+ - c6a8de68-915a-4096-bebf-c1436d94e31d
Atl-Traceid:
- - ff32b5a4242246ac8447e342cc6e2062
+ - c6a8de68915a4096bebfc1436d94e31d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9191,9 +9191,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:45 GMT
+ - Fri, 16 Jan 2026 20:59:58 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9201,7 +9201,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=22,cdn-upstream-fbl;dur=420,atl-edge;dur=330,atl-edge-internal;dur=16,atl-edge-upstream;dur=315,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="74gmyUqMquXx1vgaHYr1TdpQ-I-b8beTkc_fRt92BNZoTz4GtA5mlw==",cdn-downstream-fbl;dur=424
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=301,atl-edge;dur=278,atl-edge-internal;dur=15,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="tfOHa64No111237gHfLQmTh8rmy-iDC4_V2dS--JXZ05Z0eG0h7jsA==",cdn-downstream-fbl;dur=304
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9211,26 +9211,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 81677ea21ca4917e071a8c310dd9130c.cloudfront.net (CloudFront)
+ - 1.1 007f474c20bf8a7a3cce4825eb52f2c8.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 74gmyUqMquXx1vgaHYr1TdpQ-I-b8beTkc_fRt92BNZoTz4GtA5mlw==
+ - tfOHa64No111237gHfLQmTh8rmy-iDC4_V2dS--JXZ05Z0eG0h7jsA==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P1
X-Arequestid:
- - 1da609fd3ace7576038c6d755d42a2ef
- X-Beta-Ratelimit-Limit:
- - '350'
- X-Beta-Ratelimit-Remaining:
- - '349'
+ - 80f8275fb65c514a199d9808d8ff1a21
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -9240,31 +9240,31 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/68] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|pg|0.5.3|[Jira
- Api Test 3|http://localhost:8080/finding/241]|Active, Verified|\n\nFindings
+ Api Test 3|http://localhost:8080/finding/260]|Active, Verified|\n\nFindings
*not* matching the Active, Verified and Severity criteria:\n|| Severity || CVE
|| CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]\n*Defect
- Dojo link:* http://localhost:8080/finding/236 (236)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]\n*Defect
+ Dojo link:* http://localhost:8080/finding/255 (255)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -9294,8 +9294,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]\n*Defect Dojo link:* http://localhost:8080/finding/238
- (238)\n*Severity:* Medium\n *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]\n*Defect Dojo link:* http://localhost:8080/finding/257
+ (257)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -9321,9 +9321,9 @@ interactions:
6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/241]\n*Defect
- Dojo link:* http://localhost:8080/finding/241 (241)\n*Severity:* Medium\n *Due
- Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/260]\n*Defect
+ Dojo link:* http://localhost:8080/finding/260 (260)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -9343,7 +9343,7 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '8234'
+ - '8240'
Content-Type:
- application/json
User-Agent:
@@ -9352,12 +9352,12 @@ interactions:
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"23617","key":"NTEST-3176","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23617"}'
+ string: '{"id":"24902","key":"NTEST-3187","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24902"}'
headers:
Atl-Request-Id:
- - f0decc8b-9d30-43ca-8962-15389f495261
+ - 76251ea3-f4f0-4b98-a6fa-a0ddb4a38ddb
Atl-Traceid:
- - f0decc8b9d3043ca896215389f495261
+ - 76251ea3f4f04b98a6faa0ddb4a38ddb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9365,9 +9365,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:46 GMT
+ - Fri, 16 Jan 2026 20:59:59 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9375,7 +9375,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=818,atl-edge;dur=794,atl-edge-internal;dur=16,atl-edge-upstream;dur=777,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="bPrIcS5nR418--vXoG2RPlt8NsKTXTznFVHgCGJ6L5-zUjo7mCxgpw==",cdn-downstream-fbl;dur=823
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=806,atl-edge;dur=782,atl-edge-internal;dur=14,atl-edge-upstream;dur=768,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Kmyl-Ir0aT_aPJ4KVzbYijkqPJ6-dblSRB0CRvrL1qXKnBvlEckH-g==",cdn-downstream-fbl;dur=811
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9385,23 +9385,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 bd570b43eaed44365882fda303fb189c.cloudfront.net (CloudFront)
+ - 1.1 0d46192046615c37e895cbabe89b2382.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - bPrIcS5nR418--vXoG2RPlt8NsKTXTznFVHgCGJ6L5-zUjo7mCxgpw==
+ - Kmyl-Ir0aT_aPJ4KVzbYijkqPJ6-dblSRB0CRvrL1qXKnBvlEckH-g==
X-Amz-Cf-Pop:
- - DEN53-P1
+ - DEN53-P2
X-Arequestid:
- - 295b36c1b9b4044f25dda9a9ae8b4a0e
- X-Beta-Ratelimit-Limit:
- - '200'
- X-Beta-Ratelimit-Remaining:
- - '199'
+ - f9c6cb745a23bbe1652c524f011ac14b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -9423,41 +9423,41 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3176
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3187
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23617","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23617","key":"NTEST-3176","fields":{"statuscategorychangedate":"2025-11-04T19:02:46.464+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24902","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24902","key":"NTEST-3187","fields":{"statuscategorychangedate":"2026-01-16T21:59:59.246+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3176/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3176/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:46.206+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013t3:","updated":"2025-11-04T19:02:46.305+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3187/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3187/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:58.927+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fj:","updated":"2026-01-16T21:59:59.041+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/68]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|pg|0.5.3|[Jira
- Api Test 3|http://localhost:8080/finding/241]|Active, Verified|\n\nFindings
+ Api Test 3|http://localhost:8080/finding/260]|Active, Verified|\n\nFindings
*not* matching the Active, Verified and Severity criteria:\n|| Severity ||
CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]\n*Defect
- Dojo link:* http://localhost:8080/finding/236 (236)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]\n*Defect
+ Dojo link:* http://localhost:8080/finding/255 (255)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -9487,9 +9487,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]\n*Defect
- Dojo link:* http://localhost:8080/finding/238 (238)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]\n*Defect
+ Dojo link:* http://localhost:8080/finding/257 (257)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -9515,9 +9515,9 @@ interactions:
to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/241]\n*Defect
- Dojo link:* http://localhost:8080/finding/241 (241)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/260]\n*Defect
+ Dojo link:* http://localhost:8080/finding/260 (260)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -9527,12 +9527,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23617/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24902/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ae16c5fa-4eb5-45c7-9768-a228c2608bc2
+ - 01cf42be-09b2-417e-b0bd-f54aa947c1ad
Atl-Traceid:
- - ae16c5fa4eb545c79768a228c2608bc2
+ - 01cf42be09b2417eb0bdf54aa947c1ad
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9542,9 +9542,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:47 GMT
+ - Fri, 16 Jan 2026 20:59:59 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9552,7 +9552,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=289,atl-edge;dur=265,atl-edge-internal;dur=35,atl-edge-upstream;dur=226,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="9_rx9QRyZITZN524ptMviKyTCUzgQbP0Qurx0P9_PJG6MqQp5OUIew==",cdn-downstream-fbl;dur=293
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=319,atl-edge;dur=295,atl-edge-internal;dur=19,atl-edge-upstream;dur=276,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="dg2mwgvXOjol7jW1Q0GbqetWNmEis3NU6NecG-ciJyNwzWyjjLc_wQ==",cdn-downstream-fbl;dur=322
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9562,23 +9562,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4c98f000f0c28d2e527e3c684f54be1e.cloudfront.net (CloudFront)
+ - 1.1 b1a94c3ca6429736112e2213a359c78a.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9_rx9QRyZITZN524ptMviKyTCUzgQbP0Qurx0P9_PJG6MqQp5OUIew==
+ - dg2mwgvXOjol7jW1Q0GbqetWNmEis3NU6NecG-ciJyNwzWyjjLc_wQ==
X-Amz-Cf-Pop:
- - DEN52-P1
+ - DEN53-P3
X-Arequestid:
- - 36f82e86b37e2bb4c9eb2e77bb770132
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '399'
+ - fc4450fe86a45b179481a2f3b354334b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -9600,41 +9600,41 @@ interactions:
User-Agent:
- python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/23617
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24902
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"23617","self":"https://defectdojo.atlassian.net/rest/api/2/issue/23617","key":"NTEST-3176","fields":{"statuscategorychangedate":"2025-11-04T19:02:46.464+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24902","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24902","key":"NTEST-3187","fields":{"statuscategorychangedate":"2026-01-16T21:59:59.246+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
- Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3176/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3176/watchers","watchCount":1,"isWatching":true},"created":"2025-11-04T19:02:46.206+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i013t3:","updated":"2025-11-04T19:02:46.305+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3187/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3187/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T21:59:58.927+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fj:","updated":"2026-01-16T21:59:59.041+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/68]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/92]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Dec. 4, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|pg|0.5.3|[Jira
- Api Test 3|http://localhost:8080/finding/241]|Active, Verified|\n\nFindings
+ Api Test 3|http://localhost:8080/finding/260]|Active, Verified|\n\nFindings
*not* matching the Active, Verified and Severity criteria:\n|| Severity ||
CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/236]\n*Defect
- Dojo link:* http://localhost:8080/finding/236 (236)\n*Severity:* High\n *Due
- Date:* Dec. 4, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/255]\n*Defect
+ Dojo link:* http://localhost:8080/finding/255 (255)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -9664,9 +9664,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/238]\n*Defect
- Dojo link:* http://localhost:8080/finding/238 (238)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/257]\n*Defect
+ Dojo link:* http://localhost:8080/finding/257 (257)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -9692,9 +9692,9 @@ interactions:
to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/241]\n*Defect
- Dojo link:* http://localhost:8080/finding/241 (241)\n*Severity:* Medium\n
- *Due Date:* Feb. 2, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Jira Api Test 3|http://localhost:8080/finding/260]\n*Defect
+ Dojo link:* http://localhost:8080/finding/260 (260)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -9704,12 +9704,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/23617/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24902/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4ea7d719-18a3-40c3-b698-4abff25d6fb3
+ - 47c16fb6-6519-43af-bbb2-6a35d82882eb
Atl-Traceid:
- - 4ea7d71918a340c3b6984abff25d6fb3
+ - 47c16fb6651943afbbb26a35d82882eb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -9719,9 +9719,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Tue, 04 Nov 2025 18:02:47 GMT
+ - Fri, 16 Jan 2026 21:00:00 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -9729,7 +9729,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=275,atl-edge;dur=251,atl-edge-internal;dur=20,atl-edge-upstream;dur=231,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="1OLwfyJy1uXCc91W2rGv1pQEnhKb-7nX5SWZFbgm25TbkrgQfBXTOA==",cdn-downstream-fbl;dur=280
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=399,atl-edge;dur=311,atl-edge-internal;dur=18,atl-edge-upstream;dur=293,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="M5iqU9eQ2LcL1svmEE7n0I3PIURAQ48G0xjGHtlLE6qyL48279Yg3w==",cdn-downstream-fbl;dur=404
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -9739,23 +9739,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 99c24ff7a4f9141fb603a870f066e056.cloudfront.net (CloudFront)
+ - 1.1 0ecc9d4faf14441bafb84971a4117abc.cloudfront.net (CloudFront)
X-Aaccountid:
- 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 1OLwfyJy1uXCc91W2rGv1pQEnhKb-7nX5SWZFbgm25TbkrgQfBXTOA==
+ - M5iqU9eQ2LcL1svmEE7n0I3PIURAQ48G0xjGHtlLE6qyL48279Yg3w==
X-Amz-Cf-Pop:
- - DEN53-P3
+ - DEN52-P2
X-Arequestid:
- - dab854a944dc31573ad115bb07e6660f
- X-Beta-Ratelimit-Limit:
- - '400'
- X-Beta-Ratelimit-Remaining:
- - '398'
+ - 68c1308766de74a2703bb19fbfa22c40
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_false.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_false.yaml
index 15ae726949d..b9036e3ce93 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_false.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_false.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:04:58.840+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:00.606+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 19bf9a14-9f8a-4663-800e-9684ffc64c2d
+ - 2dcf6e59-10aa-44fe-8e27-106082e92eb1
Atl-Traceid:
- - 19bf9a149f8a4663800e9684ffc64c2d
+ - 2dcf6e5910aa44fe8e27106082e92eb1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:04:58 GMT
+ - Fri, 16 Jan 2026 21:00:00 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=320,atl-edge-internal;dur=14,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="kmFLw67Hfy-dxo3qE0-dgGV94iKH_vCnPlmjILFeEp7M4vtmsIaZ2w==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=192,atl-edge;dur=167,atl-edge-internal;dur=14,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="x7-E-5XD6EdHQK5aRAcIjAoGeuPENWahShLltVx-uVIvgyHqKk-1Aw==",cdn-downstream-fbl;dur=195
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2232887ba0422bbe2b2a9f1ebf020f00.cloudfront.net (CloudFront)
+ - 1.1 61ff1927788a811372346b5470412a78.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - kmFLw67Hfy-dxo3qE0-dgGV94iKH_vCnPlmjILFeEp7M4vtmsIaZ2w==
+ - x7-E-5XD6EdHQK5aRAcIjAoGeuPENWahShLltVx-uVIvgyHqKk-1Aw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - fae70fd68a095397d8a648684d0b61d1
+ - 3c7c0b6a0e37b8fe82aae5543354630c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - e5932a31-bed7-4b5f-83ca-d073a47a2fb2
+ - 24f9fa0b-f6a9-4e37-9f79-3665b02f1bdd
Atl-Traceid:
- - e5932a31bed74b5f83cad073a47a2fb2
+ - 24f9fa0bf6a94e379f793665b02f1bdd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:00 GMT
+ - Fri, 16 Jan 2026 21:00:01 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=533,atl-edge;dur=531,atl-edge-internal;dur=15,atl-edge-upstream;dur=517,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="lMWGi1zMkXWdPLjgE6QwnZZ2tuW3FYJYjN8yVyiZLAIczIBiAfYZjQ==",cdn-downstream-fbl;dur=537
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=370,atl-edge;dur=347,atl-edge-internal;dur=26,atl-edge-upstream;dur=321,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="csaY21PXx-ECStMPU0qgAyvNLlMPel-g1wauDXI6ITXS7QZAZ-eUGA==",cdn-downstream-fbl;dur=374
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 da84bd533f95bc21581ad9f33da5b73a.cloudfront.net (CloudFront)
+ - 1.1 9379390e7d447e1d911f7741c8ae2f24.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - lMWGi1zMkXWdPLjgE6QwnZZ2tuW3FYJYjN8yVyiZLAIczIBiAfYZjQ==
+ - csaY21PXx-ECStMPU0qgAyvNLlMPel-g1wauDXI6ITXS7QZAZ-eUGA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - c20d0e5ce414ba77c0f65e0d646b0902
+ - d60f95e8bc7f1c19c57565d3735e4f78
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/4]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/70]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/255]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/262]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/255]\n*Defect Dojo link:* http://localhost:8080/finding/255
- (255)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/262]\n*Defect Dojo link:* http://localhost:8080/finding/262
+ (262)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
- Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]\n*Defect
+ Dojo link:* http://localhost:8080/finding/261 (261)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3540'
+ - '3542'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21271","key":"NTEST-3092","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21271"}'
+ string: '{"id":"24903","key":"NTEST-3188","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24903"}'
headers:
Atl-Request-Id:
- - 879f5dea-85f5-4039-b278-017e3db45a39
+ - 7f7e9add-e436-4055-85ec-cc1baa6d5ed7
Atl-Traceid:
- - 879f5dea85f54039b278017e3db45a39
+ - 7f7e9adde436405585eccc1baa6d5ed7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:02 GMT
+ - Fri, 16 Jan 2026 21:00:01 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=875,atl-edge;dur=872,atl-edge-internal;dur=15,atl-edge-upstream;dur=856,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="DcE2pICaLlq8HzMT7qQTFpUBqOz9Yp3LHizLGFzLvEAfeHafgWe69A==",cdn-downstream-fbl;dur=878
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=724,atl-edge;dur=700,atl-edge-internal;dur=18,atl-edge-upstream;dur=682,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="BvVqtTBulWvI6P47Kxo7sJPbxAk4sq3bgi9bYKmiOWs-xvHs87WGJA==",cdn-downstream-fbl;dur=730
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 16481a07c9d54ca0e038ad1d2aec824a.cloudfront.net (CloudFront)
+ - 1.1 949f831c3bb70b840d7eecaeb220bbfa.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - DcE2pICaLlq8HzMT7qQTFpUBqOz9Yp3LHizLGFzLvEAfeHafgWe69A==
+ - BvVqtTBulWvI6P47Kxo7sJPbxAk4sq3bgi9bYKmiOWs-xvHs87WGJA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - e0f0ea235cbcb3eaa72f4bb97786f1fe
+ - 02ac0c98b9a0a71b3e3e86a70f747990
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3092
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3188
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21271","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21271","key":"NTEST-3092","fields":{"statuscategorychangedate":"2025-07-25T21:05:02.018+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24903","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24903","key":"NTEST-3188","fields":{"statuscategorychangedate":"2026-01-16T22:00:01.799+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3092/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3092/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:01.731+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i0129r:","updated":"2025-07-25T21:05:01.813+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3188/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3188/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:01.547+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fr:","updated":"2026-01-16T22:00:01.632+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/4]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/70]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/255]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/262]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/255]\n*Defect Dojo link:* http://localhost:8080/finding/255
- (255)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/262]\n*Defect Dojo link:* http://localhost:8080/finding/262
+ (262)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
- Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]\n*Defect
+ Dojo link:* http://localhost:8080/finding/261 (261)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21271/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24903/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 12a4c017-145f-48f1-990c-6eabc5e06719
+ - 16a716f5-8341-4038-94fc-745b5da398a8
Atl-Traceid:
- - 12a4c017145f48f1990c6eabc5e06719
+ - 16a716f58341403894fc745b5da398a8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:03 GMT
+ - Fri, 16 Jan 2026 21:00:02 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=421,atl-edge;dur=419,atl-edge-internal;dur=14,atl-edge-upstream;dur=405,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="ElfLRjil-LQ4H6FgnnUMzyaviWQ0-5jqO_HN4UHoScMe0UuN5GH6Cw==",cdn-downstream-fbl;dur=425
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=317,atl-edge;dur=228,atl-edge-internal;dur=15,atl-edge-upstream;dur=212,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="B_IkYAOKpq7372HlU6MZxNDYYnE0vPwUREPGc2k7gYMXpL34_XkPzw==",cdn-downstream-fbl;dur=322
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 db987b94354bedc3a16788229c0e652c.cloudfront.net (CloudFront)
+ - 1.1 163ba804bc3aef9b5b1ce185b475d852.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ElfLRjil-LQ4H6FgnnUMzyaviWQ0-5jqO_HN4UHoScMe0UuN5GH6Cw==
+ - B_IkYAOKpq7372HlU6MZxNDYYnE0vPwUREPGc2k7gYMXpL34_XkPzw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 7961f7af4ce5203d2cbb4a4fa2acada3
+ - 31205c9d5687ab0ac65a46d210ca8db3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21271
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24903
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21271","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21271","key":"NTEST-3092","fields":{"statuscategorychangedate":"2025-07-25T21:05:02.018+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24903","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24903","key":"NTEST-3188","fields":{"statuscategorychangedate":"2026-01-16T22:00:01.799+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3092/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3092/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:01.731+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i0129r:","updated":"2025-07-25T21:05:01.813+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3188/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3188/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:01.547+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fr:","updated":"2026-01-16T22:00:01.632+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/4]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/70]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/255]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/262]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/255]\n*Defect Dojo link:* http://localhost:8080/finding/255
- (255)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/262]\n*Defect Dojo link:* http://localhost:8080/finding/262
+ (262)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/254]\n*Defect
- Dojo link:* http://localhost:8080/finding/254 (254)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/261]\n*Defect
+ Dojo link:* http://localhost:8080/finding/261 (261)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21271/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24903/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 94aafd9a-dbbe-47a1-a7ff-d658087a4387
+ - 182f0177-bf83-4510-b64a-1c0755bf6f25
Atl-Traceid:
- - 94aafd9adbbe47a1a7ffd658087a4387
+ - 182f0177bf834510b64a1c0755bf6f25
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:04 GMT
+ - Fri, 16 Jan 2026 21:00:02 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=416,atl-edge;dur=413,atl-edge-internal;dur=16,atl-edge-upstream;dur=397,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="ryPwMqB14j9nu_yDlbYSS_hkmysXZWgeg2k6bdlvc3D-df_Gak_UVQ==",cdn-downstream-fbl;dur=420
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=297,atl-edge;dur=274,atl-edge-internal;dur=18,atl-edge-upstream;dur=255,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="NqXLTXU6-W0A-NN6GiGLGHgnCltFoWXjBCX1knucUA5GbnC5SNe3tg==",cdn-downstream-fbl;dur=302
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f2132080e9d6401d1cc8e856e53672f6.cloudfront.net (CloudFront)
+ - 1.1 f0fd475ee39ced21db4c99c5a3fdb1b2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ryPwMqB14j9nu_yDlbYSS_hkmysXZWgeg2k6bdlvc3D-df_Gak_UVQ==
+ - NqXLTXU6-W0A-NN6GiGLGHgnCltFoWXjBCX1knucUA5GbnC5SNe3tg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 043f6937805de1f441c5eccd6b1e88d2
+ - adb68890b2d91d1e3bf6783c30da7f94
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:05.849+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:03.062+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 11fbe579-2aa5-496a-9e2c-a8fa45bbdc43
+ - 750fba7f-5331-4798-b2e5-1613cb622d3f
Atl-Traceid:
- - 11fbe5792aa5496a9e2ca8fa45bbdc43
+ - 750fba7f53314798b2e51613cb622d3f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:05 GMT
+ - Fri, 16 Jan 2026 21:00:03 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=318,atl-edge;dur=316,atl-edge-internal;dur=13,atl-edge-upstream;dur=304,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="6bgAbToP1bwVPdjEAmyqwCv_C_GXaz-z_8uI8XJp-O8METi9mrhxlg==",cdn-downstream-fbl;dur=322
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=197,atl-edge;dur=173,atl-edge-internal;dur=15,atl-edge-upstream;dur=158,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="LTbj5O7h2r0mOk4l9g6Gk4FFr1j8zvvZk9a5rg3IAOSdxhdpx_k9bA==",cdn-downstream-fbl;dur=201
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 35202ecfee8e63e178de36be1b541f0e.cloudfront.net (CloudFront)
+ - 1.1 163ba804bc3aef9b5b1ce185b475d852.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 6bgAbToP1bwVPdjEAmyqwCv_C_GXaz-z_8uI8XJp-O8METi9mrhxlg==
+ - LTbj5O7h2r0mOk4l9g6Gk4FFr1j8zvvZk9a5rg3IAOSdxhdpx_k9bA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - 0c4cb9f13cc1e13ae1025cbc9580f9c1
+ - 7b9069fb37471dd60c5b05c771161a49
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 221f7593-f402-4bd1-8f26-fef62dc14585
+ - a6a438ad-72f8-4308-b9f3-9fb195c99e68
Atl-Traceid:
- - 221f7593f4024bd18f26fef62dc14585
+ - a6a438ad72f84308b9f39fb195c99e68
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:07 GMT
+ - Fri, 16 Jan 2026 21:00:03 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=491,atl-edge;dur=483,atl-edge-internal;dur=18,atl-edge-upstream;dur=468,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="kimphf31lUVTsiMNKYPvgSNwoLNpxNxeouN2BeXnbmuyctAqKtvepA==",cdn-downstream-fbl;dur=494
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=347,atl-edge;dur=325,atl-edge-internal;dur=16,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="_e0rbuWWKDfVxIwT6vJ3SAXAbquM5A6h2BMMNHXJ8h5697WyktnW3w==",cdn-downstream-fbl;dur=352
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1635e40dd33e4abcdd79d3670805a7a.cloudfront.net (CloudFront)
+ - 1.1 c3ec3fa9c5962899febb10c3fdc31872.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - kimphf31lUVTsiMNKYPvgSNwoLNpxNxeouN2BeXnbmuyctAqKtvepA==
+ - _e0rbuWWKDfVxIwT6vJ3SAXAbquM5A6h2BMMNHXJ8h5697WyktnW3w==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 7d109810ee8d8c37c2d7cd7dd4b78742
+ - 22868a925230f0bc6d97b39877780002
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,28 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/5] in [Security How-to|http://localhost:8080/product/2]
- / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2.
- Summary\n*Severity:* High *Due Date:* Aug. 24, 2025 \n\nFindings matching the
- Active, Verified and Severity criteria:\n|| Severity || CVE || CWE || Component
- || Version || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/71] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]\n*Defect
- Dojo link:* http://localhost:8080/finding/256 (256)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]\n*Defect
+ Dojo link:* http://localhost:8080/finding/263 (263)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -697,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]\n*Defect Dojo link:* http://localhost:8080/finding/258
- (258)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]\n*Defect Dojo link:* http://localhost:8080/finding/265
+ (265)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -735,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7010'
+ - '7012'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21272","key":"NTEST-3093","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21272"}'
+ string: '{"id":"24904","key":"NTEST-3189","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24904"}'
headers:
Atl-Request-Id:
- - 01de7cff-630e-4d06-b4c9-226faaee88c7
+ - 30978690-07e7-4389-a8f5-90770080e2f7
Atl-Traceid:
- - 01de7cff630e4d06b4c9226faaee88c7
+ - 3097869007e74389a8f590770080e2f7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -757,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:09 GMT
+ - Fri, 16 Jan 2026 21:00:04 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -767,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=867,atl-edge;dur=864,atl-edge-internal;dur=16,atl-edge-upstream;dur=849,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="0uYmMZwwiBBC7REEdXiFj6nMqShRZcBhnho7PsAHNA17pGbIDn2hJw==",cdn-downstream-fbl;dur=871
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=804,atl-edge;dur=713,atl-edge-internal;dur=17,atl-edge-upstream;dur=696,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="K9pgpTSBCvquFphMVmAKRZVraIL6PZ8jWvWSRv0i3V08X6uEdgKCjA==",cdn-downstream-fbl;dur=810
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -777,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4bfeb1eae9544366893e37b97eee8e6e.cloudfront.net (CloudFront)
+ - 1.1 8a50fe9452625079391cf0ce7a3e0c56.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0uYmMZwwiBBC7REEdXiFj6nMqShRZcBhnho7PsAHNA17pGbIDn2hJw==
+ - K9pgpTSBCvquFphMVmAKRZVraIL6PZ8jWvWSRv0i3V08X6uEdgKCjA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - dd2c2c0e8387867ecf2cb2bb7b04c032
+ - 2ceb10175659141e0b6bc3682baece8d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -809,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3093
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3189
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21272","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21272","key":"NTEST-3093","fields":{"statuscategorychangedate":"2025-07-25T21:05:08.905+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24904","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24904","key":"NTEST-3189","fields":{"statuscategorychangedate":"2026-01-16T22:00:04.292+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3093/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3093/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:08.644+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i0129z:","updated":"2025-07-25T21:05:08.728+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3189/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3189/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:04.042+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fz:","updated":"2026-01-16T22:00:04.143+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/5]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/71]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]\n*Defect
- Dojo link:* http://localhost:8080/finding/256 (256)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]\n*Defect
+ Dojo link:* http://localhost:8080/finding/263 (263)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -873,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]\n*Defect
- Dojo link:* http://localhost:8080/finding/258 (258)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]\n*Defect
+ Dojo link:* http://localhost:8080/finding/265 (265)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -902,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21272/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24904/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c147ea44-25d0-4b30-a6eb-59908036c894
+ - ca9f7600-ce53-48d5-8b50-53353d79ce5d
Atl-Traceid:
- - c147ea4425d04b30a6eb59908036c894
+ - ca9f7600ce5348d58b5053353d79ce5d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -917,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:10 GMT
+ - Fri, 16 Jan 2026 21:00:04 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -927,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=425,atl-edge;dur=423,atl-edge-internal;dur=14,atl-edge-upstream;dur=409,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="MP4cAzaKegxc04uf0hM8oPTuhmICQUfbnavFfRAb5p-pHaZ2LY7_kA==",cdn-downstream-fbl;dur=429
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=298,atl-edge-internal;dur=35,atl-edge-upstream;dur=262,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="G0F0AyfFIs3OFbn5D2zKEO3iQln-I-fmFp1WWWXSOHmY6NN5KNCZQA==",cdn-downstream-fbl;dur=326
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -937,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 af9df879c48ca18a8b67eda7edecc4a4.cloudfront.net (CloudFront)
+ - 1.1 ce431f517854de6a993633b3607e3d06.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - MP4cAzaKegxc04uf0hM8oPTuhmICQUfbnavFfRAb5p-pHaZ2LY7_kA==
+ - G0F0AyfFIs3OFbn5D2zKEO3iQln-I-fmFp1WWWXSOHmY6NN5KNCZQA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 9b0f95e1cecc70884e79ceeb398684b5
+ - 16585f5c8dd1c6cbc48ac2686fd550a2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -969,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21272
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24904
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21272","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21272","key":"NTEST-3093","fields":{"statuscategorychangedate":"2025-07-25T21:05:08.905+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24904","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24904","key":"NTEST-3189","fields":{"statuscategorychangedate":"2026-01-16T22:00:04.292+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3093/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3093/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:08.644+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i0129z:","updated":"2025-07-25T21:05:08.728+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3189/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3189/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:04.042+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014fz:","updated":"2026-01-16T22:00:04.143+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/5]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/71]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/256]\n*Defect
- Dojo link:* http://localhost:8080/finding/256 (256)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/263]\n*Defect
+ Dojo link:* http://localhost:8080/finding/263 (263)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1033,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/258]\n*Defect
- Dojo link:* http://localhost:8080/finding/258 (258)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/265]\n*Defect
+ Dojo link:* http://localhost:8080/finding/265 (265)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1062,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21272/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24904/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 85ab26f8-017f-44bc-9cd6-767cd32a8e16
+ - 784632ae-b84f-444c-8cc7-a83fdd6a51ac
Atl-Traceid:
- - 85ab26f8017f44bc9cd6767cd32a8e16
+ - 784632aeb84f444c8cc7a83fdd6a51ac
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1077,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:11 GMT
+ - Fri, 16 Jan 2026 21:00:05 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1087,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=407,atl-edge;dur=405,atl-edge-internal;dur=15,atl-edge-upstream;dur=390,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="kY5jY84tEOltYbZJp2zdb_NVfm4xYW_GAx3DVjsHjZowPCF3UwosoA==",cdn-downstream-fbl;dur=410
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=256,atl-edge;dur=233,atl-edge-internal;dur=18,atl-edge-upstream;dur=215,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="lKhSWMh9MhoKxCxnRVmGA0thnJy8KNvUoMwj8LIv8FdwdCKet2OzPQ==",cdn-downstream-fbl;dur=260
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1097,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 5e473a5e64c6a2f7bc916721cc188252.cloudfront.net (CloudFront)
+ - 1.1 9b688924e5b0f0b5e4c639d19cb145f0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - kY5jY84tEOltYbZJp2zdb_NVfm4xYW_GAx3DVjsHjZowPCF3UwosoA==
+ - lKhSWMh9MhoKxCxnRVmGA0thnJy8KNvUoMwj8LIv8FdwdCKet2OzPQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - 0a3a1d23e5cc81d52a94eae9455bc273
+ - ea01655ff85a4f0f026bf4342f6d154e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1129,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:12.805+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:05.485+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 19a7d4be-b619-4660-ad4c-cd89d86d6e5e
+ - e6fd56cd-02cd-484e-9c7b-3f8ecaff91a2
Atl-Traceid:
- - 19a7d4beb6194660ad4ccd89d86d6e5e
+ - e6fd56cd02cd484e9c7b3f8ecaff91a2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1149,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:12 GMT
+ - Fri, 16 Jan 2026 21:00:05 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1159,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=321,atl-edge-internal;dur=13,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="_E8WURcGwFEYOkEYxImcT4i-L8RRFr0UAR94tTD6InX2OoRFnWtr9w==",cdn-downstream-fbl;dur=327
+ - cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="ecJqeIsmJZ9f_mpTPI7IjZKEpWzMIG2ThwHcOKZ7ND4luxYe887kPg==",cdn-downstream-fbl;dur=256,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=254,atl-edge;dur=163,atl-edge-internal;dur=12,atl-edge-upstream;dur=150,atl-edge-pop;desc="aws-us-west-2"
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1169,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9fbddde4165412a5f9426c247ca005c0.cloudfront.net (CloudFront)
+ - 1.1 2b6f0b2cd8495233ea20114fbb247772.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - _E8WURcGwFEYOkEYxImcT4i-L8RRFr0UAR94tTD6InX2OoRFnWtr9w==
+ - ecJqeIsmJZ9f_mpTPI7IjZKEpWzMIG2ThwHcOKZ7ND4luxYe887kPg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - a3a2f370b2d5e7e93341b9c15e28138e
+ - fc719b271dd3ea8922988e3b2596fae8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1201,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1215,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - b40f62f2-5985-4b15-aee2-439fcbf30930
+ - cd1a46d4-3850-4b1e-89b2-31dc2873468f
Atl-Traceid:
- - b40f62f259854b15aee2439fcbf30930
+ - cd1a46d438504b1e89b231dc2873468f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1227,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:14 GMT
+ - Fri, 16 Jan 2026 21:00:06 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1237,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=503,atl-edge;dur=500,atl-edge-internal;dur=16,atl-edge-upstream;dur=485,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="Cm_tNvyWT2mBk-NgKraT_B1xoie5b84V4nSrlG6XDZZnIn7sSBPdaA==",cdn-downstream-fbl;dur=507
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=384,atl-edge;dur=294,atl-edge-internal;dur=16,atl-edge-upstream;dur=278,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="GGBg09pGvV7PfP2vssTopLii3fuXS7_YL4V_jGjbLLUUZiykmq0tXg==",cdn-downstream-fbl;dur=388
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1247,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 df166554184adf2da43f53000107ac74.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Cm_tNvyWT2mBk-NgKraT_B1xoie5b84V4nSrlG6XDZZnIn7sSBPdaA==
+ - GGBg09pGvV7PfP2vssTopLii3fuXS7_YL4V_jGjbLLUUZiykmq0tXg==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - d6c74bfe077aa9c6e3ccc702529378aa
+ - b466ed80a19ddb2b89925be0a888cff9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1272,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/6] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/72] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]\n*Defect
- Dojo link:* http://localhost:8080/finding/257 (257)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]\n*Defect
+ Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1302,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2162'
+ - '2165'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21273","key":"NTEST-3094","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21273"}'
+ string: '{"id":"24905","key":"NTEST-3190","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24905"}'
headers:
Atl-Request-Id:
- - 1b24f40a-18d3-42e7-b614-14c73185a780
+ - 6e10c619-1313-415f-a4e6-f2abed96a79b
Atl-Traceid:
- - 1b24f40a18d342e7b61414c73185a780
+ - 6e10c6191313415fa4e6f2abed96a79b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1324,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:16 GMT
+ - Fri, 16 Jan 2026 21:00:06 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1334,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=861,atl-edge;dur=859,atl-edge-internal;dur=15,atl-edge-upstream;dur=843,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="zZJY_Rqay6wOWM9hEL1JRyccUxpsQwSS4KWRcO5C-fGT_Pcnk8R7Jw==",cdn-downstream-fbl;dur=865
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=685,atl-edge;dur=663,atl-edge-internal;dur=16,atl-edge-upstream;dur=646,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Ivqko0QZmGaELIhczF98rHDWmKr5-l1ItJDx2wbXleCq4UgkrOIX7A==",cdn-downstream-fbl;dur=691
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1344,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1646a7b70ef690faac638f9c1dd2364.cloudfront.net (CloudFront)
+ - 1.1 e9664d7d75a13744c43a201578701e56.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - zZJY_Rqay6wOWM9hEL1JRyccUxpsQwSS4KWRcO5C-fGT_Pcnk8R7Jw==
+ - Ivqko0QZmGaELIhczF98rHDWmKr5-l1ItJDx2wbXleCq4UgkrOIX7A==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P2
X-Arequestid:
- - 24665ea1475be9286a9e7dc7575c0f30
+ - 82c9774411f2f888bfec11307067d4e4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1376,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3094
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3190
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21273","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21273","key":"NTEST-3094","fields":{"statuscategorychangedate":"2025-07-25T21:05:15.834+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24905","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24905","key":"NTEST-3190","fields":{"statuscategorychangedate":"2026-01-16T22:00:06.762+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3094/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3094/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:15.632+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012a7:","updated":"2025-07-25T21:05:15.707+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3190/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3190/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:06.531+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014g7:","updated":"2026-01-16T22:00:06.615+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/6]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/72]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]\n*Defect
- Dojo link:* http://localhost:8080/finding/257 (257)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]\n*Defect
+ Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1408,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21273/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24905/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 0fa80fb4-0624-48ef-8477-eb3cf4b926c3
+ - 656ede8e-a739-467d-b43d-b9eb7e540f40
Atl-Traceid:
- - 0fa80fb4062448ef8477eb3cf4b926c3
+ - 656ede8ea739467db43db9eb7e540f40
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1423,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:17 GMT
+ - Fri, 16 Jan 2026 21:00:07 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1433,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=413,atl-edge;dur=410,atl-edge-internal;dur=15,atl-edge-upstream;dur=396,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="ejOVShz3dO0dXERV1MiupW4uTe_OencJzJjJ0d04kAedwRbteeCKsw==",cdn-downstream-fbl;dur=417
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=262,atl-edge;dur=239,atl-edge-internal;dur=16,atl-edge-upstream;dur=223,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="tce0S6lmppmCLke4eajopjOVx0SxhnxN9bEq1sY5h3-rroA8cs0g2g==",cdn-downstream-fbl;dur=267
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1443,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b39f0409e845bde1b97cd11f1d544d4e.cloudfront.net (CloudFront)
+ - 1.1 4c98f000f0c28d2e527e3c684f54be1e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ejOVShz3dO0dXERV1MiupW4uTe_OencJzJjJ0d04kAedwRbteeCKsw==
+ - tce0S6lmppmCLke4eajopjOVx0SxhnxN9bEq1sY5h3-rroA8cs0g2g==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - baa8113f06f32149c8ee6b1835b80980
+ - f02a43a5d9aaac2d5f9625af7ab6379f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1475,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21273
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24905
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21273","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21273","key":"NTEST-3094","fields":{"statuscategorychangedate":"2025-07-25T21:05:15.834+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24905","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24905","key":"NTEST-3190","fields":{"statuscategorychangedate":"2026-01-16T22:00:06.762+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3094/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3094/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:15.632+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012a7:","updated":"2025-07-25T21:05:15.707+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3190/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3190/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:06.531+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014g7:","updated":"2026-01-16T22:00:06.615+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/6]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/72]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/96]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/99]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/257]\n*Defect
- Dojo link:* http://localhost:8080/finding/257 (257)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/264]\n*Defect
+ Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1507,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21273/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24905/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 09458a97-42c8-4c6f-ad84-b5826179df14
+ - 4808b23e-0c1e-473a-a701-0b8ea8eb1da4
Atl-Traceid:
- - 09458a9742c84c6fad84b5826179df14
+ - 4808b23e0c1e473aa7010b8ea8eb1da4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1522,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:18 GMT
+ - Fri, 16 Jan 2026 21:00:07 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1532,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=428,atl-edge;dur=426,atl-edge-internal;dur=15,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="tmg4CC46MCB2Ka04dFgwt9o-2lxiDxUp5qIIEqiMpKUjOaLsQkGymg==",cdn-downstream-fbl;dur=431
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=16,atl-edge-upstream;dur=241,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="GzZoDy7JFtyW-zq_MT8b3MfCcuUWPfWIE_iHhvuVTK2sasZqXtc_iQ==",cdn-downstream-fbl;dur=285
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1542,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 909f00169c0be43b0eae99ab8e7a6126.cloudfront.net (CloudFront)
+ - 1.1 43eacc46a8d7338068c3e681a16f62be.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - tmg4CC46MCB2Ka04dFgwt9o-2lxiDxUp5qIIEqiMpKUjOaLsQkGymg==
+ - GzZoDy7JFtyW-zq_MT8b3MfCcuUWPfWIE_iHhvuVTK2sasZqXtc_iQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 76e80a8797db8a4e67562c80005c5ff1
+ - b0ae3ab49f2be82057345c806f13df45
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1563,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/96", "url_api": "http://localhost:8080/api/v2/tests/96/",
+ "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 96, "url_ui": "http://localhost:8080/test/96", "url_api": "http://localhost:8080/api/v2/tests/96/"}}'
+ 99, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/"}}'
headers:
Accept:
- application/json
@@ -1585,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1599,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"844\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/96\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/96/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/99/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 96, \\\"url_ui\\\": \\\"http://localhost:8080/test/96\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/96/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 99, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1624,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 96,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/96/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/96\"\n },\n \"title\":
+ 99,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/99\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/96/\",\n \"url_ui\":
- \"http://localhost:8080/test/96\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n \"url_ui\":
+ \"http://localhost:8080/test/99\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1637,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:18 GMT
+ - Fri, 16 Jan 2026 21:00:07 GMT
Transfer-Encoding:
- chunked
status:
@@ -1646,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/96", "url_api": "http://localhost:8080/api/v2/tests/96/",
+ null, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 96, "url_ui": "http://localhost:8080/test/96", "url_api": "http://localhost:8080/api/v2/tests/96/"},
- "finding_count": 5, "findings": {"new": [{"id": 255, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/255",
- "url_api": "http://localhost:8080/api/v2/findings/255/"}, {"id": 256, "title":
+ 99, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/"},
+ "finding_count": 5, "findings": {"new": [{"id": 262, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/262",
+ "url_api": "http://localhost:8080/api/v2/findings/262/"}, {"id": 263, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/256", "url_api":
- "http://localhost:8080/api/v2/findings/256/"}, {"id": 254, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/263", "url_api":
+ "http://localhost:8080/api/v2/findings/263/"}, {"id": 261, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/254", "url_api": "http://localhost:8080/api/v2/findings/254/"},
- {"id": 257, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/257", "url_api":
- "http://localhost:8080/api/v2/findings/257/"}, {"id": 258, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/261", "url_api": "http://localhost:8080/api/v2/findings/261/"},
+ {"id": 264, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/264", "url_api":
+ "http://localhost:8080/api/v2/findings/264/"}, {"id": 265, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/258", "url_api":
- "http://localhost:8080/api/v2/findings/258/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/265", "url_api":
+ "http://localhost:8080/api/v2/findings/265/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1687,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1701,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2373\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/96\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/96/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 96, \\\"url_ui\\\": \\\"http://localhost:8080/test/96\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/96/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 255, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 99, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 262, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/255\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/255/\\\"}, {\\\"id\\\": 256, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/262\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/262/\\\"}, {\\\"id\\\": 263, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/256\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/256/\\\"},
- {\\\"id\\\": 254, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/263\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/263/\\\"},
+ {\\\"id\\\": 261, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/254\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/254/\\\"},
- {\\\"id\\\": 257, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/261\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/261/\\\"},
+ {\\\"id\\\": 264, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/257\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/257/\\\"},
- {\\\"id\\\": 258, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/264\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/264/\\\"},
+ {\\\"id\\\": 265, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/258\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/258/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/265\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/265/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 255,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 262,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/255/\",\n \"url_ui\": \"http://localhost:8080/finding/255\"\n
- \ },\n {\n \"id\": 256,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/262/\",\n \"url_ui\": \"http://localhost:8080/finding/262\"\n
+ \ },\n {\n \"id\": 263,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/256/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/256\"\n },\n
- \ {\n \"id\": 254,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/263/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/263\"\n },\n
+ \ {\n \"id\": 261,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/254/\",\n \"url_ui\": \"http://localhost:8080/finding/254\"\n
- \ },\n {\n \"id\": 257,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/261/\",\n \"url_ui\": \"http://localhost:8080/finding/261\"\n
+ \ },\n {\n \"id\": 264,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/257/\",\n \"url_ui\":
- \"http://localhost:8080/finding/257\"\n },\n {\n \"id\":
- 258,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/264/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/264\"\n },\n {\n \"id\":
+ 265,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/258/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/258\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/265/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/265\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 96,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/96/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/96\"\n },\n \"title\":
+ 99,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/99\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/96/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/96\",\n \"user\": null\n }\n}\n"
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/99\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1785,7 +1846,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:18 GMT
+ - Fri, 16 Jan 2026 21:00:07 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_true.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_true.yaml
index 441a21e727a..07a2b4ad90e 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_true.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_false_enforced_verified_jira_true.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/97", "url_api": "http://localhost:8080/api/v2/tests/97/",
+ "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 97, "url_ui": "http://localhost:8080/test/97", "url_api": "http://localhost:8080/api/v2/tests/97/"}}'
+ 100, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/"}}'
headers:
Accept:
- application/json
@@ -20,11 +20,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '844'
+ - '849'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -36,24 +36,24 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"844\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/97\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/97/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/100/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 97, \\\"url_ui\\\": \\\"http://localhost:8080/test/97\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/97/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 100, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 97,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/97/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/97\"\n },\n \"title\":
+ 100,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/100\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/97/\",\n \"url_ui\":
- \"http://localhost:8080/test/97\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n \"url_ui\":
+ \"http://localhost:8080/test/100\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:19 GMT
+ - Fri, 16 Jan 2026 21:00:08 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/97", "url_api": "http://localhost:8080/api/v2/tests/97/",
+ null, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 97, "url_ui": "http://localhost:8080/test/97", "url_api": "http://localhost:8080/api/v2/tests/97/"},
- "finding_count": 5, "findings": {"new": [{"id": 260, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/260",
- "url_api": "http://localhost:8080/api/v2/findings/260/"}, {"id": 261, "title":
+ 100, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/"},
+ "finding_count": 5, "findings": {"new": [{"id": 267, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/267",
+ "url_api": "http://localhost:8080/api/v2/findings/267/"}, {"id": 268, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/261", "url_api":
- "http://localhost:8080/api/v2/findings/261/"}, {"id": 259, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/268", "url_api":
+ "http://localhost:8080/api/v2/findings/268/"}, {"id": 266, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/259", "url_api": "http://localhost:8080/api/v2/findings/259/"},
- {"id": 262, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/262", "url_api":
- "http://localhost:8080/api/v2/findings/262/"}, {"id": 263, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/266", "url_api": "http://localhost:8080/api/v2/findings/266/"},
+ {"id": 269, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/269", "url_api":
+ "http://localhost:8080/api/v2/findings/269/"}, {"id": 270, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/263", "url_api":
- "http://localhost:8080/api/v2/findings/263/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/270", "url_api":
+ "http://localhost:8080/api/v2/findings/270/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -122,11 +122,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2373'
+ - '2378'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -138,84 +138,85 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"2373\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/97\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/97/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 97, \\\"url_ui\\\": \\\"http://localhost:8080/test/97\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/97/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 260, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 100, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 267, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/260\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/260/\\\"}, {\\\"id\\\": 261, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/267\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/267/\\\"}, {\\\"id\\\": 268, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/261\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/261/\\\"},
- {\\\"id\\\": 259, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/268\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/268/\\\"},
+ {\\\"id\\\": 266, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/259\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/259/\\\"},
- {\\\"id\\\": 262, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/266\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/266/\\\"},
+ {\\\"id\\\": 269, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/262\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/262/\\\"},
- {\\\"id\\\": 263, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/269\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/269/\\\"},
+ {\\\"id\\\": 270, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/263\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/263/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/270\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/270/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 260,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 267,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/260/\",\n \"url_ui\": \"http://localhost:8080/finding/260\"\n
- \ },\n {\n \"id\": 261,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/267/\",\n \"url_ui\": \"http://localhost:8080/finding/267\"\n
+ \ },\n {\n \"id\": 268,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/261/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/261\"\n },\n
- \ {\n \"id\": 259,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/268/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/268\"\n },\n
+ \ {\n \"id\": 266,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/259/\",\n \"url_ui\": \"http://localhost:8080/finding/259\"\n
- \ },\n {\n \"id\": 262,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/266/\",\n \"url_ui\": \"http://localhost:8080/finding/266\"\n
+ \ },\n {\n \"id\": 269,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/262/\",\n \"url_ui\":
- \"http://localhost:8080/finding/262\"\n },\n {\n \"id\":
- 263,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/269/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/269\"\n },\n {\n \"id\":
+ 270,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/263/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/263\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/270/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/270\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 97,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/97/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/97\"\n },\n \"title\":
+ 100,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/100\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/97/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/97\",\n \"user\": null\n }\n}\n"
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/100\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -224,7 +225,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:19 GMT
+ - Fri, 16 Jan 2026 21:00:08 GMT
Transfer-Encoding:
- chunked
status:
@@ -244,17 +245,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:20.504+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:08.341+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 77376a51-e59c-4821-b32f-20fdd97b0d7b
+ - 9aa775d6-9beb-46c4-ae0d-a564f9c8933e
Atl-Traceid:
- - 77376a51e59c4821b32f20fdd97b0d7b
+ - 9aa775d69beb46c4ae0da564f9c8933e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -264,9 +265,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:20 GMT
+ - Fri, 16 Jan 2026 21:00:08 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -274,7 +275,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=325,atl-edge;dur=323,atl-edge-internal;dur=14,atl-edge-upstream;dur=310,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="awdifJT0mRPuAJaBg_HvP_wqt7_GlclAbHbrAfWMP3aLcBkoDHZn8Q==",cdn-downstream-fbl;dur=329
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=204,atl-edge;dur=175,atl-edge-internal;dur=19,atl-edge-upstream;dur=159,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="e19NDx0_0RPwE4-3BU9hz37CXzm4vRalap-8rfNR6S2ElpsWa0ZdnA==",cdn-downstream-fbl;dur=208
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -284,19 +285,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 00f0469d54a973389150a36c64065326.cloudfront.net (CloudFront)
+ - 1.1 ffbfc85d825a264940b73c5e04566ff4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - awdifJT0mRPuAJaBg_HvP_wqt7_GlclAbHbrAfWMP3aLcBkoDHZn8Q==
+ - e19NDx0_0RPwE4-3BU9hz37CXzm4vRalap-8rfNR6S2ElpsWa0ZdnA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 915b1a7a401515e891f4346dbd72795f
+ - 4a7dc26cffa6584d6cd5fb57c90e4da3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -316,7 +321,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -330,9 +335,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 251f6d89-bc3d-47e4-95ca-4c12ed0d3448
+ - 02723ac3-14dc-4d2a-bbf3-2fffe10b58ea
Atl-Traceid:
- - 251f6d89bc3d47e495ca4c12ed0d3448
+ - 02723ac314dc4d2abbf32fffe10b58ea
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -342,9 +347,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:21 GMT
+ - Fri, 16 Jan 2026 21:00:08 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -352,7 +357,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=476,atl-edge;dur=473,atl-edge-internal;dur=15,atl-edge-upstream;dur=459,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="H1vbNDwxdwHW6JT_uJjxiFK6IDSVbdHIP03LHgeUltWoO_jhSgKtGw==",cdn-downstream-fbl;dur=480
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=450,atl-edge;dur=360,atl-edge-internal;dur=17,atl-edge-upstream;dur=343,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="sQ-t4mSzsp-E7shuPRBGeBbyc-avNFUdd3Tg96IaFrHMfieqh0YkRw==",cdn-downstream-fbl;dur=454
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -362,22 +367,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b862c6b18a44c823dd40d8d760097ee2.cloudfront.net (CloudFront)
+ - 1.1 37a4ef6008154b58024bba8916008f66.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - H1vbNDwxdwHW6JT_uJjxiFK6IDSVbdHIP03LHgeUltWoO_jhSgKtGw==
+ - sQ-t4mSzsp-E7shuPRBGeBbyc-avNFUdd3Tg96IaFrHMfieqh0YkRw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 218db0df235012280574dec9f290ae48
+ - 607d814cfd75792b72b20078fe418bb2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -387,21 +396,21 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/10]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/76]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title -
- (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]\n*Defect Dojo link:*
- http://localhost:8080/finding/265 (265)\n*Severity:* High\n *Due Date:* Aug.
- 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]\n*Defect Dojo link:*
+ http://localhost:8080/finding/272 (272)\n*Severity:* High\n *Due Date:* Feb.
+ 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -411,9 +420,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]\n*Defect
- Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]\n*Defect
+ Dojo link:* http://localhost:8080/finding/271 (271)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -433,21 +442,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3605'
+ - '3607'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21274","key":"NTEST-3095","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21274"}'
+ string: '{"id":"24906","key":"NTEST-3191","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24906"}'
headers:
Atl-Request-Id:
- - cc8cc422-353f-42f4-880a-ed85bbc9beee
+ - 01ed0f3b-081d-4d20-a574-eac6c9cd93f1
Atl-Traceid:
- - cc8cc422353f42f4880aed85bbc9beee
+ - 01ed0f3b081d4d20a574eac6c9cd93f1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -455,9 +464,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:23 GMT
+ - Fri, 16 Jan 2026 21:00:10 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -465,7 +474,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=817,atl-edge;dur=816,atl-edge-internal;dur=14,atl-edge-upstream;dur=801,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="2rEj62olFV8krH5aNFBn2ncE1jalcaJfZ0Ky_UiWgJ_X8PIGPrdWig==",cdn-downstream-fbl;dur=822
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1070,atl-edge;dur=1047,atl-edge-internal;dur=19,atl-edge-upstream;dur=1028,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="obC_NlPcmnZzP6OfW4PaS4nK8gQNT_7t1UitVOkCly_ujju85HtgRQ==",cdn-downstream-fbl;dur=1074
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -475,19 +484,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0cd8fe15d9bdb168de9cd5f22954d220.cloudfront.net (CloudFront)
+ - 1.1 f56ef7e5c4cb094743e3a564f21d47b0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 2rEj62olFV8krH5aNFBn2ncE1jalcaJfZ0Ky_UiWgJ_X8PIGPrdWig==
+ - obC_NlPcmnZzP6OfW4PaS4nK8gQNT_7t1UitVOkCly_ujju85HtgRQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - 1f3cb3a950c53ccdfe49955dde8e8fd6
+ - 2d3cac3c3f0bd8f625f3e1f32246b9cd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -507,33 +520,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3095
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3191
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21274","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21274","key":"NTEST-3095","fields":{"statuscategorychangedate":"2025-07-25T21:05:23.514+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24906","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24906","key":"NTEST-3191","fields":{"statuscategorychangedate":"2026-01-16T22:00:09.911+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3095/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3095/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:23.304+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012af:","updated":"2025-07-25T21:05:23.386+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3191/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3191/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:09.478+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gf:","updated":"2026-01-16T22:00:09.634+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/10]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/76]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]\n*Defect Dojo
- link:* http://localhost:8080/finding/265 (265)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]\n*Defect Dojo
+ link:* http://localhost:8080/finding/272 (272)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -543,9 +556,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]\n*Defect
- Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]\n*Defect
+ Dojo link:* http://localhost:8080/finding/271 (271)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -555,12 +568,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21274/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24906/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 8d40341a-2ecf-4a5a-9dbf-f8eb89b04c3b
+ - 1d06098a-7286-4613-b1c2-508f5a9f51cd
Atl-Traceid:
- - 8d40341a2ecf4a5a9dbff8eb89b04c3b
+ - 1d06098a72864613b1c2508f5a9f51cd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -570,9 +583,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:24 GMT
+ - Fri, 16 Jan 2026 21:00:10 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -580,7 +593,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=413,atl-edge;dur=411,atl-edge-internal;dur=12,atl-edge-upstream;dur=398,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="HJJ-9kDCewuqIsDRbaoc2kjV2vMz_7X6qMOuqIx6AwiOdrTfRbBZvw==",cdn-downstream-fbl;dur=416
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=327,atl-edge;dur=305,atl-edge-internal;dur=17,atl-edge-upstream;dur=287,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="S68tcY1erN0svs56WRQYG9Kg7-h_NtgI4-3LICpoGD2hZLAcx7calQ==",cdn-downstream-fbl;dur=331
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -590,19 +603,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ebc52833900e41e6796b998a5877893e.cloudfront.net (CloudFront)
+ - 1.1 e1dbbcedf936fc7d0284466c9c65e78c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - HJJ-9kDCewuqIsDRbaoc2kjV2vMz_7X6qMOuqIx6AwiOdrTfRbBZvw==
+ - S68tcY1erN0svs56WRQYG9Kg7-h_NtgI4-3LICpoGD2hZLAcx7calQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 614d7c6c65fc2f612b026d42a8583991
+ - d57c6981d24b9865547900ff4619588e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -622,33 +639,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21274
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24906
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21274","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21274","key":"NTEST-3095","fields":{"statuscategorychangedate":"2025-07-25T21:05:23.514+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24906","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24906","key":"NTEST-3191","fields":{"statuscategorychangedate":"2026-01-16T22:00:09.911+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3095/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3095/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:23.304+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012af:","updated":"2025-07-25T21:05:23.386+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3191/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3191/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:09.478+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gf:","updated":"2026-01-16T22:00:09.634+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/10]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/76]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/265]\n*Defect Dojo
- link:* http://localhost:8080/finding/265 (265)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/272]\n*Defect Dojo
+ link:* http://localhost:8080/finding/272 (272)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -658,9 +675,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/264]\n*Defect
- Dojo link:* http://localhost:8080/finding/264 (264)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/271]\n*Defect
+ Dojo link:* http://localhost:8080/finding/271 (271)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -670,12 +687,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21274/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24906/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 1054e75e-297f-465a-a7ab-01a3044ebdba
+ - 236fc7a9-20c4-49cf-bce9-b90afc4b4d1a
Atl-Traceid:
- - 1054e75e297f465aa7ab01a3044ebdba
+ - 236fc7a920c449cfbce9b90afc4b4d1a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -685,9 +702,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:26 GMT
+ - Fri, 16 Jan 2026 21:00:10 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -695,7 +712,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=408,atl-edge;dur=406,atl-edge-internal;dur=14,atl-edge-upstream;dur=392,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="hbX4zkXtyPpzQupYD85p-GPxMaSzlyxbDvBWvbrK-RuuYLq1wGQ86g==",cdn-downstream-fbl;dur=412
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=295,atl-edge;dur=271,atl-edge-internal;dur=15,atl-edge-upstream;dur=254,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="TbT7VEA80fbhQNHWNCNTdvvq0FSTVb7YofFWt23MIh3fvZ0FrBFeyw==",cdn-downstream-fbl;dur=298
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -705,19 +722,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 59067266959db6ef629f60366c4dee48.cloudfront.net (CloudFront)
+ - 1.1 99c24ff7a4f9141fb603a870f066e056.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hbX4zkXtyPpzQupYD85p-GPxMaSzlyxbDvBWvbrK-RuuYLq1wGQ86g==
+ - TbT7VEA80fbhQNHWNCNTdvvq0FSTVb7YofFWt23MIh3fvZ0FrBFeyw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 7748924720efae230a67e323c52c01cb
+ - f18a87494c6084fbe039608fea28d250
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -737,17 +758,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:27.350+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:11.217+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 37ed6cce-be7d-47cb-9c14-9a23aeceb830
+ - ada04146-5d8e-4a14-9acb-0083fa99a439
Atl-Traceid:
- - 37ed6ccebe7d47cb9c149a23aeceb830
+ - ada041465d8e4a149acb0083fa99a439
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -757,9 +778,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:27 GMT
+ - Fri, 16 Jan 2026 21:00:11 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -767,7 +788,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=327,atl-edge;dur=324,atl-edge-internal;dur=14,atl-edge-upstream;dur=311,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="hH3quv6Ar0DT-udWeh_vEPioJijyICsGcD1KTE48J9sJ17DBiE4kNQ==",cdn-downstream-fbl;dur=330
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=258,atl-edge;dur=168,atl-edge-internal;dur=17,atl-edge-upstream;dur=152,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="ulHUdl6Wr8xQLZqn_zXIrJpTpJm-qMYN0kMKqieO9TF9Gu7yEr9XaA==",cdn-downstream-fbl;dur=263
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -777,19 +798,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2886e4c3f0ae51eca00bc6ca8a0f5226.cloudfront.net (CloudFront)
+ - 1.1 91881fdae44078e1c95546f3cb1e2366.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hH3quv6Ar0DT-udWeh_vEPioJijyICsGcD1KTE48J9sJ17DBiE4kNQ==
+ - ulHUdl6Wr8xQLZqn_zXIrJpTpJm-qMYN0kMKqieO9TF9Gu7yEr9XaA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P1
X-Arequestid:
- - a9781ac31b11d5ee069772805b9ed29d
+ - 6247dccb708b47a805c76979c61e002f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -809,7 +834,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -823,9 +848,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - dc44d7c3-1495-4522-a4a6-18915744be60
+ - 406c46f6-7272-495e-81fb-9e45da3374d1
Atl-Traceid:
- - dc44d7c314954522a4a618915744be60
+ - 406c46f67272495e81fb9e45da3374d1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -835,9 +860,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:28 GMT
+ - Fri, 16 Jan 2026 21:00:11 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -845,7 +870,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=490,atl-edge;dur=488,atl-edge-internal;dur=15,atl-edge-upstream;dur=472,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="oSqme1XMnCTeZHgw1kIojEfhtO8MbV6s6mShSyY6E_okmSnEFI7wJw==",cdn-downstream-fbl;dur=494
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=440,atl-edge;dur=417,atl-edge-internal;dur=17,atl-edge-upstream;dur=399,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="7UagmBTuPXs58_MQCUArwCofiTLObusTTfzNeZn_GhpoEnL_bQnPDA==",cdn-downstream-fbl;dur=444
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -855,22 +880,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7b00ea054b97b0dfdfa184981c492f10.cloudfront.net (CloudFront)
+ - 1.1 c1e0a7ac577ef4659f75bd73a73531f6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - oSqme1XMnCTeZHgw1kIojEfhtO8MbV6s6mShSyY6E_okmSnEFI7wJw==
+ - 7UagmBTuPXs58_MQCUArwCofiTLObusTTfzNeZn_GhpoEnL_bQnPDA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P3
X-Arequestid:
- - 0a53b3db730158d03344c560835f4b41
+ - f1493ecd887801766329611db7925419
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -880,29 +909,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/11] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/77] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]\n*Defect
- Dojo link:* http://localhost:8080/finding/266 (266)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]\n*Defect
+ Dojo link:* http://localhost:8080/finding/273 (273)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -932,9 +961,9 @@ interactions:
Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]\n*Defect Dojo
- link:* http://localhost:8080/finding/268 (268)\n*Severity:* Medium\n *Due Date:*
- Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]\n*Defect Dojo
+ link:* http://localhost:8080/finding/275 (275)\n*Severity:* Medium\n *Due Date:*
+ April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -971,21 +1000,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7075'
+ - '7077'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21275","key":"NTEST-3096","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21275"}'
+ string: '{"id":"24907","key":"NTEST-3192","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24907"}'
headers:
Atl-Request-Id:
- - f1cc7f71-1f18-4b4e-bcaf-ed4df0fe8322
+ - 7a485c80-5d95-4574-952b-90ab33ddb776
Atl-Traceid:
- - f1cc7f711f184b4ebcafed4df0fe8322
+ - 7a485c805d954574952b90ab33ddb776
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -993,9 +1022,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:30 GMT
+ - Fri, 16 Jan 2026 21:00:12 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1003,7 +1032,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=901,atl-edge;dur=899,atl-edge-internal;dur=14,atl-edge-upstream;dur=885,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="uu4qks4CoEPqW7rQK3Iyug2VvgA_qxZJ4LzdQhf3A8nTSOi0gWZyPQ==",cdn-downstream-fbl;dur=905
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=935,atl-edge;dur=844,atl-edge-internal;dur=23,atl-edge-upstream;dur=822,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="dHuiPBqjq1778w-2NUPPnvDZjAbNpPaC5phc1EnpXyHZu_G1GD0tbw==",cdn-downstream-fbl;dur=939
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1013,19 +1042,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e80732d7ef726bed77c3f67a8339cc96.cloudfront.net (CloudFront)
+ - 1.1 30deb42cd45095ca57ec57e8117c8d8a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - uu4qks4CoEPqW7rQK3Iyug2VvgA_qxZJ4LzdQhf3A8nTSOi0gWZyPQ==
+ - dHuiPBqjq1778w-2NUPPnvDZjAbNpPaC5phc1EnpXyHZu_G1GD0tbw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 5385ba9714af7f93a80832dec40edb7d
+ - c54d72f3cbd984bb021bb1b1fdd7621e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1045,41 +1078,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3096
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3192
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21275","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21275","key":"NTEST-3096","fields":{"statuscategorychangedate":"2025-07-25T21:05:30.455+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24907","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24907","key":"NTEST-3192","fields":{"statuscategorychangedate":"2026-01-16T22:00:12.767+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3096/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3096/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:30.185+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012an:","updated":"2025-07-25T21:05:30.268+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3192/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3192/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:12.465+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gn:","updated":"2026-01-16T22:00:12.572+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/11]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/77]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]\n*Defect
- Dojo link:* http://localhost:8080/finding/266 (266)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]\n*Defect
+ Dojo link:* http://localhost:8080/finding/273 (273)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1109,9 +1142,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]\n*Defect
- Dojo link:* http://localhost:8080/finding/268 (268)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]\n*Defect
+ Dojo link:* http://localhost:8080/finding/275 (275)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1138,12 +1171,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21275/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24907/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 74726683-19a2-466c-aabe-65704160ad21
+ - 268f9872-80cd-4b28-9410-737ac6533886
Atl-Traceid:
- - 7472668319a2466caabe65704160ad21
+ - 268f987280cd4b289410737ac6533886
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1153,9 +1186,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:31 GMT
+ - Fri, 16 Jan 2026 21:00:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1163,7 +1196,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=404,atl-edge;dur=402,atl-edge-internal;dur=15,atl-edge-upstream;dur=387,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="wF2Hh-N2m5Cq0eSiTHakfATwpkUpbPteW7BQMQw6kBcxBVYhChbgKg==",cdn-downstream-fbl;dur=408
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=397,atl-edge;dur=306,atl-edge-internal;dur=18,atl-edge-upstream;dur=288,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="r4wFeF5UTqBY0mfXbwzuAJpB_nnC_eWuXwjjj_zJ1nw5jcRGzMCGzA==",cdn-downstream-fbl;dur=402
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1173,19 +1206,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fd8b250e4ee7cd8e5de453d78708baee.cloudfront.net (CloudFront)
+ - 1.1 7415745dbfe9603bd58616b0c7789f90.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - wF2Hh-N2m5Cq0eSiTHakfATwpkUpbPteW7BQMQw6kBcxBVYhChbgKg==
+ - r4wFeF5UTqBY0mfXbwzuAJpB_nnC_eWuXwjjj_zJ1nw5jcRGzMCGzA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - abf51936a6c07a0bbf918875aef8f14d
+ - 46c63d21a9142dfc8941d2e3e2bc042f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1205,41 +1242,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21275
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24907
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21275","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21275","key":"NTEST-3096","fields":{"statuscategorychangedate":"2025-07-25T21:05:30.455+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24907","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24907","key":"NTEST-3192","fields":{"statuscategorychangedate":"2026-01-16T22:00:12.767+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3096/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3096/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:30.185+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012an:","updated":"2025-07-25T21:05:30.268+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3192/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3192/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:12.465+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gn:","updated":"2026-01-16T22:00:12.572+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/11]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/77]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/266]\n*Defect
- Dojo link:* http://localhost:8080/finding/266 (266)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/273]\n*Defect
+ Dojo link:* http://localhost:8080/finding/273 (273)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1269,9 +1306,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/268]\n*Defect
- Dojo link:* http://localhost:8080/finding/268 (268)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/275]\n*Defect
+ Dojo link:* http://localhost:8080/finding/275 (275)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1298,12 +1335,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21275/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24907/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ae5080d1-f4bc-427b-bd39-889a95bae0e4
+ - cdda6bfc-b804-477c-97d8-df5893b72524
Atl-Traceid:
- - ae5080d1f4bc427bbd39889a95bae0e4
+ - cdda6bfcb804477c97d8df5893b72524
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1313,9 +1350,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:33 GMT
+ - Fri, 16 Jan 2026 21:00:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1323,7 +1360,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=425,atl-edge;dur=423,atl-edge-internal;dur=14,atl-edge-upstream;dur=409,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="c32TY8ROBpXSMGNQEZZjdaekY-gMukBbTCDe8fsOLMzniHP56kqQ6A==",cdn-downstream-fbl;dur=429
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=266,atl-edge;dur=242,atl-edge-internal;dur=17,atl-edge-upstream;dur=225,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="uIQOEkrOMuRJ6gjTU3s_zBQeECTvGJrVqUEfCilZHlFcVJzaIbDEfA==",cdn-downstream-fbl;dur=271
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1333,19 +1370,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a7a7ee092ee4b4df82064022cbdb7e94.cloudfront.net (CloudFront)
+ - 1.1 03fa0691c8124b25f37416f26d179308.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - c32TY8ROBpXSMGNQEZZjdaekY-gMukBbTCDe8fsOLMzniHP56kqQ6A==
+ - uIQOEkrOMuRJ6gjTU3s_zBQeECTvGJrVqUEfCilZHlFcVJzaIbDEfA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - 8b2376ce8ed7bf9261552466968c2e1e
+ - f6f31c6c29481e6eff15c5c5484ee936
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1365,17 +1406,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:34.323+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:14.062+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - b1b668a5-97a1-4b54-9595-de483bf11d05
+ - cadfd87a-5901-4313-aec2-db966c35207d
Atl-Traceid:
- - b1b668a597a14b549595de483bf11d05
+ - cadfd87a59014313aec2db966c35207d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1385,9 +1426,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:34 GMT
+ - Fri, 16 Jan 2026 21:00:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1395,7 +1436,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=320,atl-edge;dur=318,atl-edge-internal;dur=15,atl-edge-upstream;dur=303,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="IZEle7aBQTqqelJnOoCzowVsG7Z6vl6yIv0fJ2jUFq2vhW06S8pJjQ==",cdn-downstream-fbl;dur=324
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=216,atl-edge;dur=191,atl-edge-internal;dur=17,atl-edge-upstream;dur=174,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="41GpXuFTJxgo9IZXiGHFzmgbwtZvMSM1n-ToCkEgNCxeRHU9OJmMLg==",cdn-downstream-fbl;dur=221
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1405,19 +1446,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4bfeb1eae9544366893e37b97eee8e6e.cloudfront.net (CloudFront)
+ - 1.1 057707d7f80ca305efe5fad72e15b94c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IZEle7aBQTqqelJnOoCzowVsG7Z6vl6yIv0fJ2jUFq2vhW06S8pJjQ==
+ - 41GpXuFTJxgo9IZXiGHFzmgbwtZvMSM1n-ToCkEgNCxeRHU9OJmMLg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 466f41c2e7f63b8b27318cbd0771a522
+ - ff321e3cf37ac9c02e91ca9017365a41
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1437,7 +1482,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1451,9 +1496,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 5f6dd30c-7ac6-4225-8b85-2e99eb890b4c
+ - f5dc65bb-7943-4ee3-b3b3-80d9372142ac
Atl-Traceid:
- - 5f6dd30c7ac642258b852e99eb890b4c
+ - f5dc65bb79434ee3b3b380d9372142ac
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1463,9 +1508,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:35 GMT
+ - Fri, 16 Jan 2026 21:00:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1473,7 +1518,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=548,atl-edge;dur=546,atl-edge-internal;dur=16,atl-edge-upstream;dur=530,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="fWzO-teqWT6oHhX-9oQWDuAEgiM18unmn4Kn_YuvESpAja70O6zVUw==",cdn-downstream-fbl;dur=551
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=345,atl-edge;dur=322,atl-edge-internal;dur=17,atl-edge-upstream;dur=305,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="s-HT8gLiALWCyQlOu5a_G_HqSaJnFzLOd0FUQqsV9el9hwhDGpqrEA==",cdn-downstream-fbl;dur=349
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1483,22 +1528,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 928b9a46c60991369db0a5ad58525eca.cloudfront.net (CloudFront)
+ - 1.1 99f4e9fd554682341f34ffd484d44998.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - fWzO-teqWT6oHhX-9oQWDuAEgiM18unmn4Kn_YuvESpAja70O6zVUw==
+ - s-HT8gLiALWCyQlOu5a_G_HqSaJnFzLOd0FUQqsV9el9hwhDGpqrEA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P1
X-Arequestid:
- - 67cfc135f68262e00def01b7ebc2ae61
+ - 5495de4bf2a35f2b9730bbb98c99130a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1508,18 +1557,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/12] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/78] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/267]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/274]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/267]\n*Defect Dojo link:* http://localhost:8080/finding/267
- (267)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/274]\n*Defect Dojo link:* http://localhost:8080/finding/274
+ (274)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1538,21 +1587,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2195'
+ - '2198'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21276","key":"NTEST-3097","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21276"}'
+ string: '{"id":"24908","key":"NTEST-3193","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24908"}'
headers:
Atl-Request-Id:
- - 741514ea-9ffe-4045-be52-e8ae385ea8e5
+ - 939d4d45-331f-4b19-86c8-fb12edb68c25
Atl-Traceid:
- - 741514ea9ffe4045be52e8ae385ea8e5
+ - 939d4d45331f4b1986c8fb12edb68c25
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1560,9 +1609,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:37 GMT
+ - Fri, 16 Jan 2026 21:00:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1570,7 +1619,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=924,atl-edge;dur=922,atl-edge-internal;dur=14,atl-edge-upstream;dur=908,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="00qVbvgvXwSCubVv9PWLHNqHftE-sIcRAXCfPijKGbmoutoa9RvzWQ==",cdn-downstream-fbl;dur=928
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=712,atl-edge;dur=689,atl-edge-internal;dur=16,atl-edge-upstream;dur=672,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="7eej1DeELw6SzXge2XKaUQ2IAbAHorMvgJKtSCIS_X-oYjtuh6-7ig==",cdn-downstream-fbl;dur=715
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1580,19 +1629,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 29491175c208d4b12663a88d492ee9d0.cloudfront.net (CloudFront)
+ - 1.1 730d0b7e5f5de3b777d629325ecdb89c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 00qVbvgvXwSCubVv9PWLHNqHftE-sIcRAXCfPijKGbmoutoa9RvzWQ==
+ - 7eej1DeELw6SzXge2XKaUQ2IAbAHorMvgJKtSCIS_X-oYjtuh6-7ig==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - 06ec1f807566743ae76cae9fef9ca5d7
+ - a269aa6d5af8db1b9fff75fa84990df4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1612,30 +1665,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3097
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3193
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21276","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21276","key":"NTEST-3097","fields":{"statuscategorychangedate":"2025-07-25T21:05:37.522+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24908","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24908","key":"NTEST-3193","fields":{"statuscategorychangedate":"2026-01-16T22:00:15.301+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3097/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3097/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:37.204+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012av:","updated":"2025-07-25T21:05:37.296+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3193/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3193/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:15.050+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gv:","updated":"2026-01-16T22:00:15.138+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/12]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/78]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/267]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/274]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/267]\n*Defect Dojo link:* http://localhost:8080/finding/267
- (267)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/274]\n*Defect Dojo link:* http://localhost:8080/finding/274
+ (274)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1644,12 +1697,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21276/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24908/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 106df0ae-0564-47ee-a0ee-30b9b42be106
+ - d0203ae5-6297-4b81-b69b-b1e5527d5604
Atl-Traceid:
- - 106df0ae056447eea0ee30b9b42be106
+ - d0203ae562974b81b69bb1e5527d5604
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1659,9 +1712,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:39 GMT
+ - Fri, 16 Jan 2026 21:00:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1669,7 +1722,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=445,atl-edge;dur=443,atl-edge-internal;dur=15,atl-edge-upstream;dur=428,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="b4ktorJGwpQvuA2wk51MPTBIePTEkvxN_XdE-6D4PgeYy8aVT-N-Qw==",cdn-downstream-fbl;dur=449
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=341,atl-edge;dur=249,atl-edge-internal;dur=15,atl-edge-upstream;dur=234,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="gKj-12QpfvmLj1kUwjEv-qBxeHaHv9nZkKaY0RJQ25O4RBQWGDMXuA==",cdn-downstream-fbl;dur=345
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1679,19 +1732,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f515cf2b40cd90e36f3532dbd8a5ae.cloudfront.net (CloudFront)
+ - 1.1 4dbb4eca48de71e6d41b5ffb5e37d46e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - b4ktorJGwpQvuA2wk51MPTBIePTEkvxN_XdE-6D4PgeYy8aVT-N-Qw==
+ - gKj-12QpfvmLj1kUwjEv-qBxeHaHv9nZkKaY0RJQ25O4RBQWGDMXuA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - 2866818c419e738f1683f5771ef8c5b6
+ - 72935bcddacab536c9b5f0fee60c3e5c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1711,30 +1768,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21276
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24908
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21276","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21276","key":"NTEST-3097","fields":{"statuscategorychangedate":"2025-07-25T21:05:37.522+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24908","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24908","key":"NTEST-3193","fields":{"statuscategorychangedate":"2026-01-16T22:00:15.301+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3097/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3097/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:37.204+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012av:","updated":"2025-07-25T21:05:37.296+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3193/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3193/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:15.050+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014gv:","updated":"2026-01-16T22:00:15.138+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/12]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/78]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/98]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/101]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/267]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/274]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/267]\n*Defect Dojo link:* http://localhost:8080/finding/267
- (267)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/274]\n*Defect Dojo link:* http://localhost:8080/finding/274
+ (274)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1743,12 +1800,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21276/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24908/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 2aa09961-c135-4db8-a91c-0340580570ac
+ - 33598717-7e5c-44a4-a00d-1e22cf49c994
Atl-Traceid:
- - 2aa09961c1354db8a91c0340580570ac
+ - 335987177e5c44a4a00d1e22cf49c994
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1758,9 +1815,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:40 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1768,7 +1825,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=428,atl-edge;dur=425,atl-edge-internal;dur=14,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="RjCIi0Su5dnkM9co6JNHJ463FvKenGTVJ0hwXNEYSenc8aqtmEvwtg==",cdn-downstream-fbl;dur=431
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=263,atl-edge;dur=240,atl-edge-internal;dur=15,atl-edge-upstream;dur=223,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Y-mz7uQASXhuSKVomTWIefwV-5o4Uprs9uWTBOa8jxat6WQhnnCO8Q==",cdn-downstream-fbl;dur=268
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1778,19 +1835,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6d9ff63cdcc93ca8f7c1714fbd746b66.cloudfront.net (CloudFront)
+ - 1.1 f91d1b84d49f9e5cc7391ee66e3cbed0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - RjCIi0Su5dnkM9co6JNHJ463FvKenGTVJ0hwXNEYSenc8aqtmEvwtg==
+ - Y-mz7uQASXhuSKVomTWIefwV-5o4Uprs9uWTBOa8jxat6WQhnnCO8Q==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 308b243aa2b31dbf7c7088f50b74d195
+ - 13590b65c94f18c87fbea805fef2e735
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1799,14 +1860,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/",
+ "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 98, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/"}}'
+ 101, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/"}}'
headers:
Accept:
- application/json
@@ -1817,11 +1878,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '844'
+ - '849'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1833,24 +1894,24 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"844\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/98/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/101/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 98, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 101, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1860,11 +1921,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 98,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/98\"\n },\n \"title\":
+ 101,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/101\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n \"url_ui\":
- \"http://localhost:8080/test/98\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n \"url_ui\":
+ \"http://localhost:8080/test/101\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1873,7 +1934,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:40 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Transfer-Encoding:
- chunked
status:
@@ -1882,32 +1943,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/",
+ null, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 98, "url_ui": "http://localhost:8080/test/98", "url_api": "http://localhost:8080/api/v2/tests/98/"},
- "finding_count": 5, "findings": {"new": [{"id": 265, "title": "2222Regular Expression
+ 101, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/"},
+ "finding_count": 5, "findings": {"new": [{"id": 272, "title": "2222Regular Expression
Denial of Service Different Title - (Negotiator, <= 0.6.0)", "severity": "High",
- "url_ui": "http://localhost:8080/finding/265", "url_api": "http://localhost:8080/api/v2/findings/265/"},
- {"id": 266, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
+ "url_ui": "http://localhost:8080/finding/272", "url_api": "http://localhost:8080/api/v2/findings/272/"},
+ {"id": 273, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/266",
- "url_api": "http://localhost:8080/api/v2/findings/266/"}, {"id": 264, "title":
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/273",
+ "url_api": "http://localhost:8080/api/v2/findings/273/"}, {"id": 271, "title":
"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/264", "url_api":
- "http://localhost:8080/api/v2/findings/264/"}, {"id": 267, "title": "Regular
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/271", "url_api":
+ "http://localhost:8080/api/v2/findings/271/"}, {"id": 274, "title": "Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)", "severity":
- "Medium", "url_ui": "http://localhost:8080/finding/267", "url_api": "http://localhost:8080/api/v2/findings/267/"},
- {"id": 268, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
+ "Medium", "url_ui": "http://localhost:8080/finding/274", "url_api": "http://localhost:8080/api/v2/findings/274/"},
+ {"id": 275, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/268",
- "url_api": "http://localhost:8080/api/v2/findings/268/"}], "reactivated": [],
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/275",
+ "url_api": "http://localhost:8080/api/v2/findings/275/"}], "reactivated": [],
"mitigated": [], "untouched": []}}'
headers:
Accept:
@@ -1919,11 +1980,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2453'
+ - '2458'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1935,86 +1996,87 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"2453\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2458\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 98, \\\"url_ui\\\": \\\"http://localhost:8080/test/98\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/98/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 265, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 101, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 272, \\\"title\\\": \\\"2222Regular
Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\\\",
- \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/265\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/265/\\\"}, {\\\"id\\\":
- 266, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
+ \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/272\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/272/\\\"}, {\\\"id\\\":
+ 273, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/266\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/266/\\\"}, {\\\"id\\\": 264, \\\"title\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/273\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/273/\\\"}, {\\\"id\\\": 271, \\\"title\\\":
\\\"Regular Expression Denial of Service Different Title - (Negotiator, <=
- 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/264\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/264/\\\"}, {\\\"id\\\":
- 267, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
+ 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/271\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/271/\\\"}, {\\\"id\\\":
+ 274, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/267\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/267/\\\"},
- {\\\"id\\\": 268, \\\"title\\\": \\\"2222Remote Code Execution Different Title
+ \\\"http://localhost:8080/finding/274\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/274/\\\"},
+ {\\\"id\\\": 275, \\\"title\\\": \\\"2222Remote Code Execution Different Title
- (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1
|| >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 <
6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\":
- \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/268\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/268/\\\"}], \\\"reactivated\\\":
+ \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/275\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/275/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 265,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 272,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service Different Title - (Negotiator,
- <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/265/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/265\"\n },\n
- \ {\n \"id\": 266,\n \"severity\": \"High\",\n \"title\":
+ <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/272/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/272\"\n },\n
+ \ {\n \"id\": 273,\n \"severity\": \"High\",\n \"title\":
\"Remote Code Execution Different Title - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4
|| >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 <
6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0
- < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/266/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/266\"\n },\n
- \ {\n \"id\": 264,\n \"severity\": \"Medium\",\n \"title\":
+ < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/273/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/273\"\n },\n
+ \ {\n \"id\": 271,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/264/\",\n \"url_ui\":
- \"http://localhost:8080/finding/264\"\n },\n {\n \"id\":
- 267,\n \"severity\": \"Medium\",\n \"title\": \"Regular
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/271/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/271\"\n },\n {\n \"id\":
+ 274,\n \"severity\": \"Medium\",\n \"title\": \"Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/267/\",\n \"url_ui\": \"http://localhost:8080/finding/267\"\n
- \ },\n {\n \"id\": 268,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/274/\",\n \"url_ui\": \"http://localhost:8080/finding/274\"\n
+ \ },\n {\n \"id\": 275,\n \"severity\": \"Medium\",\n
\ \"title\": \"2222Remote Code Execution Different Title - (Pg, <
2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >=
6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3
|| >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/268/\",\n \"url_ui\": \"http://localhost:8080/finding/268\"\n
+ \"http://localhost:8080/api/v2/findings/275/\",\n \"url_ui\": \"http://localhost:8080/finding/275\"\n
\ }\n ],\n \"reactivated\": [],\n \"untouched\": []\n
\ },\n \"product\": {\n \"id\": 2,\n \"name\": \"Security How-to\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\":
\"http://localhost:8080/product/2\"\n },\n \"product_type\": {\n \"id\":
2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
\ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
- {\n \"id\": 98,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/98\"\n },\n \"title\":
+ {\n \"id\": 101,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/101\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/98/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/98\",\n \"user\": null\n }\n}\n"
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/101\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -2023,7 +2085,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:40 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_false.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_false.yaml
index 3e4e6c31a5a..1a8032def5a 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_false.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_false.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/",
+ "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 99, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/"}}'
+ 102, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/"}}'
headers:
Accept:
- application/json
@@ -20,11 +20,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '844'
+ - '849'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -36,24 +36,24 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"844\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/99/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/102/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 99, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 102, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 99,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/99\"\n },\n \"title\":
+ 102,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/102\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n \"url_ui\":
- \"http://localhost:8080/test/99\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n \"url_ui\":
+ \"http://localhost:8080/test/102\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:40 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/",
+ null, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 99, "url_ui": "http://localhost:8080/test/99", "url_api": "http://localhost:8080/api/v2/tests/99/"},
- "finding_count": 5, "findings": {"new": [{"id": 270, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/270",
- "url_api": "http://localhost:8080/api/v2/findings/270/"}, {"id": 271, "title":
+ 102, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/"},
+ "finding_count": 5, "findings": {"new": [{"id": 277, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/277",
+ "url_api": "http://localhost:8080/api/v2/findings/277/"}, {"id": 278, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/271", "url_api":
- "http://localhost:8080/api/v2/findings/271/"}, {"id": 269, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/278", "url_api":
+ "http://localhost:8080/api/v2/findings/278/"}, {"id": 276, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/269", "url_api": "http://localhost:8080/api/v2/findings/269/"},
- {"id": 272, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/272", "url_api":
- "http://localhost:8080/api/v2/findings/272/"}, {"id": 273, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/276", "url_api": "http://localhost:8080/api/v2/findings/276/"},
+ {"id": 279, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/279", "url_api":
+ "http://localhost:8080/api/v2/findings/279/"}, {"id": 280, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/273", "url_api":
- "http://localhost:8080/api/v2/findings/273/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/280", "url_api":
+ "http://localhost:8080/api/v2/findings/280/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -122,11 +122,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2373'
+ - '2378'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -138,84 +138,85 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"2373\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 99, \\\"url_ui\\\": \\\"http://localhost:8080/test/99\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/99/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 270, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 102, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 277, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/270\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/270/\\\"}, {\\\"id\\\": 271, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/277\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/277/\\\"}, {\\\"id\\\": 278, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/271\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/271/\\\"},
- {\\\"id\\\": 269, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/278\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/278/\\\"},
+ {\\\"id\\\": 276, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/269\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/269/\\\"},
- {\\\"id\\\": 272, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/276\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/276/\\\"},
+ {\\\"id\\\": 279, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/272\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/272/\\\"},
- {\\\"id\\\": 273, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/279\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/279/\\\"},
+ {\\\"id\\\": 280, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/273\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/273/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/280\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/280/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 270,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 277,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/270/\",\n \"url_ui\": \"http://localhost:8080/finding/270\"\n
- \ },\n {\n \"id\": 271,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/277/\",\n \"url_ui\": \"http://localhost:8080/finding/277\"\n
+ \ },\n {\n \"id\": 278,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/271/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/271\"\n },\n
- \ {\n \"id\": 269,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/278/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/278\"\n },\n
+ \ {\n \"id\": 276,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/269/\",\n \"url_ui\": \"http://localhost:8080/finding/269\"\n
- \ },\n {\n \"id\": 272,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/276/\",\n \"url_ui\": \"http://localhost:8080/finding/276\"\n
+ \ },\n {\n \"id\": 279,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/272/\",\n \"url_ui\":
- \"http://localhost:8080/finding/272\"\n },\n {\n \"id\":
- 273,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/279/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/279\"\n },\n {\n \"id\":
+ 280,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/273/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/273\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/280/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/280\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 99,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/99\"\n },\n \"title\":
+ 102,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/102\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/99/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/99\",\n \"user\": null\n }\n}\n"
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/102\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -224,7 +225,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:05:40 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Transfer-Encoding:
- chunked
status:
@@ -244,17 +245,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:42.099+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:16.826+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 17fe93c7-5bf9-467b-bbcb-8fa2bc07e43b
+ - a7878fbc-2f3e-4411-84e7-2d235e4a2757
Atl-Traceid:
- - 17fe93c75bf9467bbbcb8fa2bc07e43b
+ - a7878fbc2f3e441184e72d235e4a2757
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -264,9 +265,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:42 GMT
+ - Fri, 16 Jan 2026 21:00:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -274,7 +275,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=314,atl-edge;dur=312,atl-edge-internal;dur=14,atl-edge-upstream;dur=298,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="fVcWff9aXSZu59efyJTlC2FqPEa-YsyeUSkTl6G-_gQIGiwstO5qlg==",cdn-downstream-fbl;dur=318
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=272,atl-edge;dur=249,atl-edge-internal;dur=14,atl-edge-upstream;dur=235,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="aYUoO8_Tp7LkQ0AXEM5XNPiGL2XTrfbpA_vnzNlTurz5WIciMldZAw==",cdn-downstream-fbl;dur=275
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -284,19 +285,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0e61cdf08a154ac7d647c2dc742467a6.cloudfront.net (CloudFront)
+ - 1.1 d1f45df4933065053cea3fd574dc6f20.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - fVcWff9aXSZu59efyJTlC2FqPEa-YsyeUSkTl6G-_gQIGiwstO5qlg==
+ - aYUoO8_Tp7LkQ0AXEM5XNPiGL2XTrfbpA_vnzNlTurz5WIciMldZAw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - 170648f2da99cf984eaa727c1b990b5e
+ - c719c13f3e298f0a5f67e339fdf3df66
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -316,7 +321,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -330,9 +335,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 9d2eec3c-15be-4858-a6e4-b4a65819d4e6
+ - c58ef967-92fb-4590-a5d1-4cdb70482315
Atl-Traceid:
- - 9d2eec3c15be4858a6e4b4a65819d4e6
+ - c58ef96792fb4590a5d14cdb70482315
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -342,9 +347,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:43 GMT
+ - Fri, 16 Jan 2026 21:00:17 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -352,7 +357,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=535,atl-edge;dur=533,atl-edge-internal;dur=14,atl-edge-upstream;dur=519,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="PnuirW0REokjH1Xf_IegqOAj2voFnM22EY6mspi2bNBtWE2ZDgejsw==",cdn-downstream-fbl;dur=539
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=427,atl-edge;dur=404,atl-edge-internal;dur=16,atl-edge-upstream;dur=388,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="yrAU2TYBfOPkPm_8AlqzoORka_nY-AC1BB02yNfXJe0T0Py64J7Ofg==",cdn-downstream-fbl;dur=430
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -362,22 +367,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 900141041f08038f9452e4f1a092ecd2.cloudfront.net (CloudFront)
+ - 1.1 163ba804bc3aef9b5b1ce185b475d852.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - PnuirW0REokjH1Xf_IegqOAj2voFnM22EY6mspi2bNBtWE2ZDgejsw==
+ - yrAU2TYBfOPkPm_8AlqzoORka_nY-AC1BB02yNfXJe0T0Py64J7Ofg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - ff3de42ec89f9d4c362402fbbfb3687f
+ - 02de80add65d4ab27d9856b6c75e82fd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -387,21 +396,21 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/16]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/82]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title -
- (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]\n*Defect Dojo link:*
- http://localhost:8080/finding/275 (275)\n*Severity:* High\n *Due Date:* Aug.
- 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]\n*Defect Dojo link:*
+ http://localhost:8080/finding/282 (282)\n*Severity:* High\n *Due Date:* Feb.
+ 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -411,9 +420,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]\n*Defect
- Dojo link:* http://localhost:8080/finding/274 (274)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]\n*Defect
+ Dojo link:* http://localhost:8080/finding/281 (281)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -433,21 +442,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3606'
+ - '3607'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21277","key":"NTEST-3098","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21277"}'
+ string: '{"id":"24909","key":"NTEST-3194","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24909"}'
headers:
Atl-Request-Id:
- - 77ed6c41-baf2-4cdd-9e99-20ea9a848896
+ - 21416424-3b3b-4d35-8596-f12cf6eaf218
Atl-Traceid:
- - 77ed6c41baf24cdd9e9920ea9a848896
+ - 214164243b3b4d358596f12cf6eaf218
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -455,9 +464,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:45 GMT
+ - Fri, 16 Jan 2026 21:00:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -465,7 +474,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=810,atl-edge;dur=808,atl-edge-internal;dur=13,atl-edge-upstream;dur=795,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="alz9BgZZHA2TPWx_p8do5FpgGocVACQKo9h3CxZDrsm-sw0f8JgfsA==",cdn-downstream-fbl;dur=814
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=756,atl-edge;dur=733,atl-edge-internal;dur=16,atl-edge-upstream;dur=717,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="nRIy54hPB24rTh4n_4AEGjDDM2EZ4Qm3EjF4Af0an5SeFkxW7pVl-Q==",cdn-downstream-fbl;dur=761
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -475,19 +484,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 00f0469d54a973389150a36c64065326.cloudfront.net (CloudFront)
+ - 1.1 f351054a0917e7cc21ba99141c9ae602.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - alz9BgZZHA2TPWx_p8do5FpgGocVACQKo9h3CxZDrsm-sw0f8JgfsA==
+ - nRIy54hPB24rTh4n_4AEGjDDM2EZ4Qm3EjF4Af0an5SeFkxW7pVl-Q==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P1
X-Arequestid:
- - 4b71e2a88e991c547a827d4be4b8ed14
+ - 70f9e45b868afa4fe148dfde77999825
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -507,33 +520,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3098
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3194
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21277","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21277","key":"NTEST-3098","fields":{"statuscategorychangedate":"2025-07-25T21:05:45.158+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24909","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24909","key":"NTEST-3194","fields":{"statuscategorychangedate":"2026-01-16T22:00:18.196+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3098/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3098/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:44.970+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012b3:","updated":"2025-07-25T21:05:45.051+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3194/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3194/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:17.936+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014h3:","updated":"2026-01-16T22:00:18.039+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/16]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/82]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]\n*Defect Dojo
- link:* http://localhost:8080/finding/275 (275)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]\n*Defect Dojo
+ link:* http://localhost:8080/finding/282 (282)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -543,9 +556,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]\n*Defect
- Dojo link:* http://localhost:8080/finding/274 (274)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]\n*Defect
+ Dojo link:* http://localhost:8080/finding/281 (281)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -555,12 +568,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21277/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24909/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 5fe14a49-6c14-454d-8da1-8c14efff7e87
+ - ec827290-590d-4cd0-ba66-85601ad6721a
Atl-Traceid:
- - 5fe14a496c14454d8da18c14efff7e87
+ - ec827290590d4cd0ba6685601ad6721a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -570,9 +583,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:46 GMT
+ - Fri, 16 Jan 2026 21:00:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -580,7 +593,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=421,atl-edge;dur=419,atl-edge-internal;dur=15,atl-edge-upstream;dur=404,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="o82MMUsXK6jF9BgoJFD3bKVlVZkKVnNAF9ChVCn4gVvmYAjBytUQrw==",cdn-downstream-fbl;dur=424
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=384,atl-edge;dur=296,atl-edge-internal;dur=17,atl-edge-upstream;dur=277,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="ziacWutdbqZKBfLOLvCAmz0QNIEoTOXXHxJQNlT66iV8pLcSGITtbQ==",cdn-downstream-fbl;dur=388
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -590,19 +603,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a97b28e298ec5907aa1d86d22bc232a0.cloudfront.net (CloudFront)
+ - 1.1 a2d53e5681632128f329f3657122d00e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - o82MMUsXK6jF9BgoJFD3bKVlVZkKVnNAF9ChVCn4gVvmYAjBytUQrw==
+ - ziacWutdbqZKBfLOLvCAmz0QNIEoTOXXHxJQNlT66iV8pLcSGITtbQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P2
X-Arequestid:
- - b8fb7077a7ae9d7b172aabf830dcfdb3
+ - d35fe3e10a12abe80c5530e1d643cc1f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -622,33 +639,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21277
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24909
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21277","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21277","key":"NTEST-3098","fields":{"statuscategorychangedate":"2025-07-25T21:05:45.158+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24909","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24909","key":"NTEST-3194","fields":{"statuscategorychangedate":"2026-01-16T22:00:18.196+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3098/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3098/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:44.970+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012b3:","updated":"2025-07-25T21:05:45.051+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3194/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3194/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:17.936+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014h3:","updated":"2026-01-16T22:00:18.039+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/16]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/82]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/275]\n*Defect Dojo
- link:* http://localhost:8080/finding/275 (275)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/282]\n*Defect Dojo
+ link:* http://localhost:8080/finding/282 (282)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -658,9 +675,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/274]\n*Defect
- Dojo link:* http://localhost:8080/finding/274 (274)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/281]\n*Defect
+ Dojo link:* http://localhost:8080/finding/281 (281)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -670,12 +687,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21277/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24909/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - b0a2637b-2c9a-4eea-889a-22492fcada3f
+ - 59fd4927-98db-4f24-a10e-1624b6cd40e8
Atl-Traceid:
- - b0a2637b2c9a4eea889a22492fcada3f
+ - 59fd492798db4f24a10e1624b6cd40e8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -685,9 +702,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:47 GMT
+ - Fri, 16 Jan 2026 21:00:19 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -695,7 +712,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=410,atl-edge;dur=409,atl-edge-internal;dur=16,atl-edge-upstream;dur=393,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="YiB0Exd-t64k699fGwnr_UHgEQehKk4YaWsQngWq3QcPIEhIZbc2kA==",cdn-downstream-fbl;dur=450
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=298,atl-edge;dur=273,atl-edge-internal;dur=18,atl-edge-upstream;dur=256,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="AxWBCrnNBuRl902_lAk3y0wtrk86lBc3yHtk-vXNSewQk_wgSKTBvw==",cdn-downstream-fbl;dur=302
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -705,19 +722,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 864ad552768d61fe107467e5c647c77a.cloudfront.net (CloudFront)
+ - 1.1 1d705d457e94d247f2503bbd3e1f49b6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - YiB0Exd-t64k699fGwnr_UHgEQehKk4YaWsQngWq3QcPIEhIZbc2kA==
+ - AxWBCrnNBuRl902_lAk3y0wtrk86lBc3yHtk-vXNSewQk_wgSKTBvw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P1
X-Arequestid:
- - a5f952a6194b2caec88b76f81ede1394
+ - aed23e3c7e618f89c7670078f61548d7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -737,17 +758,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:49.085+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:19.555+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 43a1bd58-cf7c-4dc0-9897-56bbb99637db
+ - 68d4d7a7-7269-439f-b8e2-f7940774b792
Atl-Traceid:
- - 43a1bd58cf7c4dc0989756bbb99637db
+ - 68d4d7a77269439fb8e2f7940774b792
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -757,9 +778,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:49 GMT
+ - Fri, 16 Jan 2026 21:00:19 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -767,7 +788,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=329,atl-edge;dur=323,atl-edge-internal;dur=14,atl-edge-upstream;dur=310,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="PL2dOfYGkTlt-KYwo8gfCC85SVIMQnGqMe_CCKoJZs3Zvr8-3JFbcQ==",cdn-downstream-fbl;dur=332
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=200,atl-edge;dur=177,atl-edge-internal;dur=15,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="6feDP3Bw_0BQliWW115OsOsDf4JStuNxQuHpetANt_i7RiSPNjxuWA==",cdn-downstream-fbl;dur=204
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -777,19 +798,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 853f4fb2226327c7e93e1af35b3e6c8c.cloudfront.net (CloudFront)
+ - 1.1 f6992241dd15e99fe1ce21d807856f16.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - PL2dOfYGkTlt-KYwo8gfCC85SVIMQnGqMe_CCKoJZs3Zvr8-3JFbcQ==
+ - 6feDP3Bw_0BQliWW115OsOsDf4JStuNxQuHpetANt_i7RiSPNjxuWA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 82d3bd028d186bf88c591c658fc64a09
+ - 5912eb4d795aa42abe709dc186658442
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -809,7 +834,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -823,9 +848,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 050df3b9-1368-4140-ade0-7888cf8a5c24
+ - 2f05b38f-b406-42cc-8f0b-3090bc59f6dd
Atl-Traceid:
- - 050df3b913684140ade07888cf8a5c24
+ - 2f05b38fb40642cc8f0b3090bc59f6dd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -835,9 +860,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:50 GMT
+ - Fri, 16 Jan 2026 21:00:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -845,7 +870,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=485,atl-edge;dur=483,atl-edge-internal;dur=15,atl-edge-upstream;dur=468,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="wRNFra8GFSTaBGzJiSAEiM-u2OkRvIw23qRfaRt-vsI6p-I5bszvjg==",cdn-downstream-fbl;dur=489
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=398,atl-edge;dur=375,atl-edge-internal;dur=17,atl-edge-upstream;dur=358,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="bvr6cBvL5iyfpnGVmclzCJctyUcDeZ9aq8WCNwXmfMBL63tcfFeMeA==",cdn-downstream-fbl;dur=401
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -855,22 +880,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 72d783f19e38dd5db23a648a65feb4f2.cloudfront.net (CloudFront)
+ - 1.1 5a94950aa5895e56460f82b3086d0b0c.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - wRNFra8GFSTaBGzJiSAEiM-u2OkRvIw23qRfaRt-vsI6p-I5bszvjg==
+ - bvr6cBvL5iyfpnGVmclzCJctyUcDeZ9aq8WCNwXmfMBL63tcfFeMeA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - 4744e3345f92e315d71a8d311b776933
+ - d35072cf1f5809cc57542d24e117fe7d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -880,29 +909,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/17] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/83] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]\n*Defect
- Dojo link:* http://localhost:8080/finding/276 (276)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]\n*Defect
+ Dojo link:* http://localhost:8080/finding/283 (283)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -932,9 +961,9 @@ interactions:
Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]\n*Defect Dojo
- link:* http://localhost:8080/finding/278 (278)\n*Severity:* Medium\n *Due Date:*
- Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]\n*Defect Dojo
+ link:* http://localhost:8080/finding/285 (285)\n*Severity:* Medium\n *Due Date:*
+ April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -971,21 +1000,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7076'
+ - '7077'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21278","key":"NTEST-3099","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21278"}'
+ string: '{"id":"24910","key":"NTEST-3195","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24910"}'
headers:
Atl-Request-Id:
- - a814049a-9956-4d8d-bf1b-adb68ff948ec
+ - 381bdc77-3e75-4e60-915b-6efe6326b84c
Atl-Traceid:
- - a814049a99564d8dbf1badb68ff948ec
+ - 381bdc773e754e60915b6efe6326b84c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -993,9 +1022,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:52 GMT
+ - Fri, 16 Jan 2026 21:00:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1003,7 +1032,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=933,atl-edge;dur=930,atl-edge-internal;dur=14,atl-edge-upstream;dur=917,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="Y4Vl0bYWG5pMpvQF_iyuuUKokgAR95oejcYJDCpqfgkdUy73XACa-Q==",cdn-downstream-fbl;dur=937
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=806,atl-edge;dur=782,atl-edge-internal;dur=19,atl-edge-upstream;dur=761,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="0mi-Zd3Q5aY_ietfTn3fBH9j4shKTkniHp-zL-N8mjMccNrG_diSYg==",cdn-downstream-fbl;dur=810
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1013,19 +1042,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1646a7b70ef690faac638f9c1dd2364.cloudfront.net (CloudFront)
+ - 1.1 6fc2d4bdda3d8efb927d086a87e8483e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Y4Vl0bYWG5pMpvQF_iyuuUKokgAR95oejcYJDCpqfgkdUy73XACa-Q==
+ - 0mi-Zd3Q5aY_ietfTn3fBH9j4shKTkniHp-zL-N8mjMccNrG_diSYg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - eaec288f3a747507d7467bcbce71b0a8
+ - 6ef268f4e92fd00166a63cb4953cee7b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1045,41 +1078,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3099
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3195
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21278","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21278","key":"NTEST-3099","fields":{"statuscategorychangedate":"2025-07-25T21:05:52.173+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24910","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24910","key":"NTEST-3195","fields":{"statuscategorychangedate":"2026-01-16T22:00:20.836+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3099/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3099/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:51.923+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bb:","updated":"2025-07-25T21:05:52.023+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3195/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3195/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:20.526+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hb:","updated":"2026-01-16T22:00:20.631+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/17]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/83]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]\n*Defect
- Dojo link:* http://localhost:8080/finding/276 (276)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]\n*Defect
+ Dojo link:* http://localhost:8080/finding/283 (283)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1109,9 +1142,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]\n*Defect
- Dojo link:* http://localhost:8080/finding/278 (278)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]\n*Defect
+ Dojo link:* http://localhost:8080/finding/285 (285)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1138,12 +1171,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21278/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24910/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4007fbf4-cf49-463a-b228-674d7cf3eddb
+ - 5db8a4ee-300c-4b12-a2c9-e10bf6c9ddde
Atl-Traceid:
- - 4007fbf4cf49463ab228674d7cf3eddb
+ - 5db8a4ee300c4b12a2c9e10bf6c9ddde
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1153,9 +1186,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:53 GMT
+ - Fri, 16 Jan 2026 21:00:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1163,7 +1196,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=416,atl-edge-internal;dur=15,atl-edge-upstream;dur=401,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="Ttbp2QGLHFTk6bGAtk_leruipjDXepQ65SlPKyNHLnhQgwXqWMiudQ==",cdn-downstream-fbl;dur=422
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=412,atl-edge;dur=323,atl-edge-internal;dur=16,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="dCdFQy0qOnAhMSVUVJL_NWugepaNK26oh4puQFiS4_nx-a_0Wpk0Uw==",cdn-downstream-fbl;dur=416
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1173,19 +1206,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3b6a2cc8a3456f4a2dc3bfd506c4344.cloudfront.net (CloudFront)
+ - 1.1 a70648d67d4a5a7f7eed7b14595ab4fe.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Ttbp2QGLHFTk6bGAtk_leruipjDXepQ65SlPKyNHLnhQgwXqWMiudQ==
+ - dCdFQy0qOnAhMSVUVJL_NWugepaNK26oh4puQFiS4_nx-a_0Wpk0Uw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - 0b56a60ef182724e44a47bf9a4e5391a
+ - 832f83457b97b7503c32034b64b4fdc8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1205,41 +1242,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21278
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24910
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21278","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21278","key":"NTEST-3099","fields":{"statuscategorychangedate":"2025-07-25T21:05:52.173+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24910","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24910","key":"NTEST-3195","fields":{"statuscategorychangedate":"2026-01-16T22:00:20.836+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3099/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3099/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:51.923+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bb:","updated":"2025-07-25T21:05:52.023+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3195/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3195/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:20.526+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hb:","updated":"2026-01-16T22:00:20.631+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/17]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/83]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/276]\n*Defect
- Dojo link:* http://localhost:8080/finding/276 (276)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/283]\n*Defect
+ Dojo link:* http://localhost:8080/finding/283 (283)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1269,9 +1306,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/278]\n*Defect
- Dojo link:* http://localhost:8080/finding/278 (278)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/285]\n*Defect
+ Dojo link:* http://localhost:8080/finding/285 (285)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1298,12 +1335,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21278/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24910/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e3bee990-7452-43b6-9507-23baf939baae
+ - 624bc379-2c89-47a7-b829-c7a91e303008
Atl-Traceid:
- - e3bee990745243b6950723baf939baae
+ - 624bc3792c8947a7b829c7a91e303008
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1313,9 +1350,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:55 GMT
+ - Fri, 16 Jan 2026 21:00:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1323,7 +1360,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=429,atl-edge;dur=427,atl-edge-internal;dur=15,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="2NtjWkejrq94fawe-Y_HvMMwmkOf4BFnpFAfAp4Fa0FGbcH8eSdEtg==",cdn-downstream-fbl;dur=433
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=301,atl-edge;dur=278,atl-edge-internal;dur=16,atl-edge-upstream;dur=262,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Oojp2Mosh54vbpgiE_o-j7BDPGcrTuRoOb_ygWR6QHb7FGC_DShloA==",cdn-downstream-fbl;dur=305
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1333,19 +1370,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3468af8a053b0ff241626aed87444af8.cloudfront.net (CloudFront)
+ - 1.1 e9b2affad5fcea678c9381d59c2d8e5c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 2NtjWkejrq94fawe-Y_HvMMwmkOf4BFnpFAfAp4Fa0FGbcH8eSdEtg==
+ - Oojp2Mosh54vbpgiE_o-j7BDPGcrTuRoOb_ygWR6QHb7FGC_DShloA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 1d8a47401a3daee37937b11d788661b5
+ - cfc978652d95c5b4517d1cfabde50fb9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1365,17 +1406,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:05:56.172+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:22.299+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 744df4da-95ad-476a-9cc4-6ae79342da0a
+ - 97a8a076-c422-4aae-87dd-ec0205d5d3eb
Atl-Traceid:
- - 744df4da95ad476a9cc46ae79342da0a
+ - 97a8a076c4224aae87ddec0205d5d3eb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1385,9 +1426,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:56 GMT
+ - Fri, 16 Jan 2026 21:00:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1395,7 +1436,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=320,atl-edge-internal;dur=12,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="IIWQkdT3GZmUtzZEYdtOZxNQKtveoY_rZqG5Ov72-Lzgos3Y8rr5VQ==",cdn-downstream-fbl;dur=324
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=287,atl-edge;dur=196,atl-edge-internal;dur=13,atl-edge-upstream;dur=183,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="D5TAZMOAEF5IGKkdEV7Y5a_9v0DRRExZHo36ApV6UDOpxB0936_-tA==",cdn-downstream-fbl;dur=291
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1405,19 +1446,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e5b020a801bdf1ad3db7e2da019dad6c.cloudfront.net (CloudFront)
+ - 1.1 9b688924e5b0f0b5e4c639d19cb145f0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IIWQkdT3GZmUtzZEYdtOZxNQKtveoY_rZqG5Ov72-Lzgos3Y8rr5VQ==
+ - D5TAZMOAEF5IGKkdEV7Y5a_9v0DRRExZHo36ApV6UDOpxB0936_-tA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - b92088c8e322c11c8cbc7fa943496bfb
+ - 13517bb05b1b339d2db14e6539ddba74
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1437,7 +1482,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1451,9 +1496,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - e7f219a7-fb0d-4d45-b4b4-4a1ccabd369b
+ - 8d47b628-5b21-4188-ac19-b2de773f9456
Atl-Traceid:
- - e7f219a7fb0d4d45b4b44a1ccabd369b
+ - 8d47b6285b214188ac19b2de773f9456
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1463,9 +1508,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:58 GMT
+ - Fri, 16 Jan 2026 21:00:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1473,7 +1518,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=987,atl-edge;dur=986,atl-edge-internal;dur=15,atl-edge-upstream;dur=970,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="Q1KO_ulUkq7eE2YAxm6b4t2xO2hirReDEKCsJnCmiuqVLhC2Me-1Ig==",cdn-downstream-fbl;dur=991
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=467,atl-edge;dur=444,atl-edge-internal;dur=17,atl-edge-upstream;dur=427,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="jRsiTjqWVqlOW33MzLJWmGTsmI5TRrr1koI6pQPFrly5n1J9whFXwQ==",cdn-downstream-fbl;dur=470
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1483,22 +1528,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f64b5e1795622ac1fd367fad798c10.cloudfront.net (CloudFront)
+ - 1.1 4bb08411ba89edb53d3520e2681c55f2.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Q1KO_ulUkq7eE2YAxm6b4t2xO2hirReDEKCsJnCmiuqVLhC2Me-1Ig==
+ - jRsiTjqWVqlOW33MzLJWmGTsmI5TRrr1koI6pQPFrly5n1J9whFXwQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - feb3ffb810956dedf2a8d3531a2f0612
+ - 523892a009aa4b26b7748808bbe02f61
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1508,18 +1557,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/18] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/84] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/277]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/284]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/277]\n*Defect Dojo link:* http://localhost:8080/finding/277
- (277)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/284]\n*Defect Dojo link:* http://localhost:8080/finding/284
+ (284)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1538,21 +1587,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2196'
+ - '2198'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21279","key":"NTEST-3100","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21279"}'
+ string: '{"id":"24911","key":"NTEST-3196","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24911"}'
headers:
Atl-Request-Id:
- - 671babb7-bf43-4e1d-a453-b00fc6cad831
+ - c0f4ac0c-1b4e-40eb-aa6a-bdeff19760bf
Atl-Traceid:
- - 671babb7bf434e1da453b00fc6cad831
+ - c0f4ac0c1b4e40ebaa6abdeff19760bf
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1560,9 +1609,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:05:59 GMT
+ - Fri, 16 Jan 2026 21:00:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1570,7 +1619,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=888,atl-edge;dur=886,atl-edge-internal;dur=14,atl-edge-upstream;dur=872,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="INZzOeg05GFosj7w5PLyvyzxHBhWXEyM_Oq__xLuIjI6gfMZHTaEXw==",cdn-downstream-fbl;dur=892
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=694,atl-edge;dur=671,atl-edge-internal;dur=15,atl-edge-upstream;dur=656,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="zu4_nxhDnE10nefNUCNDsRDxXlyMDYh4SRBo-5Qp9999BYgNLsQTtA==",cdn-downstream-fbl;dur=698
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1580,19 +1629,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a8d63eee2fd456f0e1e6772e38461220.cloudfront.net (CloudFront)
+ - 1.1 99f4e9fd554682341f34ffd484d44998.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - INZzOeg05GFosj7w5PLyvyzxHBhWXEyM_Oq__xLuIjI6gfMZHTaEXw==
+ - zu4_nxhDnE10nefNUCNDsRDxXlyMDYh4SRBo-5Qp9999BYgNLsQTtA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P1
X-Arequestid:
- - 7088f58b98bc5bcb3128ba3d82cb9613
+ - 3d2bc4ecb9ef54fdb8373352e6e9a2e0
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1612,30 +1665,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3100
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3196
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21279","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21279","key":"NTEST-3100","fields":{"statuscategorychangedate":"2025-07-25T21:05:59.736+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24911","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24911","key":"NTEST-3196","fields":{"statuscategorychangedate":"2026-01-16T22:00:23.546+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3100/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3100/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:59.500+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bj:","updated":"2025-07-25T21:05:59.596+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3196/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3196/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:23.325+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hj:","updated":"2026-01-16T22:00:23.393+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/18]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/84]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/277]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/284]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/277]\n*Defect Dojo link:* http://localhost:8080/finding/277
- (277)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/284]\n*Defect Dojo link:* http://localhost:8080/finding/284
+ (284)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1644,12 +1697,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21279/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24911/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 684edbd0-6281-4090-b9f5-d1925208b512
+ - 79b86940-bd52-4930-b27a-0264e2d1b57a
Atl-Traceid:
- - 684edbd062814090b9f5d1925208b512
+ - 79b86940bd524930b27a0264e2d1b57a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1659,9 +1712,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:01 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1669,7 +1722,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=413,atl-edge-internal;dur=13,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="Y2z0QUfJtsxlvceLP7_WpLQN-HN_N9bNpKJve0XLFXtYcQhsrQQSdg==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=269,atl-edge;dur=245,atl-edge-internal;dur=18,atl-edge-upstream;dur=226,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="-VqLmSAbD8tjrMa_dNKbF6TvtUtLiVn4zniM5OWopifJ--mjf7m3QA==",cdn-downstream-fbl;dur=274
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1679,19 +1732,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 701510d744831cda18c48da0cb099172.cloudfront.net (CloudFront)
+ - 1.1 a42ce842e0f60814700ead82353e9f08.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Y2z0QUfJtsxlvceLP7_WpLQN-HN_N9bNpKJve0XLFXtYcQhsrQQSdg==
+ - -VqLmSAbD8tjrMa_dNKbF6TvtUtLiVn4zniM5OWopifJ--mjf7m3QA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - 07c95cafd7d6561c228f44a0b405b8ac
+ - b1573704c2972264068c8ffa8fea2372
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1711,30 +1768,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21279
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24911
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21279","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21279","key":"NTEST-3100","fields":{"statuscategorychangedate":"2025-07-25T21:05:59.736+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24911","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24911","key":"NTEST-3196","fields":{"statuscategorychangedate":"2026-01-16T22:00:23.546+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3100/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3100/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:05:59.500+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bj:","updated":"2025-07-25T21:05:59.596+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3196/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3196/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:23.325+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hj:","updated":"2026-01-16T22:00:23.393+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/18]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/84]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/100]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/103]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/277]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/284]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/277]\n*Defect Dojo link:* http://localhost:8080/finding/277
- (277)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/284]\n*Defect Dojo link:* http://localhost:8080/finding/284
+ (284)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1743,12 +1800,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21279/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24911/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 46f16bb0-28da-46b1-9927-ebbc6a83b018
+ - 8da58679-1b15-4300-9e9e-8f1876126e4c
Atl-Traceid:
- - 46f16bb028da46b19927ebbc6a83b018
+ - 8da586791b1543009e9e8f1876126e4c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1758,9 +1815,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:02 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1768,7 +1825,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=429,atl-edge;dur=427,atl-edge-internal;dur=17,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="uu54N_Yi8LXII8uplkYQOhczRcQwHeYtsx6vsGS0m7mGSdpiuFxUkQ==",cdn-downstream-fbl;dur=434
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=402,atl-edge;dur=311,atl-edge-internal;dur=16,atl-edge-upstream;dur=295,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="rJmtGFqIk04CX9Fahr1ZOCNG9C-8xK535Uehx81f43D7ad-PhNl8dg==",cdn-downstream-fbl;dur=405
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1778,19 +1835,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6eb4925a459e5104745cfd7f77596766.cloudfront.net (CloudFront)
+ - 1.1 ab0145b9843311a8d571dbd6cb58e86a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - uu54N_Yi8LXII8uplkYQOhczRcQwHeYtsx6vsGS0m7mGSdpiuFxUkQ==
+ - rJmtGFqIk04CX9Fahr1ZOCNG9C-8xK535Uehx81f43D7ad-PhNl8dg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 5bbf18ec31ee30266eb145c1a9279182
+ - b19ca253b71954cbaf30ac7c4cba15f1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1799,14 +1860,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/",
+ "url_ui": "http://localhost:8080/test/103", "url_api": "http://localhost:8080/api/v2/tests/103/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 100, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/"}}'
+ 103, "url_ui": "http://localhost:8080/test/103", "url_api": "http://localhost:8080/api/v2/tests/103/"}}'
headers:
Accept:
- application/json
@@ -1821,7 +1882,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1835,22 +1896,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/100/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/103\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/103/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 100, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 103, \\\"url_ui\\\": \\\"http://localhost:8080/test/103\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/103/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1860,11 +1921,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 100,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/100\"\n },\n \"title\":
+ 103,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/103/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/103\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n \"url_ui\":
- \"http://localhost:8080/test/100\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/103/\",\n \"url_ui\":
+ \"http://localhost:8080/test/103\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1873,7 +1934,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:02 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Transfer-Encoding:
- chunked
status:
@@ -1882,32 +1943,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/",
+ null, "url_ui": "http://localhost:8080/test/103", "url_api": "http://localhost:8080/api/v2/tests/103/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 100, "url_ui": "http://localhost:8080/test/100", "url_api": "http://localhost:8080/api/v2/tests/100/"},
- "finding_count": 5, "findings": {"new": [{"id": 275, "title": "2222Regular Expression
+ 103, "url_ui": "http://localhost:8080/test/103", "url_api": "http://localhost:8080/api/v2/tests/103/"},
+ "finding_count": 5, "findings": {"new": [{"id": 282, "title": "2222Regular Expression
Denial of Service Different Title - (Negotiator, <= 0.6.0)", "severity": "High",
- "url_ui": "http://localhost:8080/finding/275", "url_api": "http://localhost:8080/api/v2/findings/275/"},
- {"id": 276, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
+ "url_ui": "http://localhost:8080/finding/282", "url_api": "http://localhost:8080/api/v2/findings/282/"},
+ {"id": 283, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/276",
- "url_api": "http://localhost:8080/api/v2/findings/276/"}, {"id": 274, "title":
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/283",
+ "url_api": "http://localhost:8080/api/v2/findings/283/"}, {"id": 281, "title":
"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/274", "url_api":
- "http://localhost:8080/api/v2/findings/274/"}, {"id": 277, "title": "Regular
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/281", "url_api":
+ "http://localhost:8080/api/v2/findings/281/"}, {"id": 284, "title": "Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)", "severity":
- "Medium", "url_ui": "http://localhost:8080/finding/277", "url_api": "http://localhost:8080/api/v2/findings/277/"},
- {"id": 278, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
+ "Medium", "url_ui": "http://localhost:8080/finding/284", "url_api": "http://localhost:8080/api/v2/findings/284/"},
+ {"id": 285, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/278",
- "url_api": "http://localhost:8080/api/v2/findings/278/"}], "reactivated": [],
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/285",
+ "url_api": "http://localhost:8080/api/v2/findings/285/"}], "reactivated": [],
"mitigated": [], "untouched": []}}'
headers:
Accept:
@@ -1923,7 +1984,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1937,84 +1998,84 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2458\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/103\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/103/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 100, \\\"url_ui\\\": \\\"http://localhost:8080/test/100\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/100/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 275, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 103, \\\"url_ui\\\": \\\"http://localhost:8080/test/103\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/103/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 282, \\\"title\\\": \\\"2222Regular
Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\\\",
- \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/275\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/275/\\\"}, {\\\"id\\\":
- 276, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
+ \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/282\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/282/\\\"}, {\\\"id\\\":
+ 283, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/276\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/276/\\\"}, {\\\"id\\\": 274, \\\"title\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/283\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/283/\\\"}, {\\\"id\\\": 281, \\\"title\\\":
\\\"Regular Expression Denial of Service Different Title - (Negotiator, <=
- 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/274\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/274/\\\"}, {\\\"id\\\":
- 277, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
+ 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/281\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/281/\\\"}, {\\\"id\\\":
+ 284, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/277\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/277/\\\"},
- {\\\"id\\\": 278, \\\"title\\\": \\\"2222Remote Code Execution Different Title
+ \\\"http://localhost:8080/finding/284\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/284/\\\"},
+ {\\\"id\\\": 285, \\\"title\\\": \\\"2222Remote Code Execution Different Title
- (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1
|| >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 <
6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\":
- \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/278\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/278/\\\"}], \\\"reactivated\\\":
+ \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/285\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/285/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 275,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 282,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service Different Title - (Negotiator,
- <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/275/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/275\"\n },\n
- \ {\n \"id\": 276,\n \"severity\": \"High\",\n \"title\":
+ <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/282/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/282\"\n },\n
+ \ {\n \"id\": 283,\n \"severity\": \"High\",\n \"title\":
\"Remote Code Execution Different Title - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4
|| >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 <
6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0
- < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/276/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/276\"\n },\n
- \ {\n \"id\": 274,\n \"severity\": \"Medium\",\n \"title\":
+ < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/283/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/283\"\n },\n
+ \ {\n \"id\": 281,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/274/\",\n \"url_ui\":
- \"http://localhost:8080/finding/274\"\n },\n {\n \"id\":
- 277,\n \"severity\": \"Medium\",\n \"title\": \"Regular
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/281/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/281\"\n },\n {\n \"id\":
+ 284,\n \"severity\": \"Medium\",\n \"title\": \"Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/277/\",\n \"url_ui\": \"http://localhost:8080/finding/277\"\n
- \ },\n {\n \"id\": 278,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/284/\",\n \"url_ui\": \"http://localhost:8080/finding/284\"\n
+ \ },\n {\n \"id\": 285,\n \"severity\": \"Medium\",\n
\ \"title\": \"2222Remote Code Execution Different Title - (Pg, <
2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >=
6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3
|| >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/278/\",\n \"url_ui\": \"http://localhost:8080/finding/278\"\n
+ \"http://localhost:8080/api/v2/findings/285/\",\n \"url_ui\": \"http://localhost:8080/finding/285\"\n
\ }\n ],\n \"reactivated\": [],\n \"untouched\": []\n
\ },\n \"product\": {\n \"id\": 2,\n \"name\": \"Security How-to\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\":
\"http://localhost:8080/product/2\"\n },\n \"product_type\": {\n \"id\":
2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
\ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
- {\n \"id\": 100,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/100\"\n },\n \"title\":
+ {\n \"id\": 103,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/103/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/103\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/100/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/100\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/103/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/103\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -2024,7 +2085,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:02 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_true.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_true.yaml
index 197d001781b..7a61dc0b682 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_true.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_groups_import_with_push_to_jira_not_verified_enforced_verified_globally_true_enforced_verified_jira_true.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/",
+ "url_ui": "http://localhost:8080/test/104", "url_api": "http://localhost:8080/api/v2/tests/104/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 101, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/"}}'
+ 104, "url_ui": "http://localhost:8080/test/104", "url_api": "http://localhost:8080/api/v2/tests/104/"}}'
headers:
Accept:
- application/json
@@ -24,7 +24,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -38,22 +38,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/101/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/104\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/104/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 101, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 104, \\\"url_ui\\\": \\\"http://localhost:8080/test/104\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/104/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 101,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/101\"\n },\n \"title\":
+ 104,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/104/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/104\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n \"url_ui\":
- \"http://localhost:8080/test/101\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/104/\",\n \"url_ui\":
+ \"http://localhost:8080/test/104\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:03 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/",
+ null, "url_ui": "http://localhost:8080/test/104", "url_api": "http://localhost:8080/api/v2/tests/104/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 101, "url_ui": "http://localhost:8080/test/101", "url_api": "http://localhost:8080/api/v2/tests/101/"},
- "finding_count": 5, "findings": {"new": [{"id": 280, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/280",
- "url_api": "http://localhost:8080/api/v2/findings/280/"}, {"id": 281, "title":
+ 104, "url_ui": "http://localhost:8080/test/104", "url_api": "http://localhost:8080/api/v2/tests/104/"},
+ "finding_count": 5, "findings": {"new": [{"id": 287, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/287",
+ "url_api": "http://localhost:8080/api/v2/findings/287/"}, {"id": 288, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/281", "url_api":
- "http://localhost:8080/api/v2/findings/281/"}, {"id": 279, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/288", "url_api":
+ "http://localhost:8080/api/v2/findings/288/"}, {"id": 286, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/279", "url_api": "http://localhost:8080/api/v2/findings/279/"},
- {"id": 282, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/282", "url_api":
- "http://localhost:8080/api/v2/findings/282/"}, {"id": 283, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/286", "url_api": "http://localhost:8080/api/v2/findings/286/"},
+ {"id": 289, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/289", "url_api":
+ "http://localhost:8080/api/v2/findings/289/"}, {"id": 290, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/283", "url_api":
- "http://localhost:8080/api/v2/findings/283/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/290", "url_api":
+ "http://localhost:8080/api/v2/findings/290/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -126,7 +126,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -140,82 +140,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/104\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/104/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 101, \\\"url_ui\\\": \\\"http://localhost:8080/test/101\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/101/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 280, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 104, \\\"url_ui\\\": \\\"http://localhost:8080/test/104\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/104/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 287, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/280\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/280/\\\"}, {\\\"id\\\": 281, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/287\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/287/\\\"}, {\\\"id\\\": 288, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/281\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/281/\\\"},
- {\\\"id\\\": 279, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/288\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/288/\\\"},
+ {\\\"id\\\": 286, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/279\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/279/\\\"},
- {\\\"id\\\": 282, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/286\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/286/\\\"},
+ {\\\"id\\\": 289, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/282\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/282/\\\"},
- {\\\"id\\\": 283, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/289\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/289/\\\"},
+ {\\\"id\\\": 290, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/283\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/283/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/290\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/290/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 280,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 287,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/280/\",\n \"url_ui\": \"http://localhost:8080/finding/280\"\n
- \ },\n {\n \"id\": 281,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/287/\",\n \"url_ui\": \"http://localhost:8080/finding/287\"\n
+ \ },\n {\n \"id\": 288,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/281/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/281\"\n },\n
- \ {\n \"id\": 279,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/288/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/288\"\n },\n
+ \ {\n \"id\": 286,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/279/\",\n \"url_ui\": \"http://localhost:8080/finding/279\"\n
- \ },\n {\n \"id\": 282,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/286/\",\n \"url_ui\": \"http://localhost:8080/finding/286\"\n
+ \ },\n {\n \"id\": 289,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/282/\",\n \"url_ui\":
- \"http://localhost:8080/finding/282\"\n },\n {\n \"id\":
- 283,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/289/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/289\"\n },\n {\n \"id\":
+ 290,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/283/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/283\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/290/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/290\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 101,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/101\"\n },\n \"title\":
+ 104,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/104/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/104\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/101/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/101\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/104/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/104\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -225,7 +225,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:03 GMT
+ - Fri, 16 Jan 2026 21:00:24 GMT
Transfer-Encoding:
- chunked
status:
@@ -245,17 +245,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:06:04.353+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:25.248+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - d9561221-5b11-440a-9feb-3d002b8635e6
+ - 1e711abc-92a9-4ba8-98e7-a67c212376a1
Atl-Traceid:
- - d95612215b11440a9feb3d002b8635e6
+ - 1e711abc92a94ba898e7a67c212376a1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -265,9 +265,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:04 GMT
+ - Fri, 16 Jan 2026 21:00:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -275,7 +275,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=358,atl-edge;dur=355,atl-edge-internal;dur=28,atl-edge-upstream;dur=327,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="O8JrnAWy8LoQystLSHrmFWYGKyVsI3a-xSdFmWohOl6Mfbt_F2XNWQ==",cdn-downstream-fbl;dur=361
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=211,atl-edge;dur=188,atl-edge-internal;dur=13,atl-edge-upstream;dur=174,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="eA6jNQz4ZLrX4Je7ZHqjE_LJWPuzGizt_Hd8m7YoLbphSSiRDGr0CA==",cdn-downstream-fbl;dur=214
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -285,19 +285,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6eb4925a459e5104745cfd7f77596766.cloudfront.net (CloudFront)
+ - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - O8JrnAWy8LoQystLSHrmFWYGKyVsI3a-xSdFmWohOl6Mfbt_F2XNWQ==
+ - eA6jNQz4ZLrX4Je7ZHqjE_LJWPuzGizt_Hd8m7YoLbphSSiRDGr0CA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - d55be117c223ce1f31ce724292611191
+ - a31baf5cd9497731f1f6678e48030439
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -317,7 +321,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -331,9 +335,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - ada3afb7-528a-4895-a692-33be9e4be77e
+ - c9826a99-22a9-4246-b10d-516491411447
Atl-Traceid:
- - ada3afb7528a4895a69233be9e4be77e
+ - c9826a9922a94246b10d516491411447
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -343,9 +347,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:05 GMT
+ - Fri, 16 Jan 2026 21:00:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -353,7 +357,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=503,atl-edge;dur=501,atl-edge-internal;dur=15,atl-edge-upstream;dur=483,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="ElZOqXCAMie_GHm6YFtTWErQiYdVRnoi6uJSnrvs3GleWFY9Ogfkzw==",cdn-downstream-fbl;dur=506
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=326,atl-edge;dur=303,atl-edge-internal;dur=17,atl-edge-upstream;dur=286,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="axyi8hoXAQ8xwNpz_poaylogCelMg1pi_T10IcnrEYRY-MhOGF1PXg==",cdn-downstream-fbl;dur=330
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -363,22 +367,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 903696f43fdfc4019d7102b6711e9fca.cloudfront.net (CloudFront)
+ - 1.1 a0b647da77edd97cca88fb4c4b1a9d08.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ElZOqXCAMie_GHm6YFtTWErQiYdVRnoi6uJSnrvs3GleWFY9Ogfkzw==
+ - axyi8hoXAQ8xwNpz_poaylogCelMg1pi_T10IcnrEYRY-MhOGF1PXg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - 37a388ee3ee29b299019f3b13e3faf73
+ - 11c19c8f38bd97345f0cea83d545544f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -388,21 +396,21 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/22]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/88]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title -
- (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]\n*Defect Dojo link:*
- http://localhost:8080/finding/285 (285)\n*Severity:* High\n *Due Date:* Aug.
- 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]\n*Defect Dojo link:*
+ http://localhost:8080/finding/292 (292)\n*Severity:* High\n *Due Date:* Feb.
+ 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -412,9 +420,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]\n*Defect
- Dojo link:* http://localhost:8080/finding/284 (284)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]\n*Defect
+ Dojo link:* http://localhost:8080/finding/291 (291)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -434,21 +442,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3606'
+ - '3607'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21280","key":"NTEST-3101","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21280"}'
+ string: '{"id":"24912","key":"NTEST-3197","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24912"}'
headers:
Atl-Request-Id:
- - cf73a999-33b2-45a8-8617-835d7dbae5d2
+ - 3f516646-68ef-47e3-a724-8e207ee56674
Atl-Traceid:
- - cf73a99933b245a88617835d7dbae5d2
+ - 3f51664668ef47e3a7248e207ee56674
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -456,9 +464,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:07 GMT
+ - Fri, 16 Jan 2026 21:00:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -466,7 +474,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=924,atl-edge;dur=922,atl-edge-internal;dur=15,atl-edge-upstream;dur=907,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="U6GWVK_uuaBmqXwUHq_jTEbaY5PNRbpMDdz484tDcFBNwlm1r7RpnQ==",cdn-downstream-fbl;dur=927
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=739,atl-edge;dur=716,atl-edge-internal;dur=31,atl-edge-upstream;dur=683,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="oUvK-66vWEcc_Oj5DeaJJ8kHbsF6_dCmCbbwDH09LqUqmfHjwfidWA==",cdn-downstream-fbl;dur=789
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -476,19 +484,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4279a60193243ca3cf62feedc7fe581e.cloudfront.net (CloudFront)
+ - 1.1 d1f45df4933065053cea3fd574dc6f20.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - U6GWVK_uuaBmqXwUHq_jTEbaY5PNRbpMDdz484tDcFBNwlm1r7RpnQ==
+ - oUvK-66vWEcc_Oj5DeaJJ8kHbsF6_dCmCbbwDH09LqUqmfHjwfidWA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P1
X-Arequestid:
- - 4f1f9ec766d1af216855d6d07d6c4b51
+ - b1a94973eab6dd431a8933425b81c8b8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -508,33 +520,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3101
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3197
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21280","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21280","key":"NTEST-3101","fields":{"statuscategorychangedate":"2025-07-25T21:06:07.575+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24912","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24912","key":"NTEST-3197","fields":{"statuscategorychangedate":"2026-01-16T22:00:26.536+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3101/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3101/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:07.256+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012br:","updated":"2025-07-25T21:06:07.344+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3197/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3197/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:26.293+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hr:","updated":"2026-01-16T22:00:26.377+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/22]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/88]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]\n*Defect Dojo
- link:* http://localhost:8080/finding/285 (285)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]\n*Defect Dojo
+ link:* http://localhost:8080/finding/292 (292)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -544,9 +556,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]\n*Defect
- Dojo link:* http://localhost:8080/finding/284 (284)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]\n*Defect
+ Dojo link:* http://localhost:8080/finding/291 (291)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -556,12 +568,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21280/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24912/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ec1c4207-e67a-4ac7-87a9-5ba1e75b012e
+ - 6e1a96f4-a636-41bc-9dc2-ab0d62e28ed3
Atl-Traceid:
- - ec1c4207e67a4ac787a95ba1e75b012e
+ - 6e1a96f4a63641bc9dc2ab0d62e28ed3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -571,9 +583,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:09 GMT
+ - Fri, 16 Jan 2026 21:00:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -581,7 +593,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=407,atl-edge-internal;dur=15,atl-edge-upstream;dur=393,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="rTlvnCs-2H8n3bkDZbJCJStuDYwhFnLGS_rsdNh3GXtNlFDM7eKnEQ==",cdn-downstream-fbl;dur=413
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=388,atl-edge;dur=365,atl-edge-internal;dur=18,atl-edge-upstream;dur=347,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="xU7mYy_9G5Rt9vt3zqk-gN73J90BcrvZaBTmto1w4aDH3sCxIGpB1w==",cdn-downstream-fbl;dur=392
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -591,19 +603,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6f4ca7db93883fe5e25a91018517d110.cloudfront.net (CloudFront)
+ - 1.1 86b6aab4b36e97123c5f76cc2e3ac8ec.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - rTlvnCs-2H8n3bkDZbJCJStuDYwhFnLGS_rsdNh3GXtNlFDM7eKnEQ==
+ - xU7mYy_9G5Rt9vt3zqk-gN73J90BcrvZaBTmto1w4aDH3sCxIGpB1w==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - 84f7dfe0a93a538a89098b0fa46849b5
+ - 5ae386fc9563ddf7a15425acd90376a4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -623,33 +639,33 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21280
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24912
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21280","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21280","key":"NTEST-3101","fields":{"statuscategorychangedate":"2025-07-25T21:06:07.575+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24912","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24912","key":"NTEST-3197","fields":{"statuscategorychangedate":"2026-01-16T22:00:26.536+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3101/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3101/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:07.256+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012br:","updated":"2025-07-25T21:06:07.344+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3197/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3197/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:26.293+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hr:","updated":"2026-01-16T22:00:26.377+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/22]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/88]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]|Active,
+ Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service Different Title
- - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/285]\n*Defect Dojo
- link:* http://localhost:8080/finding/285 (285)\n*Severity:* High\n *Due Date:*
- Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/292]\n*Defect Dojo
+ link:* http://localhost:8080/finding/292 (292)\n*Severity:* High\n *Due Date:*
+ Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -659,9 +675,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/284]\n*Defect
- Dojo link:* http://localhost:8080/finding/284 (284)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service Different Title - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/291]\n*Defect
+ Dojo link:* http://localhost:8080/finding/291 (291)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -671,12 +687,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21280/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24912/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 22d0b3a1-43aa-47b0-b52d-39b95eccf892
+ - 62c99097-ba8a-466b-8a32-35a7ba9880a6
Atl-Traceid:
- - 22d0b3a143aa47b0b52d39b95eccf892
+ - 62c99097ba8a466b8a3235a7ba9880a6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -686,9 +702,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:10 GMT
+ - Fri, 16 Jan 2026 21:00:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -696,7 +712,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=437,atl-edge;dur=435,atl-edge-internal;dur=15,atl-edge-upstream;dur=421,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="Dvu_XLbiYxe7lRCkKJglfPufFPJZIWCnF437ry8gxF5DT9zlRajvLQ==",cdn-downstream-fbl;dur=441
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=284,atl-edge;dur=262,atl-edge-internal;dur=15,atl-edge-upstream;dur=247,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="g3s8-STDMRScz5__raCHEXURhEVjxd-SE3m58oKLzml4P9BAWVt3Jw==",cdn-downstream-fbl;dur=288
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -706,19 +722,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ed90dc86686a84dd5c3571951738e746.cloudfront.net (CloudFront)
+ - 1.1 cef95c13f18c85adb4a10ae72f19bf38.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Dvu_XLbiYxe7lRCkKJglfPufFPJZIWCnF437ry8gxF5DT9zlRajvLQ==
+ - g3s8-STDMRScz5__raCHEXURhEVjxd-SE3m58oKLzml4P9BAWVt3Jw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - dbd7f0b3f33790312d01cca5f07d83be
+ - c59bed75f44566a7bb2e40f5e82d257d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -738,17 +758,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:06:11.464+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:27.740+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - c8421eee-ce31-4401-8a84-3418f1a6c04e
+ - a005a65b-ec07-44fd-b53c-d60683525686
Atl-Traceid:
- - c8421eeece3144018a843418f1a6c04e
+ - a005a65bec0744fdb53cd60683525686
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +778,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:11 GMT
+ - Fri, 16 Jan 2026 21:00:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +788,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=323,atl-edge;dur=317,atl-edge-internal;dur=15,atl-edge-upstream;dur=303,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="WEpr6ucJyEM1rfN0oNxXZD_jKwqAlenXa-Tm9ZnsrLxuB8uV4jwEQA==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,atl-edge;dur=169,atl-edge-internal;dur=13,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="PxeygVE4nOs5olU6pyT0CfSvBF7D7f6v3uUoDWQKmKHEvp0ZQ41g0g==",cdn-downstream-fbl;dur=196
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +798,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6d9ff63cdcc93ca8f7c1714fbd746b66.cloudfront.net (CloudFront)
+ - 1.1 422414d66021e4e123bcb2b5087f7042.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - WEpr6ucJyEM1rfN0oNxXZD_jKwqAlenXa-Tm9ZnsrLxuB8uV4jwEQA==
+ - PxeygVE4nOs5olU6pyT0CfSvBF7D7f6v3uUoDWQKmKHEvp0ZQ41g0g==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - f67233c0b140f7cdf91727575004efe7
+ - d83de736156d496e1f51f1a1207efaab
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,7 +834,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -824,9 +848,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 1b653739-d0e2-41c3-8c3a-95ac7445f575
+ - b778b850-af4a-48cd-b1f6-61bea0596f33
Atl-Traceid:
- - 1b653739d0e241c38c3a95ac7445f575
+ - b778b850af4a48cdb1f661bea0596f33
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -836,9 +860,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:13 GMT
+ - Fri, 16 Jan 2026 21:00:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -846,7 +870,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=506,atl-edge;dur=504,atl-edge-internal;dur=14,atl-edge-upstream;dur=490,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="oivxsIMlvUUiaadYOG1Bx6Ut_XuIJxWHg-gDaaHH2zPJlzESjeidLw==",cdn-downstream-fbl;dur=510
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=368,atl-edge;dur=346,atl-edge-internal;dur=18,atl-edge-upstream;dur=327,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="e9xgc-yuXjBtkSk-oDo1CnT70td0Iaj4nyJcVKlaf2urTSfm8LFdvA==",cdn-downstream-fbl;dur=372
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -856,22 +880,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6eb4925a459e5104745cfd7f77596766.cloudfront.net (CloudFront)
+ - 1.1 8e8ff6f69325d8196c02b63be536a6d0.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - oivxsIMlvUUiaadYOG1Bx6Ut_XuIJxWHg-gDaaHH2zPJlzESjeidLw==
+ - e9xgc-yuXjBtkSk-oDo1CnT70td0Iaj4nyJcVKlaf2urTSfm8LFdvA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - c35c2d99697adad68235940eb84bde68
+ - 23a2dab5791004be1c57841a3204f409
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -881,29 +909,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/23] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/89] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]\n*Defect
- Dojo link:* http://localhost:8080/finding/286 (286)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]\n*Defect
+ Dojo link:* http://localhost:8080/finding/293 (293)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -933,9 +961,9 @@ interactions:
Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]\n*Defect Dojo
- link:* http://localhost:8080/finding/288 (288)\n*Severity:* Medium\n *Due Date:*
- Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]\n*Defect Dojo
+ link:* http://localhost:8080/finding/295 (295)\n*Severity:* Medium\n *Due Date:*
+ April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -972,21 +1000,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7076'
+ - '7077'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21281","key":"NTEST-3102","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21281"}'
+ string: '{"id":"24913","key":"NTEST-3198","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24913"}'
headers:
Atl-Request-Id:
- - 45bafd7d-e443-44f0-a154-3f84f880c866
+ - 7130a40b-7359-4a12-9b9c-bdec0dba39ef
Atl-Traceid:
- - 45bafd7de44344f0a1543f84f880c866
+ - 7130a40b73594a129b9cbdec0dba39ef
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -994,9 +1022,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:14 GMT
+ - Fri, 16 Jan 2026 21:00:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1004,7 +1032,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=854,atl-edge;dur=851,atl-edge-internal;dur=17,atl-edge-upstream;dur=835,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="27hi7NKkFdh5DCykpAyMkFk64c8TNxbIbGHz0Mag51tnxcjXxsAjpg==",cdn-downstream-fbl;dur=859
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1053,atl-edge;dur=1030,atl-edge-internal;dur=17,atl-edge-upstream;dur=1011,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="_4KyhTA3nNSsh6eYdLVbkfrkjMhuZZt4HJ664bXEnBZMrmGs0iANwg==",cdn-downstream-fbl;dur=1058
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1014,19 +1042,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b96ad58427ffff8b9d3959350f8c9f16.cloudfront.net (CloudFront)
+ - 1.1 cef95c13f18c85adb4a10ae72f19bf38.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 27hi7NKkFdh5DCykpAyMkFk64c8TNxbIbGHz0Mag51tnxcjXxsAjpg==
+ - _4KyhTA3nNSsh6eYdLVbkfrkjMhuZZt4HJ664bXEnBZMrmGs0iANwg==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - a0819ae701a3960cb331ab427055d43a
+ - 4e31e3154ec75fd350448e144dd088b4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1046,41 +1078,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3102
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3198
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21281","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21281","key":"NTEST-3102","fields":{"statuscategorychangedate":"2025-07-25T21:06:14.588+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24913","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24913","key":"NTEST-3198","fields":{"statuscategorychangedate":"2026-01-16T22:00:29.330+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3102/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3102/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:14.330+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bz:","updated":"2025-07-25T21:06:14.409+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3198/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3198/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:29.006+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hz:","updated":"2026-01-16T22:00:29.138+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/23]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/89]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]\n*Defect
- Dojo link:* http://localhost:8080/finding/286 (286)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]\n*Defect
+ Dojo link:* http://localhost:8080/finding/293 (293)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1110,9 +1142,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]\n*Defect
- Dojo link:* http://localhost:8080/finding/288 (288)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]\n*Defect
+ Dojo link:* http://localhost:8080/finding/295 (295)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1139,12 +1171,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21281/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24913/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c86a3131-28a8-44c5-90e5-667697f6a57a
+ - 57bd408f-c2f1-4623-9851-bea4c1247004
Atl-Traceid:
- - c86a313128a844c590e5667697f6a57a
+ - 57bd408fc2f146239851bea4c1247004
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1154,9 +1186,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:16 GMT
+ - Fri, 16 Jan 2026 21:00:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1164,7 +1196,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=413,atl-edge;dur=411,atl-edge-internal;dur=14,atl-edge-upstream;dur=396,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="91FeOuAY105s-jV1-gUJighcWIHp0o194YZ76nD1osgD_kybDGyO0Q==",cdn-downstream-fbl;dur=416
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=307,atl-edge;dur=284,atl-edge-internal;dur=15,atl-edge-upstream;dur=268,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="X1aELFD1Iw7Ye8UbblddHbQCTbGjXWuc5Mk8dpDdbTfJk7lOqcyBFg==",cdn-downstream-fbl;dur=310
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1174,19 +1206,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8e52b0323db9e9f5baf300137747fffe.cloudfront.net (CloudFront)
+ - 1.1 fca1997d98cd4ed3a56af08cac126fa6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 91FeOuAY105s-jV1-gUJighcWIHp0o194YZ76nD1osgD_kybDGyO0Q==
+ - X1aELFD1Iw7Ye8UbblddHbQCTbGjXWuc5Mk8dpDdbTfJk7lOqcyBFg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - f7fbfa9e03de0cded8a6d257996ed3e2
+ - 18b45584c00530e0709435749b46fc2f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1206,41 +1242,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21281
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24913
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21281","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21281","key":"NTEST-3102","fields":{"statuscategorychangedate":"2025-07-25T21:06:14.588+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24913","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24913","key":"NTEST-3198","fields":{"statuscategorychangedate":"2026-01-16T22:00:29.330+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3102/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3102/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:14.330+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012bz:","updated":"2025-07-25T21:06:14.409+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3198/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3198/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:29.006+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014hz:","updated":"2026-01-16T22:00:29.138+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/23]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/89]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >=
4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0
< 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 <
- 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]|Active,
+ 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution Different Title - (Pg, < 2.11.2 >=
3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0
< 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 <
- 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/286]\n*Defect
- Dojo link:* http://localhost:8080/finding/286 (286)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/293]\n*Defect
+ Dojo link:* http://localhost:8080/finding/293 (293)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1270,9 +1306,9 @@ interactions:
Different Title - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/288]\n*Defect
- Dojo link:* http://localhost:8080/finding/288 (288)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/295]\n*Defect
+ Dojo link:* http://localhost:8080/finding/295 (295)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1299,12 +1335,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21281/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24913/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 436803e0-5d38-4aaf-85f3-a98798f20e37
+ - 24cfdeed-d08f-46f6-923e-a7a6aade8f30
Atl-Traceid:
- - 436803e05d384aaf85f3a98798f20e37
+ - 24cfdeedd08f46f6923ea7a6aade8f30
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1314,9 +1350,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:17 GMT
+ - Fri, 16 Jan 2026 21:00:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1324,7 +1360,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=487,atl-edge;dur=485,atl-edge-internal;dur=15,atl-edge-upstream;dur=470,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="5hD_gBU5d3jhVWh58UdqygGcTJTTZLXfAqrkYgmgSVgDB8GKgi4Czw==",cdn-downstream-fbl;dur=491
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=354,atl-edge;dur=331,atl-edge-internal;dur=17,atl-edge-upstream;dur=315,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="dzofZ3QYHnYhPe3DFoLgOtdx29NxH30M270LNFiL9OO1Vza55T5Gag==",cdn-downstream-fbl;dur=358
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1334,19 +1370,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 14ad4e3e12857f3153259ccd2089a180.cloudfront.net (CloudFront)
+ - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5hD_gBU5d3jhVWh58UdqygGcTJTTZLXfAqrkYgmgSVgDB8GKgi4Czw==
+ - dzofZ3QYHnYhPe3DFoLgOtdx29NxH30M270LNFiL9OO1Vza55T5Gag==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - ced0d72274629fcf6a3621583451ef10
+ - 0ed85cf0fea8c82a60793f25d640243c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1366,17 +1406,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:06:18.507+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:30.871+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 957cb74b-acc2-43ca-b31f-ef0ba0ee8a49
+ - 06059136-4568-4e5f-9573-be42df0b267d
Atl-Traceid:
- - 957cb74bacc243cab31fef0ba0ee8a49
+ - 0605913645684e5f9573be42df0b267d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1386,9 +1426,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:18 GMT
+ - Fri, 16 Jan 2026 21:00:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1396,7 +1436,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=327,atl-edge;dur=325,atl-edge-internal;dur=18,atl-edge-upstream;dur=307,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="hW7omAvRssc1_fnB20WpagIOSdsRSbFkNxUoQ0CsJ-evzzxKwbKdOQ==",cdn-downstream-fbl;dur=331
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=457,atl-edge;dur=434,atl-edge-internal;dur=14,atl-edge-upstream;dur=420,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="1s7UP3O2paEbnjiOwLF_eNf5bS0n2cSGAT-loMDM2yzLe8fRYwRqnQ==",cdn-downstream-fbl;dur=461
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1406,19 +1446,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0b8c49517c533bb6e0c14033e0c899b0.cloudfront.net (CloudFront)
+ - 1.1 939f768b06599c7357e62de464fd9a12.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hW7omAvRssc1_fnB20WpagIOSdsRSbFkNxUoQ0CsJ-evzzxKwbKdOQ==
+ - 1s7UP3O2paEbnjiOwLF_eNf5bS0n2cSGAT-loMDM2yzLe8fRYwRqnQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - b2e59e283c3a40a69463c4ee9718baa0
+ - 6222a0c4fb88553da3b2123af0a64d42
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1438,7 +1482,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1452,9 +1496,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 607a16ba-8c47-4ed0-a4cc-70e0bc01c436
+ - 102e6d9f-6252-4118-a6dc-722b4b43a269
Atl-Traceid:
- - 607a16ba8c474ed0a4cc70e0bc01c436
+ - 102e6d9f62524118a6dc722b4b43a269
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1464,9 +1508,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:20 GMT
+ - Fri, 16 Jan 2026 21:00:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1474,7 +1518,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=977,atl-edge;dur=975,atl-edge-internal;dur=16,atl-edge-upstream;dur=959,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="jbQ3nZeKGAXlFQ99UIo8VAn4Qmw6rlm02X5oYBKdQCoK1cSVzSyAhA==",cdn-downstream-fbl;dur=981
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=353,atl-edge;dur=330,atl-edge-internal;dur=17,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="qN1GFdflU0b8yxjOsDYbAI-u3IfUWQinkdoE9i68GpWmVIu5h3gHqA==",cdn-downstream-fbl;dur=357
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1484,22 +1528,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f64b5e1795622ac1fd367fad798c10.cloudfront.net (CloudFront)
+ - 1.1 9367844cfa8aaebd6a8f032ea2e7d4ec.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - jbQ3nZeKGAXlFQ99UIo8VAn4Qmw6rlm02X5oYBKdQCoK1cSVzSyAhA==
+ - qN1GFdflU0b8yxjOsDYbAI-u3IfUWQinkdoE9i68GpWmVIu5h3gHqA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - e1ab88b5611db18c3cd72977b85ebc9d
+ - 06c16a53d9f7daff89d1ac0a1b0dc9a3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1509,18 +1557,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/24] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/90] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/287]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/294]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/287]\n*Defect Dojo link:* http://localhost:8080/finding/287
- (287)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/294]\n*Defect Dojo link:* http://localhost:8080/finding/294
+ (294)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1539,21 +1587,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2196'
+ - '2198'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21282","key":"NTEST-3103","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21282"}'
+ string: '{"id":"24914","key":"NTEST-3199","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24914"}'
headers:
Atl-Request-Id:
- - f0bc3a45-7760-4b49-a661-ce27a795c378
+ - 7db282a2-0fa7-414f-b5fd-96c1bf988ee5
Atl-Traceid:
- - f0bc3a4577604b49a661ce27a795c378
+ - 7db282a20fa7414fb5fd96c1bf988ee5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1561,9 +1609,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:22 GMT
+ - Fri, 16 Jan 2026 21:00:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1571,7 +1619,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=869,atl-edge;dur=867,atl-edge-internal;dur=14,atl-edge-upstream;dur=852,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="J72rSEEThZxr2tjreu9dE8kgp445F5BzToE0Ibo6vZPU-D5YP7wpkQ==",cdn-downstream-fbl;dur=872
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=728,atl-edge;dur=705,atl-edge-internal;dur=15,atl-edge-upstream;dur=690,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="0SdZRMC7lx1p8tOL0O6Uhc9HIRH8c5kUBOFOR1xIfi8MJuFkeEWcbw==",cdn-downstream-fbl;dur=733
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1581,19 +1629,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 782fcf79958c13c01bfababc6fc4b8ce.cloudfront.net (CloudFront)
+ - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - J72rSEEThZxr2tjreu9dE8kgp445F5BzToE0Ibo6vZPU-D5YP7wpkQ==
+ - 0SdZRMC7lx1p8tOL0O6Uhc9HIRH8c5kUBOFOR1xIfi8MJuFkeEWcbw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - aa6b3eaf67347851214cd44d1a371a26
+ - 3802a03b97b54e94b97867f9d30592ce
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1613,30 +1665,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3103
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3199
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21282","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21282","key":"NTEST-3103","fields":{"statuscategorychangedate":"2025-07-25T21:06:22.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24914","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24914","key":"NTEST-3199","fields":{"statuscategorychangedate":"2026-01-16T22:00:32.198+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3103/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3103/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:21.833+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012c7:","updated":"2025-07-25T21:06:21.931+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3199/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3199/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:31.969+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014i7:","updated":"2026-01-16T22:00:32.051+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/24]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/90]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/287]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/294]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/287]\n*Defect Dojo link:* http://localhost:8080/finding/287
- (287)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/294]\n*Defect Dojo link:* http://localhost:8080/finding/294
+ (294)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1645,12 +1697,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21282/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24914/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - dce423b6-3ae6-4ffe-b70c-f92baca013a0
+ - f4f92445-6acb-49a0-8f94-070d432b9554
Atl-Traceid:
- - dce423b63ae64ffeb70cf92baca013a0
+ - f4f924456acb49a08f94070d432b9554
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1660,9 +1712,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:23 GMT
+ - Fri, 16 Jan 2026 21:00:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1670,7 +1722,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=488,atl-edge;dur=487,atl-edge-internal;dur=14,atl-edge-upstream;dur=472,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="5dmMwRRrgTN4478XYnxqhNYT28zrp_Ki5L_-lyxYZKc2JCtL5Djctw==",cdn-downstream-fbl;dur=492
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=313,atl-edge;dur=290,atl-edge-internal;dur=16,atl-edge-upstream;dur=273,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="arh4jhMNenfQCLt2czpGV3SSe_9IFi3wccUV5MTi_3IEoWBwL9jzlQ==",cdn-downstream-fbl;dur=316
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1680,19 +1732,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 902b6168cd46b8e2de576dabe4e7f0f8.cloudfront.net (CloudFront)
+ - 1.1 20c46424adb033d4de178e11a807b304.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5dmMwRRrgTN4478XYnxqhNYT28zrp_Ki5L_-lyxYZKc2JCtL5Djctw==
+ - arh4jhMNenfQCLt2czpGV3SSe_9IFi3wccUV5MTi_3IEoWBwL9jzlQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - cacc0ba22195941312a990cf61cc2815
+ - eef4113acd7d0f61b5fb571befb58186
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1712,30 +1768,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21282
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24914
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21282","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21282","key":"NTEST-3103","fields":{"statuscategorychangedate":"2025-07-25T21:06:22.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24914","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24914","key":"NTEST-3199","fields":{"statuscategorychangedate":"2026-01-16T22:00:32.198+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3103/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3103/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:06:21.833+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012c7:","updated":"2025-07-25T21:06:21.931+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3199/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3199/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:31.969+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014i7:","updated":"2026-01-16T22:00:32.051+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/24]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/90]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/102]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/105]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/287]|Active,
+ Expression Denial of Service Different Title - (Fresh, < 0.5.2)|http://localhost:8080/finding/294]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Regular Expression Denial of Service Different Title - (Fresh,
- < 0.5.2)|http://localhost:8080/finding/287]\n*Defect Dojo link:* http://localhost:8080/finding/287
- (287)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ < 0.5.2)|http://localhost:8080/finding/294]\n*Defect Dojo link:* http://localhost:8080/finding/294
+ (294)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1744,12 +1800,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21282/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24914/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 212d3f9f-ed89-4298-ba6c-d5bfe51899fd
+ - 53edadeb-01ec-4ab8-8157-b351525baca9
Atl-Traceid:
- - 212d3f9fed894298ba6cd5bfe51899fd
+ - 53edadeb01ec4ab88157b351525baca9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1759,9 +1815,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:06:24 GMT
+ - Fri, 16 Jan 2026 21:00:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1769,7 +1825,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=413,atl-edge;dur=410,atl-edge-internal;dur=16,atl-edge-upstream;dur=394,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="CJeU3peIIrGHPtE26l12UmdwwjGKHpQCT2y6D_zA5CQ-GUq4WTmIdw==",cdn-downstream-fbl;dur=416
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=265,atl-edge;dur=242,atl-edge-internal;dur=17,atl-edge-upstream;dur=224,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Okh7mYO2EpSTnubfviyJDcGS5byXk1DOD7S5mQTqW6bmc_vfODDJpA==",cdn-downstream-fbl;dur=270
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1779,19 +1835,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7f1eebb2ab7fd9ddd5ae296bfe0194d2.cloudfront.net (CloudFront)
+ - 1.1 37a4ef6008154b58024bba8916008f66.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - CJeU3peIIrGHPtE26l12UmdwwjGKHpQCT2y6D_zA5CQ-GUq4WTmIdw==
+ - Okh7mYO2EpSTnubfviyJDcGS5byXk1DOD7S5mQTqW6bmc_vfODDJpA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P3
X-Arequestid:
- - 24aacb8ea391da71208bbeeca81ec474
+ - 603bc5248c009ad8eccb039f3e91212c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1800,14 +1860,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/",
+ "url_ui": "http://localhost:8080/test/105", "url_api": "http://localhost:8080/api/v2/tests/105/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 102, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/"}}'
+ 105, "url_ui": "http://localhost:8080/test/105", "url_api": "http://localhost:8080/api/v2/tests/105/"}}'
headers:
Accept:
- application/json
@@ -1822,7 +1882,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1836,22 +1896,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/102/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/105\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/105/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 102, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 105, \\\"url_ui\\\": \\\"http://localhost:8080/test/105\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/105/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1861,11 +1921,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 102,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/102\"\n },\n \"title\":
+ 105,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/105/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/105\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n \"url_ui\":
- \"http://localhost:8080/test/102\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/105/\",\n \"url_ui\":
+ \"http://localhost:8080/test/105\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1874,7 +1934,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:25 GMT
+ - Fri, 16 Jan 2026 21:00:33 GMT
Transfer-Encoding:
- chunked
status:
@@ -1883,32 +1943,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/",
+ null, "url_ui": "http://localhost:8080/test/105", "url_api": "http://localhost:8080/api/v2/tests/105/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 102, "url_ui": "http://localhost:8080/test/102", "url_api": "http://localhost:8080/api/v2/tests/102/"},
- "finding_count": 5, "findings": {"new": [{"id": 285, "title": "2222Regular Expression
+ 105, "url_ui": "http://localhost:8080/test/105", "url_api": "http://localhost:8080/api/v2/tests/105/"},
+ "finding_count": 5, "findings": {"new": [{"id": 292, "title": "2222Regular Expression
Denial of Service Different Title - (Negotiator, <= 0.6.0)", "severity": "High",
- "url_ui": "http://localhost:8080/finding/285", "url_api": "http://localhost:8080/api/v2/findings/285/"},
- {"id": 286, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
+ "url_ui": "http://localhost:8080/finding/292", "url_api": "http://localhost:8080/api/v2/findings/292/"},
+ {"id": 293, "title": "Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/286",
- "url_api": "http://localhost:8080/api/v2/findings/286/"}, {"id": 284, "title":
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "High", "url_ui": "http://localhost:8080/finding/293",
+ "url_api": "http://localhost:8080/api/v2/findings/293/"}, {"id": 291, "title":
"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/284", "url_api":
- "http://localhost:8080/api/v2/findings/284/"}, {"id": 287, "title": "Regular
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/291", "url_api":
+ "http://localhost:8080/api/v2/findings/291/"}, {"id": 294, "title": "Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)", "severity":
- "Medium", "url_ui": "http://localhost:8080/finding/287", "url_api": "http://localhost:8080/api/v2/findings/287/"},
- {"id": 288, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
+ "Medium", "url_ui": "http://localhost:8080/finding/294", "url_api": "http://localhost:8080/api/v2/findings/294/"},
+ {"id": 295, "title": "2222Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5
|| >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
- || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/288",
- "url_api": "http://localhost:8080/api/v2/findings/288/"}], "reactivated": [],
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/295",
+ "url_api": "http://localhost:8080/api/v2/findings/295/"}], "reactivated": [],
"mitigated": [], "untouched": []}}'
headers:
Accept:
@@ -1924,7 +1984,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1938,84 +1998,84 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2458\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/105\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/105/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 102, \\\"url_ui\\\": \\\"http://localhost:8080/test/102\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/102/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 285, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 105, \\\"url_ui\\\": \\\"http://localhost:8080/test/105\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/105/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 292, \\\"title\\\": \\\"2222Regular
Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\\\",
- \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/285\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/285/\\\"}, {\\\"id\\\":
- 286, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
+ \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/292\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/292/\\\"}, {\\\"id\\\":
+ 293, \\\"title\\\": \\\"Remote Code Execution Different Title - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/286\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/286/\\\"}, {\\\"id\\\": 284, \\\"title\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/293\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/293/\\\"}, {\\\"id\\\": 291, \\\"title\\\":
\\\"Regular Expression Denial of Service Different Title - (Negotiator, <=
- 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/284\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/284/\\\"}, {\\\"id\\\":
- 287, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
+ 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/291\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/291/\\\"}, {\\\"id\\\":
+ 294, \\\"title\\\": \\\"Regular Expression Denial of Service Different Title
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/287\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/287/\\\"},
- {\\\"id\\\": 288, \\\"title\\\": \\\"2222Remote Code Execution Different Title
+ \\\"http://localhost:8080/finding/294\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/294/\\\"},
+ {\\\"id\\\": 295, \\\"title\\\": \\\"2222Remote Code Execution Different Title
- (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1
|| >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 <
6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\":
- \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/288\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/288/\\\"}], \\\"reactivated\\\":
+ \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/295\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/295/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 285,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 292,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service Different Title - (Negotiator,
- <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/285/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/285\"\n },\n
- \ {\n \"id\": 286,\n \"severity\": \"High\",\n \"title\":
+ <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/292/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/292\"\n },\n
+ \ {\n \"id\": 293,\n \"severity\": \"High\",\n \"title\":
\"Remote Code Execution Different Title - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4
|| >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 <
6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0
- < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/286/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/286\"\n },\n
- \ {\n \"id\": 284,\n \"severity\": \"Medium\",\n \"title\":
+ < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/293/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/293\"\n },\n
+ \ {\n \"id\": 291,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service Different Title - (Negotiator, <= 0.6.0)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/284/\",\n \"url_ui\":
- \"http://localhost:8080/finding/284\"\n },\n {\n \"id\":
- 287,\n \"severity\": \"Medium\",\n \"title\": \"Regular
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/291/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/291\"\n },\n {\n \"id\":
+ 294,\n \"severity\": \"Medium\",\n \"title\": \"Regular
Expression Denial of Service Different Title - (Fresh, < 0.5.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/287/\",\n \"url_ui\": \"http://localhost:8080/finding/287\"\n
- \ },\n {\n \"id\": 288,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/294/\",\n \"url_ui\": \"http://localhost:8080/finding/294\"\n
+ \ },\n {\n \"id\": 295,\n \"severity\": \"Medium\",\n
\ \"title\": \"2222Remote Code Execution Different Title - (Pg, <
2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >=
6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3
|| >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/288/\",\n \"url_ui\": \"http://localhost:8080/finding/288\"\n
+ \"http://localhost:8080/api/v2/findings/295/\",\n \"url_ui\": \"http://localhost:8080/finding/295\"\n
\ }\n ],\n \"reactivated\": [],\n \"untouched\": []\n
\ },\n \"product\": {\n \"id\": 2,\n \"name\": \"Security How-to\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\":
\"http://localhost:8080/product/2\"\n },\n \"product_type\": {\n \"id\":
2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
\ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
- {\n \"id\": 102,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/102\"\n },\n \"title\":
+ {\n \"id\": 105,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/105/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/105\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/102/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/102\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/105/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/105\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -2025,7 +2085,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:06:25 GMT
+ - Fri, 16 Jan 2026 21:00:33 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_group_by_with_push_all_but_no_groups_created.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_group_by_with_push_all_but_no_groups_created.yaml
new file mode 100644
index 00000000000..d4b84268ee9
--- /dev/null
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_group_by_with_push_all_but_no_groups_created.yaml
@@ -0,0 +1,1060 @@
+interactions:
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:40.237+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 7de6e681-58ad-4ccb-a9bc-6fe71b4a922a
+ Atl-Traceid:
+ - 7de6e68158ad4ccba9bc6fe71b4a922a
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:40 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=277,atl-edge;dur=186,atl-edge-internal;dur=14,atl-edge-upstream;dur=172,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="ZZrSHrC7VmGD_DEdrWbuc3_oNVg_C9K8cbrOiHORkQLLCVJhwSPMEQ==",cdn-downstream-fbl;dur=281
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 0d46192046615c37e895cbabe89b2382.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - ZZrSHrC7VmGD_DEdrWbuc3_oNVg_C9K8cbrOiHORkQLLCVJhwSPMEQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - bc46bdb3ee2dfadfc82738ed1392615e
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - b572006b-23a1-413f-84a8-bc53a7689d82
+ Atl-Traceid:
+ - b572006b23a1413f84a8bc53a7689d82
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:40 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=494,atl-edge;dur=470,atl-edge-internal;dur=15,atl-edge-upstream;dur=454,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="vJ5Z71E-eScWjp6jpi-HufzoyCEHaDNOoWovL4b1bUY0vXrEEu_kdA==",cdn-downstream-fbl;dur=499
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 9367844cfa8aaebd6a8f032ea2e7d4ec.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - vJ5Z71E-eScWjp6jpi-HufzoyCEHaDNOoWovL4b1bUY0vXrEEu_kdA==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - b39f99f3bff6cc54685f3628d34e5e5e
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Zap1: Cookie Without Secure Flag", "description": "\n\n\n\n\n\n\n*Title*:
+ [Zap1: Cookie Without Secure Flag|http://localhost:8080/finding/332]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/332 (332)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set for
+ cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Low"}}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '1373'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: POST
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue
+ response:
+ body:
+ string: '{"id":"24915","key":"NTEST-3200","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24915"}'
+ headers:
+ Atl-Request-Id:
+ - 62f28991-8785-4f7a-bf1f-a29abff1ed0d
+ Atl-Traceid:
+ - 62f2899187854f7abf1fa29abff1ed0d
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:41 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=857,atl-edge;dur=834,atl-edge-internal;dur=15,atl-edge-upstream;dur=819,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="DwyO06DcCuffR_dc9XRsuDHgdiUqdbJbbWl9Oz6wraQ9B3Kp2G1NFg==",cdn-downstream-fbl;dur=862
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 8cd822060c267532e9427046d86093de.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - DwyO06DcCuffR_dc9XRsuDHgdiUqdbJbbWl9Oz6wraQ9B3Kp2G1NFg==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 6a2375f59f1b9bb0fd619fc06c6ecf8d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 201
+ message: Created
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3200
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24915","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24915","key":"NTEST-3200","fields":{"statuscategorychangedate":"2026-01-16T22:00:41.693+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3200/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3200/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:41.400+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014if:","updated":"2026-01-16T22:00:41.483+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Zap1: Cookie Without Secure Flag|http://localhost:8080/finding/332]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/332 (332)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set
+ for cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Zap1:
+ Cookie Without Secure Flag","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24915/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 8117d5ec-a0bb-4ffb-9efd-1508142a2cf4
+ Atl-Traceid:
+ - 8117d5eca0bb4ffb9efd1508142a2cf4
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:42 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=374,atl-edge;dur=349,atl-edge-internal;dur=33,atl-edge-upstream;dur=314,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="cWVhpvgcKBrFF4pnta8oawhKV_jf2XBCAvTFbWpj-OjnBLallQbzyQ==",cdn-downstream-fbl;dur=377
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 5257b3c7acd3727a389946b312557ff2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - cWVhpvgcKBrFF4pnta8oawhKV_jf2XBCAvTFbWpj-OjnBLallQbzyQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 8ae578cf15c44c10058b18b09ce54d6f
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24915
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24915","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24915","key":"NTEST-3200","fields":{"statuscategorychangedate":"2026-01-16T22:00:41.693+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3200/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3200/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:41.400+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014if:","updated":"2026-01-16T22:00:41.483+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Zap1: Cookie Without Secure Flag|http://localhost:8080/finding/332]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/332 (332)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set
+ for cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Zap1:
+ Cookie Without Secure Flag","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24915/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 0f4f7e17-3aaf-4d47-a44e-7a5f76e3a6e5
+ Atl-Traceid:
+ - 0f4f7e173aaf4d47a44e7a5f76e3a6e5
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:42 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=359,atl-edge;dur=335,atl-edge-internal;dur=17,atl-edge-upstream;dur=318,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="WgDKxuOVI4ow3NJJuMvp5PRDGx0kPPthmgiyRE6aWpbzwmsOByHTMQ==",cdn-downstream-fbl;dur=363
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 8ebed69b9bff6cc42b0f52303f299b96.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - WgDKxuOVI4ow3NJJuMvp5PRDGx0kPPthmgiyRE6aWpbzwmsOByHTMQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - b5c3a81bdde74301ea20aaa6c400816c
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:43.044+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - e32491cd-8b76-4a82-8511-0ec87cee335b
+ Atl-Traceid:
+ - e32491cd8b764a8285110ec87cee335b
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:43 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=263,atl-edge;dur=174,atl-edge-internal;dur=14,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="3Mt8UEuNXAmVNqhosfy4m1ehS0FhKo-RTGa0vrllSeIVLUH__2Rxyw==",cdn-downstream-fbl;dur=267
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 1152d84b916a23e4b38cef1a20064b3e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 3Mt8UEuNXAmVNqhosfy4m1ehS0FhKo-RTGa0vrllSeIVLUH__2Rxyw==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 1d68b6fe239a3096047a51e31681fb87
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - fc77e3ee-92fd-45f5-89f7-8a7982d9dc63
+ Atl-Traceid:
+ - fc77e3ee92fd45f589f78a7982d9dc63
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:43 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=314,atl-edge;dur=291,atl-edge-internal;dur=16,atl-edge-upstream;dur=275,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="KyFHW-8MZ9Xgbzbm1QqRcXF2-Kc8urlOyiz7tYzbwqs5i1G13hgRgg==",cdn-downstream-fbl;dur=318
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 86b6aab4b36e97123c5f76cc2e3ac8ec.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - KyFHW-8MZ9Xgbzbm1QqRcXF2-Kc8urlOyiz7tYzbwqs5i1G13hgRgg==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - c8f590f176bac69303492d69d87fa6cf
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Zap2: Cookie Without Secure Flag", "description": "\n\n\n\n\n\n\n*Title*:
+ [Zap2: Cookie Without Secure Flag|http://localhost:8080/finding/333]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/333 (333)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set for
+ cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Low"}}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '1373'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: POST
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue
+ response:
+ body:
+ string: '{"id":"24916","key":"NTEST-3201","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24916"}'
+ headers:
+ Atl-Request-Id:
+ - 9b974a23-b4f5-406d-bc81-e2303c4b7ee7
+ Atl-Traceid:
+ - 9b974a23b4f5406dbc81e2303c4b7ee7
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:44 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=702,atl-edge;dur=679,atl-edge-internal;dur=15,atl-edge-upstream;dur=662,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="bPh8BplWu6-DTbhsoIjT24vduqa44kwlSL8L9Runw-SvWtfZPpummw==",cdn-downstream-fbl;dur=707
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 4727c17386dca598865fa547bcafadfa.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - bPh8BplWu6-DTbhsoIjT24vduqa44kwlSL8L9Runw-SvWtfZPpummw==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 202d2a28a0ce268a334327c8803bf9ac
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 201
+ message: Created
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3201
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24916","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24916","key":"NTEST-3201","fields":{"statuscategorychangedate":"2026-01-16T22:00:44.123+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3201/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3201/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:43.875+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014in:","updated":"2026-01-16T22:00:43.959+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Zap2: Cookie Without Secure Flag|http://localhost:8080/finding/333]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/333 (333)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set
+ for cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Zap2:
+ Cookie Without Secure Flag","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24916/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - ffb29d06-2a06-4256-9a3f-14b0b6374e81
+ Atl-Traceid:
+ - ffb29d062a0642569a3f14b0b6374e81
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:44 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=304,atl-edge;dur=281,atl-edge-internal;dur=17,atl-edge-upstream;dur=265,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="IBfWvkgqrex_YtCVGdL2dOsikUOunviPJm6_W1rak9bmgbl2ieaPaQ==",cdn-downstream-fbl;dur=307
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 1023ce3fdfbe06146e0996714c07ebcc.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - IBfWvkgqrex_YtCVGdL2dOsikUOunviPJm6_W1rak9bmgbl2ieaPaQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - c549ca368a8074d46c5dca2d737ee919
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24916
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24916","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24916","key":"NTEST-3201","fields":{"statuscategorychangedate":"2026-01-16T22:00:44.123+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3201/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3201/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:43.875+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014in:","updated":"2026-01-16T22:00:43.959+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n*Title*:
+ [Zap2: Cookie Without Secure Flag|http://localhost:8080/finding/333]\n\n*Defect
+ Dojo link:* http://localhost:8080/finding/333 (333)\n\n*Severity:* Low\n\n\n*Due
+ Date:* May 16, 2026\n\n\n\n*CWE:* [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:*
+ Unknown\n\n\n\n\n*Product/Engagement/Test:* [Security How-to|http://localhost:8080/product/2]
+ / [1st Quarter Engagement|http://localhost:8080/engagement/1] / [ZAP Scan|http://localhost:8080/test/121]\n\n\n\n\n\n\n\n\n*Systems/Endpoints*:\n||System/Endpoint||Status||\n|https://mainsite.com/dashboard|Active|\n|https://mainsite.com|Active|\n\n\n\n\n\n\n\n\n*Description*:\nA
+ cookie has been set without the secure flag, which means that the cookie can\nbe
+ accessed via unencrypted connections.\n\n\n\n\n*Mitigation*:\nWhenever a cookie
+ contains sensitive information or is a session token, then\nit should always
+ be passed using an encrypted channel. Ensure that the secure\nflag is set
+ for cookies containing such sensitive information.\n\n\n\n\n\n*Impact*:\nNone\n\n\n\n\n\n*References*:\nhttp://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\n\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Zap2:
+ Cookie Without Secure Flag","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24916/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 840fc04f-f946-40b2-80cd-8eb33f9e88fb
+ Atl-Traceid:
+ - 840fc04ff94640b280cd8eb33f9e88fb
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:45 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=353,atl-edge;dur=329,atl-edge-internal;dur=16,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="ZO-f7ZKnDsNLBL8N0epgmw6ltpQx7i0RLfdw-FZLecXrBesCGl-sUQ==",cdn-downstream-fbl;dur=356
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 9eceed849af3c369b60088e6ae5ad92c.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - ZO-f7ZKnDsNLBL8N0epgmw6ltpQx7i0RLfdw-FZLecXrBesCGl-sUQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 44c24e2ad9e294b6fc33e0f0a9f335c6
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"description": "Event test_added has occurred.", "title": "Test created
+ for Security How-to: 1st Quarter Engagement: ZAP Scan", "user": null, "url_ui":
+ "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/",
+ "product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
+ "url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
+ "Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
+ "http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
+ Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
+ "http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
+ 121, "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/"}}'
+ headers:
+ Accept:
+ - application/json
+ Accept-Encoding:
+ - gzip, deflate
+ Auth:
+ - Token xxx
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '843'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - DefectDojo-2.54.1
+ X-DefectDojo-Event:
+ - test_added
+ X-DefectDojo-Instance:
+ - http://localhost:8080
+ method: POST
+ uri: http://webhook.endpoint:8080/post
+ response:
+ body:
+ string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
+ \ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
+ [\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
+ \ ],\n \"Content-Length\": [\n \"843\"\n ],\n \"Content-Type\":
+ [\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
+ [\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
+ \"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
+ \\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
+ Security How-to: 1st Quarter Engagement: ZAP Scan\\\", \\\"user\\\": null,
+ \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\",
+ \\\"product_type\\\": {\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\":
+ \\\"http://localhost:8080/product/type/2\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"},
+ \\\"product\\\": {\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\":
+ \\\"http://localhost:8080/product/2\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"},
+ \\\"engagement\\\": {\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\":
+ 1, \\\"url_ui\\\": \\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/engagements/1/\\\"}, \\\"test\\\": {\\\"title\\\":
+ null, \\\"id\\\": 121, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\"}}\",\n \"files\":
+ {},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
+ has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
+ \"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
+ \ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"product\":
+ {\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
+ \ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
+ \"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
+ 121,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/121\"\n },\n \"title\":
+ \"Test created for Security How-to: 1st Quarter Engagement: ZAP Scan\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n \"url_ui\":
+ \"http://localhost:8080/test/121\",\n \"user\": null\n }\n}\n"
+ headers:
+ Access-Control-Allow-Credentials:
+ - 'true'
+ Access-Control-Allow-Origin:
+ - '*'
+ Content-Type:
+ - application/json; charset=utf-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:45 GMT
+ Transfer-Encoding:
+ - chunked
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
+ 2 findings for Security How-to: 1st Quarter Engagement: ZAP Scan", "user": null,
+ "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/",
+ "product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
+ "url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
+ "Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
+ "http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
+ Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
+ "http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
+ 121, "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/"},
+ "finding_count": 2, "findings": {"new": [{"id": 332, "title": "Zap1: Cookie
+ Without Secure Flag", "severity": "Low", "url_ui": "http://localhost:8080/finding/332",
+ "url_api": "http://localhost:8080/api/v2/findings/332/"}, {"id": 333, "title":
+ "Zap2: Cookie Without Secure Flag", "severity": "Low", "url_ui": "http://localhost:8080/finding/333",
+ "url_api": "http://localhost:8080/api/v2/findings/333/"}], "reactivated": [],
+ "mitigated": [], "untouched": []}}'
+ headers:
+ Accept:
+ - application/json
+ Accept-Encoding:
+ - gzip, deflate
+ Auth:
+ - Token xxx
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '1315'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - DefectDojo-2.54.1
+ X-DefectDojo-Event:
+ - scan_added
+ X-DefectDojo-Instance:
+ - http://localhost:8080
+ method: POST
+ uri: http://webhook.endpoint:8080/post
+ response:
+ body:
+ string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
+ \ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
+ [\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
+ \ ],\n \"Content-Length\": [\n \"1315\"\n ],\n \"Content-Type\":
+ [\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
+ [\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
+ \"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
+ \\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
+ 2 findings for Security How-to: 1st Quarter Engagement: ZAP Scan\\\", \\\"user\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/121/\\\", \\\"product_type\\\": {\\\"name\\\":
+ \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
+ {\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
+ {\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
+ \\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 121, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\"}, \\\"finding_count\\\":
+ 2, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 332, \\\"title\\\": \\\"Zap1:
+ Cookie Without Secure Flag\\\", \\\"severity\\\": \\\"Low\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/332\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/332/\\\"},
+ {\\\"id\\\": 333, \\\"title\\\": \\\"Zap2: Cookie Without Secure Flag\\\",
+ \\\"severity\\\": \\\"Low\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/333\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/333/\\\"}], \\\"reactivated\\\":
+ [], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
+ \ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
+ occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
+ Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
+ \ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
+ 2,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
+ \ \"id\": 332,\n \"severity\": \"Low\",\n \"title\":
+ \"Zap1: Cookie Without Secure Flag\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/332/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/332\"\n },\n
+ \ {\n \"id\": 333,\n \"severity\": \"Low\",\n \"title\":
+ \"Zap2: Cookie Without Secure Flag\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/333/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/333\"\n }\n ],\n
+ \ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
+ {\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
+ \ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
+ \"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
+ 121,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/121\"\n },\n \"title\":
+ \"Created/Updated 2 findings for Security How-to: 1st Quarter Engagement:
+ ZAP Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/121\",\n \"user\": null\n
+ \ }\n}\n"
+ headers:
+ Access-Control-Allow-Credentials:
+ - 'true'
+ Access-Control-Allow-Origin:
+ - '*'
+ Content-Type:
+ - application/json; charset=utf-8
+ Date:
+ - Fri, 16 Jan 2026 21:00:45 GMT
+ Transfer-Encoding:
+ - chunked
+ status:
+ code: 200
+ message: OK
+version: 1
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_but_push_all.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_but_push_all.yaml
index 3161b40b671..d59703fb60c 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_but_push_all.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_but_push_all.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:10:59.402+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:45.394+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 1f4cd0dd-64a4-40b0-96e9-68d527574ad7
+ - ba4e83ba-118c-495f-8a7d-50d90aad3379
Atl-Traceid:
- - 1f4cd0dd64a440b096e968d527574ad7
+ - ba4e83ba118c495f8a7d50d90aad3379
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:10:59 GMT
+ - Fri, 16 Jan 2026 21:00:45 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=351,atl-edge;dur=344,atl-edge-internal;dur=15,atl-edge-upstream;dur=330,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="LTwCJiH1RyxELhzN9T4UVXEJAzGToa9C55mRFlhLdPnFsw0XEUOG5A==",cdn-downstream-fbl;dur=354
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=218,atl-edge;dur=195,atl-edge-internal;dur=13,atl-edge-upstream;dur=182,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="0pKo9rwV93lwwWpHpZ5qAfXKn6fBEl2I7020vcJZ_51wOG8oteDzOA==",cdn-downstream-fbl;dur=223
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8a987ddeb53d46074ad1f07f669c10c4.cloudfront.net (CloudFront)
+ - 1.1 fca1997d98cd4ed3a56af08cac126fa6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - LTwCJiH1RyxELhzN9T4UVXEJAzGToa9C55mRFlhLdPnFsw0XEUOG5A==
+ - 0pKo9rwV93lwwWpHpZ5qAfXKn6fBEl2I7020vcJZ_51wOG8oteDzOA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - c9a7ecf2e0b2af2f9ce286d27a0359d2
+ - 38c4c4d469abeae8919be6e6a03be204
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 8b650d0e-0732-45c2-a085-53bd7609ac22
+ - cc2ca94e-243f-4535-9061-1f1deb034fbb
Atl-Traceid:
- - 8b650d0e073245c2a08553bd7609ac22
+ - cc2ca94e243f453590611f1deb034fbb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:00 GMT
+ - Fri, 16 Jan 2026 21:00:45 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=495,atl-edge;dur=493,atl-edge-internal;dur=16,atl-edge-upstream;dur=476,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="GuDifMbDM5mqcogdzKv07oq5XGWtB5Ckx14b3lsTbOOr2uLU1cJuGw==",cdn-downstream-fbl;dur=498
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=395,atl-edge-internal;dur=17,atl-edge-upstream;dur=377,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="s0fehOStG0kZjiHZkTipr1Rh-yOjRZEIsFTPMK3kOlvzbFQuAcXzWQ==",cdn-downstream-fbl;dur=422
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f2132080e9d6401d1cc8e856e53672f6.cloudfront.net (CloudFront)
+ - 1.1 30deb42cd45095ca57ec57e8117c8d8a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - GuDifMbDM5mqcogdzKv07oq5XGWtB5Ckx14b3lsTbOOr2uLU1cJuGw==
+ - s0fehOStG0kZjiHZkTipr1Rh-yOjRZEIsFTPMK3kOlvzbFQuAcXzWQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 830a2552885febc893202dc2c1aa44c2
+ - 044c6568e1428eff6f36e9059c18a03f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/28]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/97]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/321]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/321]\n*Defect Dojo link:* http://localhost:8080/finding/321
- (321)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/335]\n*Defect Dojo link:* http://localhost:8080/finding/335
+ (335)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]\n*Defect
- Dojo link:* http://localhost:8080/finding/320 (320)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]\n*Defect
+ Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3543'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21301","key":"NTEST-3122","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21301"}'
+ string: '{"id":"24917","key":"NTEST-3202","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24917"}'
headers:
Atl-Request-Id:
- - 939a1308-fdcf-4490-b944-8bfd35eb93fd
+ - 6dec59e2-b428-4ab4-b0fa-388e92ea4fe0
Atl-Traceid:
- - 939a1308fdcf4490b9448bfd35eb93fd
+ - 6dec59e2b4284ab4b0fa388e92ea4fe0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:02 GMT
+ - Fri, 16 Jan 2026 21:00:46 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=811,atl-edge;dur=805,atl-edge-internal;dur=19,atl-edge-upstream;dur=785,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="8tWfK_z_nHp0zuPzy2IFn8NCYIAR4GGFCxGiLh_8M0UJ_-sqW-6Ehw==",cdn-downstream-fbl;dur=815
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=863,atl-edge;dur=771,atl-edge-internal;dur=15,atl-edge-upstream;dur=755,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="jNHAFA8tQppIA69WDzxx0OcFL00pQLuLmbaIXTvNmxDevbJGCIdV1w==",cdn-downstream-fbl;dur=866
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 dc5b7b7a6895b629c6cb8eef5910309e.cloudfront.net (CloudFront)
+ - 1.1 958c3abf00b2f9566b7dd6e938a4fdf4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 8tWfK_z_nHp0zuPzy2IFn8NCYIAR4GGFCxGiLh_8M0UJ_-sqW-6Ehw==
+ - jNHAFA8tQppIA69WDzxx0OcFL00pQLuLmbaIXTvNmxDevbJGCIdV1w==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - 524470690f77b539ba7a3b3559dc253b
+ - f3cfacb723ef8454117a6d5e827a47ae
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3122
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3202
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21301","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21301","key":"NTEST-3122","fields":{"statuscategorychangedate":"2025-07-25T21:11:02.419+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24917","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24917","key":"NTEST-3202","fields":{"statuscategorychangedate":"2026-01-16T22:00:46.749+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3122/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3122/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:02.252+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gf:","updated":"2025-07-25T21:11:02.316+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3202/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3202/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:46.455+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014iv:","updated":"2026-01-16T22:00:46.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/28]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/97]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/321]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/321]\n*Defect Dojo link:* http://localhost:8080/finding/321
- (321)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/335]\n*Defect Dojo link:* http://localhost:8080/finding/335
+ (335)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]\n*Defect
- Dojo link:* http://localhost:8080/finding/320 (320)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]\n*Defect
+ Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21301/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24917/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ca282285-8e7b-48c3-b09e-1a67f01b83b7
+ - 366c8e46-24a7-4fa2-99a8-e98a337c6d83
Atl-Traceid:
- - ca2822858e7b48c3b09e1a67f01b83b7
+ - 366c8e4624a74fa299a8e98a337c6d83
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:03 GMT
+ - Fri, 16 Jan 2026 21:00:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=417,atl-edge-internal;dur=15,atl-edge-upstream;dur=402,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="FsNGFaRIsWtiJb-Mq7xHLaXKQxoEo5cOL6drwht-AEPsIDAZO9yp2w==",cdn-downstream-fbl;dur=421
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=374,atl-edge;dur=351,atl-edge-internal;dur=19,atl-edge-upstream;dur=332,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="D6bKvBXPA3n0i7TBiT4ZTMtDB7EndQ9jcvB_AxVr2OnZDi9NAdSNbQ==",cdn-downstream-fbl;dur=377
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ed714340561a82eb64e0092ff1378696.cloudfront.net (CloudFront)
+ - 1.1 1c13683c7de319f25e08f83861fc6dc2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - FsNGFaRIsWtiJb-Mq7xHLaXKQxoEo5cOL6drwht-AEPsIDAZO9yp2w==
+ - D6bKvBXPA3n0i7TBiT4ZTMtDB7EndQ9jcvB_AxVr2OnZDi9NAdSNbQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - ed1bedda76d1e83ecd47d8e12766bbaf
+ - 3eb9012a5d8d7e92a78ce49d754a8329
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21301
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24917
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21301","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21301","key":"NTEST-3122","fields":{"statuscategorychangedate":"2025-07-25T21:11:02.419+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24917","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24917","key":"NTEST-3202","fields":{"statuscategorychangedate":"2026-01-16T22:00:46.749+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3122/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3122/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:02.252+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gf:","updated":"2025-07-25T21:11:02.316+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3202/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3202/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:46.455+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014iv:","updated":"2026-01-16T22:00:46.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/28]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/97]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/321]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/321]\n*Defect Dojo link:* http://localhost:8080/finding/321
- (321)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/335]\n*Defect Dojo link:* http://localhost:8080/finding/335
+ (335)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/320]\n*Defect
- Dojo link:* http://localhost:8080/finding/320 (320)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/334]\n*Defect
+ Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21301/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24917/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - cbfbd7b0-469b-40ea-a5df-c6c9bab48b75
+ - 6b10f132-b0d1-47f4-81f2-04ed3b8b68b5
Atl-Traceid:
- - cbfbd7b0469b40eaa5dfc6c9bab48b75
+ - 6b10f132b0d147f481f204ed3b8b68b5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:05 GMT
+ - Fri, 16 Jan 2026 21:00:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=416,atl-edge;dur=409,atl-edge-internal;dur=15,atl-edge-upstream;dur=395,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="HC8YUkl2gpeugB7cLXB_nkm487-grmlV6s5EjTQ5zBaAcsUfbw6f3g==",cdn-downstream-fbl;dur=420
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=275,atl-edge;dur=251,atl-edge-internal;dur=17,atl-edge-upstream;dur=234,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="8MXGwjSndc1-1GLfx8GrLBls3VQ_oh5LuCYisxHAQaFKceq_TiNfjw==",cdn-downstream-fbl;dur=279
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8008f773a176223da2278b5cb39f91fa.cloudfront.net (CloudFront)
+ - 1.1 03fa0691c8124b25f37416f26d179308.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - HC8YUkl2gpeugB7cLXB_nkm487-grmlV6s5EjTQ5zBaAcsUfbw6f3g==
+ - 8MXGwjSndc1-1GLfx8GrLBls3VQ_oh5LuCYisxHAQaFKceq_TiNfjw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 8371edf188c857f06c371d78947092fa
+ - a52b84aeee7d3b69840485cd9a2624b7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:06.344+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:48.021+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 9b38e424-bee7-4268-9b0e-1cf1affcea51
+ - bb1efff4-7a5e-4eb7-8e8d-0fc6ecebb303
Atl-Traceid:
- - 9b38e424bee742689b0e1cf1affcea51
+ - bb1efff47a5e4eb78e8d0fc6ecebb303
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:06 GMT
+ - Fri, 16 Jan 2026 21:00:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=320,atl-edge-internal;dur=14,atl-edge-upstream;dur=307,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="6268rKmv5rcMrsxdBz0XCVbEiVx7nXVyiQ7xrAtu9uB7idc0U6zMgw==",cdn-downstream-fbl;dur=327
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=194,atl-edge;dur=171,atl-edge-internal;dur=16,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="ALU1CBWrUd0PN54IZ6d2CV2aIW_ggs7nuH9m982DHXBoO67pyZyPZw==",cdn-downstream-fbl;dur=198
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c7cd0041811f30bfd9c4a00e82b6a3c8.cloudfront.net (CloudFront)
+ - 1.1 96725c0e4ced177a38df871e7cc48a4a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 6268rKmv5rcMrsxdBz0XCVbEiVx7nXVyiQ7xrAtu9uB7idc0U6zMgw==
+ - ALU1CBWrUd0PN54IZ6d2CV2aIW_ggs7nuH9m982DHXBoO67pyZyPZw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - 48640e0a31d8492fb601e26dbbedd39f
+ - 8b0c79c87381d0406833f322b8dd34fc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - c22d0420-fd38-4681-9312-3bc2a7411732
+ - ca5d86fa-ffb1-467d-be48-217c62e51e27
Atl-Traceid:
- - c22d0420fd38468193123bc2a7411732
+ - ca5d86faffb1467dbe48217c62e51e27
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:07 GMT
+ - Fri, 16 Jan 2026 21:00:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=532,atl-edge;dur=531,atl-edge-internal;dur=14,atl-edge-upstream;dur=517,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="qwNjPuWnLgdbYh-EkUT0MhT7GRVd-tP_QjU4w2rpimbHr7YODCGfuw==",cdn-downstream-fbl;dur=536
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=299,atl-edge;dur=276,atl-edge-internal;dur=18,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="ZN327-GYEiFkdP09rQUntKY4GUQ1lLAVALLnAE580VoWpiFOCDv-9w==",cdn-downstream-fbl;dur=304
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 899497b8fe71995dd517601bf8d5f77a.cloudfront.net (CloudFront)
+ - 1.1 4bf7648bb834720558d800d34e73ea5c.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - qwNjPuWnLgdbYh-EkUT0MhT7GRVd-tP_QjU4w2rpimbHr7YODCGfuw==
+ - ZN327-GYEiFkdP09rQUntKY4GUQ1lLAVALLnAE580VoWpiFOCDv-9w==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - df780b2573d037f7e73fd3aa00c2a809
+ - d40d72135e454dec5297e0feae79f395
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/29] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/98] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]\n*Defect
- Dojo link:* http://localhost:8080/finding/322 (322)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]\n*Defect
+ Dojo link:* http://localhost:8080/finding/336 (336)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]\n*Defect Dojo link:* http://localhost:8080/finding/324
- (324)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]\n*Defect Dojo link:* http://localhost:8080/finding/338
+ (338)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7013'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21302","key":"NTEST-3123","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21302"}'
+ string: '{"id":"24918","key":"NTEST-3203","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24918"}'
headers:
Atl-Request-Id:
- - 061c78ea-5c30-462c-9357-08453908e849
+ - 556ef2a6-f0fe-4d3d-b56d-5e69f638052b
Atl-Traceid:
- - 061c78ea5c30462c935708453908e849
+ - 556ef2a6f0fe4d3db56d5e69f638052b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:09 GMT
+ - Fri, 16 Jan 2026 21:00:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=783,atl-edge;dur=781,atl-edge-internal;dur=14,atl-edge-upstream;dur=767,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="dSnKJ7xTgtRldlbxD1M0CcghX_li4hbMUtNaadJmqaI2BrONSU6vqQ==",cdn-downstream-fbl;dur=787
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=866,atl-edge;dur=843,atl-edge-internal;dur=14,atl-edge-upstream;dur=829,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="mZRrXh22OGZAPfyHDZMJdWzDe-CmBLcthhw7mS06d9Bt65m7q-zH7Q==",cdn-downstream-fbl;dur=872
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 af9df879c48ca18a8b67eda7edecc4a4.cloudfront.net (CloudFront)
+ - 1.1 66c3751eb8a2afa1d635a1fd8a58a2ac.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - dSnKJ7xTgtRldlbxD1M0CcghX_li4hbMUtNaadJmqaI2BrONSU6vqQ==
+ - mZRrXh22OGZAPfyHDZMJdWzDe-CmBLcthhw7mS06d9Bt65m7q-zH7Q==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P1
X-Arequestid:
- - 705cc1a0280790454e9594b8dcf11d52
+ - 907466a6dce8f1e75271a5db95e11346
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3123
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3203
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21302","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21302","key":"NTEST-3123","fields":{"statuscategorychangedate":"2025-07-25T21:11:09.361+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24918","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24918","key":"NTEST-3203","fields":{"statuscategorychangedate":"2026-01-16T22:00:49.256+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3123/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3123/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:09.190+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gn:","updated":"2025-07-25T21:11:09.273+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3203/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3203/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:48.963+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014j3:","updated":"2026-01-16T22:00:49.072+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/29]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/98]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]\n*Defect
- Dojo link:* http://localhost:8080/finding/322 (322)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]\n*Defect
+ Dojo link:* http://localhost:8080/finding/336 (336)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]\n*Defect
- Dojo link:* http://localhost:8080/finding/324 (324)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]\n*Defect
+ Dojo link:* http://localhost:8080/finding/338 (338)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21302/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24918/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4e4f912d-c5e8-401a-b86f-835c6b70872d
+ - bd0d7a5d-4092-42c4-83dc-a05ae36d1fb7
Atl-Traceid:
- - 4e4f912dc5e8401ab86f835c6b70872d
+ - bd0d7a5d409242c483dca05ae36d1fb7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:10 GMT
+ - Fri, 16 Jan 2026 21:00:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=429,atl-edge;dur=427,atl-edge-internal;dur=16,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="HVRRYjtc-ezZD7bLF5RRxJMABqwKG2YSzgexVEcct8sOj6NKebA-Vw==",cdn-downstream-fbl;dur=433
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=367,atl-edge;dur=280,atl-edge-internal;dur=16,atl-edge-upstream;dur=264,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Bh09UAUSoyH7G6c_oMgjoKL9SiwPWePvZw7nYeQzJkwI2QCR1Yqgdg==",cdn-downstream-fbl;dur=371
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f515cf2b40cd90e36f3532dbd8a5ae.cloudfront.net (CloudFront)
+ - 1.1 5ca5d4f769888ca013d817040942ebf2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - HVRRYjtc-ezZD7bLF5RRxJMABqwKG2YSzgexVEcct8sOj6NKebA-Vw==
+ - Bh09UAUSoyH7G6c_oMgjoKL9SiwPWePvZw7nYeQzJkwI2QCR1Yqgdg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - b814db57bdf4ae00e208960a7e69e173
+ - 337f7de574f9edab81e3e8b32bf76805
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21302
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24918
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21302","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21302","key":"NTEST-3123","fields":{"statuscategorychangedate":"2025-07-25T21:11:09.361+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24918","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24918","key":"NTEST-3203","fields":{"statuscategorychangedate":"2026-01-16T22:00:49.256+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3123/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3123/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:09.190+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gn:","updated":"2025-07-25T21:11:09.273+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3203/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3203/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:48.963+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014j3:","updated":"2026-01-16T22:00:49.072+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/29]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/98]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/322]\n*Defect
- Dojo link:* http://localhost:8080/finding/322 (322)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/336]\n*Defect
+ Dojo link:* http://localhost:8080/finding/336 (336)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/324]\n*Defect
- Dojo link:* http://localhost:8080/finding/324 (324)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/338]\n*Defect
+ Dojo link:* http://localhost:8080/finding/338 (338)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21302/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24918/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - a3a7fd35-de25-4f0f-bdb2-135f5c56ba3b
+ - 4dd61636-fa94-41c5-a5a9-22bef0d87320
Atl-Traceid:
- - a3a7fd35de254f0fbdb2135f5c56ba3b
+ - 4dd61636fa9441c5a5a922bef0d87320
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:12 GMT
+ - Fri, 16 Jan 2026 21:00:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=413,atl-edge-internal;dur=15,atl-edge-upstream;dur=399,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="eSRxuRHF00GTwb9NnNvFcSr0148i5EiUr3LL-bHWpJkxLVl7JUc1Aw==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=319,atl-edge;dur=296,atl-edge-internal;dur=15,atl-edge-upstream;dur=281,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="3B0jCt2WVZYOKbcA5cwtZme5DSy9Ywctxw_d24n_FecbJvAk5DqO7w==",cdn-downstream-fbl;dur=323
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 26131a3cde08b60652129237128292a2.cloudfront.net (CloudFront)
+ - 1.1 025e84e972a461c1dd140ac5fbbbd0aa.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - eSRxuRHF00GTwb9NnNvFcSr0148i5EiUr3LL-bHWpJkxLVl7JUc1Aw==
+ - 3B0jCt2WVZYOKbcA5cwtZme5DSy9Ywctxw_d24n_FecbJvAk5DqO7w==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 55aa762d6eb478a4dd9de96726c24c1d
+ - 44ccb35e68965be77fe8415eac9e5ca9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:13.244+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:50.657+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 511ba29b-bfb6-461b-8e7b-c6903c7958ec
+ - de413f02-5ebd-4be1-967e-bfcf9864dbd0
Atl-Traceid:
- - 511ba29bbfb6461b8e7bc6903c7958ec
+ - de413f025ebd4be1967ebfcf9864dbd0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:13 GMT
+ - Fri, 16 Jan 2026 21:00:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=320,atl-edge;dur=318,atl-edge-internal;dur=13,atl-edge-upstream;dur=304,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="A42WsORJMi8KsvRV0oxmnVsNZP15mf1xsLCEVTN31s9fqJj1weOZSw==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=214,atl-edge;dur=191,atl-edge-internal;dur=31,atl-edge-upstream;dur=154,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="pNb0ZZnrDCo4SW8sGwUGoc3jarO1RBeObLp7m4cDYwJE-9RBcx1VHg==",cdn-downstream-fbl;dur=218
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4ec881b9cff95ab6b1f20a72ee8404c4.cloudfront.net (CloudFront)
+ - 1.1 43eacc46a8d7338068c3e681a16f62be.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - A42WsORJMi8KsvRV0oxmnVsNZP15mf1xsLCEVTN31s9fqJj1weOZSw==
+ - pNb0ZZnrDCo4SW8sGwUGoc3jarO1RBeObLp7m4cDYwJE-9RBcx1VHg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - b8c0a8728c56e84c34d92deca0af88c5
+ - 786087291bc5dc1672185d2f4b697a08
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 645081f2-58ba-4f82-857f-3ccbaf1b6c14
+ - 9ac4b10e-6538-4648-9eb3-3c0e4e90612a
Atl-Traceid:
- - 645081f258ba4f82857f3ccbaf1b6c14
+ - 9ac4b10e653846489eb33c0e4e90612a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:14 GMT
+ - Fri, 16 Jan 2026 21:00:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=484,atl-edge;dur=482,atl-edge-internal;dur=14,atl-edge-upstream;dur=467,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="K7f_9HhholTgEQ0YawoC5GFaKRzp8Czw1pydKF9RW8eJBQfTHYExOw==",cdn-downstream-fbl;dur=488
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=430,atl-edge;dur=338,atl-edge-internal;dur=20,atl-edge-upstream;dur=318,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="hG3Wmu1TmfGWWsiNIaFnJRCZyj_Ju08YSCywYrm685Ah4ePjHHXt5w==",cdn-downstream-fbl;dur=434
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 59b0eb2f33939f549a18868a652690fe.cloudfront.net (CloudFront)
+ - 1.1 1152d84b916a23e4b38cef1a20064b3e.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - K7f_9HhholTgEQ0YawoC5GFaKRzp8Czw1pydKF9RW8eJBQfTHYExOw==
+ - hG3Wmu1TmfGWWsiNIaFnJRCZyj_Ju08YSCywYrm685Ah4ePjHHXt5w==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - 42e96bab0dac5748efcab9e7f95f93f7
+ - 06d4421df98091b4a73b06787650f2a5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/30] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/99] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]\n*Defect
- Dojo link:* http://localhost:8080/finding/323 (323)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]\n*Defect
+ Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2166'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21303","key":"NTEST-3124","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21303"}'
+ string: '{"id":"24919","key":"NTEST-3204","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24919"}'
headers:
Atl-Request-Id:
- - 90d9fce2-50cd-4028-831e-bf2b5d386b5d
+ - 64f017d4-9e06-4d33-80d8-6736d554a95f
Atl-Traceid:
- - 90d9fce250cd4028831ebf2b5d386b5d
+ - 64f017d49e064d3380d86736d554a95f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:16 GMT
+ - Fri, 16 Jan 2026 21:00:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=806,atl-edge;dur=801,atl-edge-internal;dur=14,atl-edge-upstream;dur=786,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="-9CvWx7aT-NxMHGZd75Qwj7kFKpJFsKXAgT_NWTGkW7RM_GEknpZPQ==",cdn-downstream-fbl;dur=809
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=751,atl-edge;dur=661,atl-edge-internal;dur=15,atl-edge-upstream;dur=646,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="tMv7HhTtoSFEXUuDsbcVNOcI_BC6hu7t1TDYhaZoaOK6LTAzjYuYYA==",cdn-downstream-fbl;dur=756
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 928b9a46c60991369db0a5ad58525eca.cloudfront.net (CloudFront)
+ - 1.1 1c24aee52487b0940693b93c42adc29c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - -9CvWx7aT-NxMHGZd75Qwj7kFKpJFsKXAgT_NWTGkW7RM_GEknpZPQ==
+ - tMv7HhTtoSFEXUuDsbcVNOcI_BC6hu7t1TDYhaZoaOK6LTAzjYuYYA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P1
X-Arequestid:
- - a399ac059bb249e76a02f79e52070b37
+ - 9d150f97ff2187cfcdc0bbe05738eb5a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3124
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3204
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21303","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21303","key":"NTEST-3124","fields":{"statuscategorychangedate":"2025-07-25T21:11:16.184+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24919","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24919","key":"NTEST-3204","fields":{"statuscategorychangedate":"2026-01-16T22:00:51.976+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3124/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3124/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:16.005+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gv:","updated":"2025-07-25T21:11:16.076+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3204/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3204/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:51.750+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jb:","updated":"2026-01-16T22:00:51.824+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/30]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/99]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]\n*Defect
- Dojo link:* http://localhost:8080/finding/323 (323)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]\n*Defect
+ Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21303/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24919/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 38d24720-0d4d-4292-bd97-78721ff6f25c
+ - 75987101-f5d2-4c7f-b74e-b3b9f05d6c05
Atl-Traceid:
- - 38d247200d4d4292bd9778721ff6f25c
+ - 75987101f5d24c7fb74eb3b9f05d6c05
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:17 GMT
+ - Fri, 16 Jan 2026 21:00:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=432,atl-edge;dur=429,atl-edge-internal;dur=14,atl-edge-upstream;dur=415,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="y2u3lyLOb8Z2vOqRbpInJJk9P39l0OW-kTLlEavWvj50i_s8GL-BDQ==",cdn-downstream-fbl;dur=436
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=271,atl-edge;dur=249,atl-edge-internal;dur=15,atl-edge-upstream;dur=234,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="qa3p0EMgBmiOT_rywqAI9HEP0UsJMDW4UVUlz_ZBVcxNcLral3jfHw==",cdn-downstream-fbl;dur=275
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9ce11977697b826548974c991c092622.cloudfront.net (CloudFront)
+ - 1.1 f6327093dd59f54131617ea3ab04bd94.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - y2u3lyLOb8Z2vOqRbpInJJk9P39l0OW-kTLlEavWvj50i_s8GL-BDQ==
+ - qa3p0EMgBmiOT_rywqAI9HEP0UsJMDW4UVUlz_ZBVcxNcLral3jfHw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - 929432d82f1231e94605a10d340d285e
+ - cb6b92c10c3dc34dba2d03581c1a00eb
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21303
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24919
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21303","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21303","key":"NTEST-3124","fields":{"statuscategorychangedate":"2025-07-25T21:11:16.184+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24919","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24919","key":"NTEST-3204","fields":{"statuscategorychangedate":"2026-01-16T22:00:51.976+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3124/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3124/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:16.005+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012gv:","updated":"2025-07-25T21:11:16.076+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3204/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3204/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:51.750+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jb:","updated":"2026-01-16T22:00:51.824+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/30]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/99]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/117]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/122]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/323]\n*Defect
- Dojo link:* http://localhost:8080/finding/323 (323)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/337]\n*Defect
+ Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21303/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24919/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 3d94376d-5ecc-4241-b2f6-fb3d2c74400c
+ - 619c1bad-fc50-4869-9f00-591d1f3cbb6f
Atl-Traceid:
- - 3d94376d5ecc4241b2f6fb3d2c74400c
+ - 619c1badfc5048699f00591d1f3cbb6f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:19 GMT
+ - Fri, 16 Jan 2026 21:00:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=427,atl-edge;dur=425,atl-edge-internal;dur=15,atl-edge-upstream;dur=410,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="UrhrCGpXLoE4jYBOfnpJ_CfmTjycRlMlA-wZr4MLjt4A6zMCHOboiQ==",cdn-downstream-fbl;dur=430
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=328,atl-edge;dur=238,atl-edge-internal;dur=17,atl-edge-upstream;dur=218,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="xo6ScaPP8H_XGqSJdQDkshEh--tAMXWT78_ixerW00fKmyAxcDYkZA==",cdn-downstream-fbl;dur=332
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9fbddde4165412a5f9426c247ca005c0.cloudfront.net (CloudFront)
+ - 1.1 61ea521c913b8f6dbadaa96ecbb825ec.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UrhrCGpXLoE4jYBOfnpJ_CfmTjycRlMlA-wZr4MLjt4A6zMCHOboiQ==
+ - xo6ScaPP8H_XGqSJdQDkshEh--tAMXWT78_ixerW00fKmyAxcDYkZA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - 0c1982f06394aa0c0b4e9a8d076e3642
+ - b8fbbbae9e78924abcf0ac09696408e6
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/117", "url_api": "http://localhost:8080/api/v2/tests/117/",
+ "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 117, "url_ui": "http://localhost:8080/test/117", "url_api": "http://localhost:8080/api/v2/tests/117/"}}'
+ 122, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/117\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/117/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/122/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 117, \\\"url_ui\\\": \\\"http://localhost:8080/test/117\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/117/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 122, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 117,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/117/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/117\"\n },\n \"title\":
+ 122,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/122\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/117/\",\n \"url_ui\":
- \"http://localhost:8080/test/117\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n \"url_ui\":
+ \"http://localhost:8080/test/122\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:11:19 GMT
+ - Fri, 16 Jan 2026 21:00:52 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/117", "url_api": "http://localhost:8080/api/v2/tests/117/",
+ null, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 117, "url_ui": "http://localhost:8080/test/117", "url_api": "http://localhost:8080/api/v2/tests/117/"},
- "finding_count": 5, "findings": {"new": [{"id": 321, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/321",
- "url_api": "http://localhost:8080/api/v2/findings/321/"}, {"id": 322, "title":
+ 122, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/"},
+ "finding_count": 5, "findings": {"new": [{"id": 335, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/335",
+ "url_api": "http://localhost:8080/api/v2/findings/335/"}, {"id": 336, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/322", "url_api":
- "http://localhost:8080/api/v2/findings/322/"}, {"id": 320, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/336", "url_api":
+ "http://localhost:8080/api/v2/findings/336/"}, {"id": 334, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/320", "url_api": "http://localhost:8080/api/v2/findings/320/"},
- {"id": 323, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/323", "url_api":
- "http://localhost:8080/api/v2/findings/323/"}, {"id": 324, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/334", "url_api": "http://localhost:8080/api/v2/findings/334/"},
+ {"id": 337, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/337", "url_api":
+ "http://localhost:8080/api/v2/findings/337/"}, {"id": 338, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/324", "url_api":
- "http://localhost:8080/api/v2/findings/324/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/338", "url_api":
+ "http://localhost:8080/api/v2/findings/338/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/117\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/117/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 117, \\\"url_ui\\\": \\\"http://localhost:8080/test/117\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/117/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 321, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 122, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 335, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/321\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/321/\\\"}, {\\\"id\\\": 322, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/335\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/335/\\\"}, {\\\"id\\\": 336, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/322\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/322/\\\"},
- {\\\"id\\\": 320, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/336\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/336/\\\"},
+ {\\\"id\\\": 334, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/320\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/320/\\\"},
- {\\\"id\\\": 323, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/334\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/334/\\\"},
+ {\\\"id\\\": 337, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/323\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/323/\\\"},
- {\\\"id\\\": 324, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/337\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/337/\\\"},
+ {\\\"id\\\": 338, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/324\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/324/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/338\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/338/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 321,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 335,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/321/\",\n \"url_ui\": \"http://localhost:8080/finding/321\"\n
- \ },\n {\n \"id\": 322,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/335/\",\n \"url_ui\": \"http://localhost:8080/finding/335\"\n
+ \ },\n {\n \"id\": 336,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/322/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/322\"\n },\n
- \ {\n \"id\": 320,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/336/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/336\"\n },\n
+ \ {\n \"id\": 334,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/320/\",\n \"url_ui\": \"http://localhost:8080/finding/320\"\n
- \ },\n {\n \"id\": 323,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/334/\",\n \"url_ui\": \"http://localhost:8080/finding/334\"\n
+ \ },\n {\n \"id\": 337,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/323/\",\n \"url_ui\":
- \"http://localhost:8080/finding/323\"\n },\n {\n \"id\":
- 324,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/337/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/337\"\n },\n {\n \"id\":
+ 338,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/324/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/324\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/338/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/338\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 117,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/117/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/117\"\n },\n \"title\":
+ 122,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/122\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/117/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/117\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/122\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:11:19 GMT
+ - Fri, 16 Jan 2026 21:00:52 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_no_push_to_jira_but_push_all_issues.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_no_push_to_jira_but_push_all_issues.yaml
index 77e8fff91ad..d7437b8ba89 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_no_push_to_jira_but_push_all_issues.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_no_push_to_jira_but_push_all_issues.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:20.574+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:53.276+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 7689d471-cd34-446a-b339-f9aea90b25ec
+ - 6bc6c6dc-4568-4b89-b9cf-9ae1e51be440
Atl-Traceid:
- - 7689d471cd34446ab339f9aea90b25ec
+ - 6bc6c6dc45684b89b9cf9ae1e51be440
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:20 GMT
+ - Fri, 16 Jan 2026 21:00:53 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=322,atl-edge;dur=319,atl-edge-internal;dur=13,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="t6s39-xr9N3W-T9b76ymUsyCsrwvgvQbzS7OICQPN9bzOT8_4umeGQ==",cdn-downstream-fbl;dur=325
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=217,atl-edge;dur=193,atl-edge-internal;dur=42,atl-edge-upstream;dur=151,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="krB7krnulyobsJSG10WpyEk0wPQidH7ZPdcWhIDoqxFxI9ozIBWQgA==",cdn-downstream-fbl;dur=220
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a492a754c99951a31a41d1c031185610.cloudfront.net (CloudFront)
+ - 1.1 93cc368823eb6941f79ab9c25f53ccbc.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - t6s39-xr9N3W-T9b76ymUsyCsrwvgvQbzS7OICQPN9bzOT8_4umeGQ==
+ - krB7krnulyobsJSG10WpyEk0wPQidH7ZPdcWhIDoqxFxI9ozIBWQgA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - 253ebfb6bf058ead3d4f8127ecca9463
+ - 46f52b2dd8370a27c2aceb74e5846ca4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - eb0d7a0d-2f7e-4951-aac8-9047a718a835
+ - 120e8e0b-b535-47f9-9220-10935ab2402f
Atl-Traceid:
- - eb0d7a0d2f7e4951aac89047a718a835
+ - 120e8e0bb53547f9922010935ab2402f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:22 GMT
+ - Fri, 16 Jan 2026 21:00:53 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=477,atl-edge;dur=475,atl-edge-internal;dur=14,atl-edge-upstream;dur=461,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="0jxsS2Ace5P6nLLVNDicfSOKIsA75TQRcekSsBk0-T7cTJjGPfmFrw==",cdn-downstream-fbl;dur=481
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=374,atl-edge;dur=351,atl-edge-internal;dur=17,atl-edge-upstream;dur=333,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="8e3Bs3ptp39Zo8xZnmXIKuJxx9n8rXB-fuW_R0EunjxAMo0MxTyUPQ==",cdn-downstream-fbl;dur=377
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e5b020a801bdf1ad3db7e2da019dad6c.cloudfront.net (CloudFront)
+ - 1.1 917f52e466585bc699c3b9819efba43a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 0jxsS2Ace5P6nLLVNDicfSOKIsA75TQRcekSsBk0-T7cTJjGPfmFrw==
+ - 8e3Bs3ptp39Zo8xZnmXIKuJxx9n8rXB-fuW_R0EunjxAMo0MxTyUPQ==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - e07f80cddc78774f621348dad227b114
+ - ed70bdadb928638e7244b65fb740b82e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21304","key":"NTEST-3125","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304"}'
+ string: '{"id":"24920","key":"NTEST-3205","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920"}'
headers:
Atl-Request-Id:
- - 0af47490-2721-436c-9401-27780f829729
+ - 05dbaf97-8e3b-4c51-adb1-bfd52f0c9218
Atl-Traceid:
- - 0af474902721436c940127780f829729
+ - 05dbaf978e3b4c51adb1bfd52f0c9218
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:23 GMT
+ - Fri, 16 Jan 2026 21:00:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=921,atl-edge;dur=919,atl-edge-internal;dur=16,atl-edge-upstream;dur=903,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="5JWPCC7ILPE9fRAD3U8-3jHK43Ycqqab80FiANpIrwYWSHRp9s_wBQ==",cdn-downstream-fbl;dur=925
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=711,atl-edge;dur=687,atl-edge-internal;dur=17,atl-edge-upstream;dur=670,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="ZW6obdWVdKXTAqK2qLMqrdZSdj6ZSocrlTzXhI_FAnTUGL72tHNuLA==",cdn-downstream-fbl;dur=717
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4ab519b4cd27a1b8a4b258d7f39bbc7e.cloudfront.net (CloudFront)
+ - 1.1 382c1ac99264c38b9320835b20f5260e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5JWPCC7ILPE9fRAD3U8-3jHK43Ycqqab80FiANpIrwYWSHRp9s_wBQ==
+ - ZW6obdWVdKXTAqK2qLMqrdZSdj6ZSocrlTzXhI_FAnTUGL72tHNuLA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - 8caaf6eb541e91dab4016dd313f31070
+ - 8dc0532842f0f56719d64f86c6a3443d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21304","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304","key":"NTEST-3125","fields":{"statuscategorychangedate":"2025-07-25T21:11:23.773+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:23.513+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012h3:","updated":"2025-07-25T21:11:23.609+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ce74ebc9-86e2-4af4-851f-67db9f838d34
+ - 14de533c-c9f5-47df-a5c3-ef30176ae255
Atl-Traceid:
- - ce74ebc986e24af4851f67db9f838d34
+ - 14de533cc9f547dfa5c3ef30176ae255
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:25 GMT
+ - Fri, 16 Jan 2026 21:00:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=407,atl-edge;dur=405,atl-edge-internal;dur=14,atl-edge-upstream;dur=391,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="gKV0dsWP5bP7E10_ZHvT77QAabqclPskf1nhzkYAQDn9otNag7ApvQ==",cdn-downstream-fbl;dur=411
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=297,atl-edge;dur=274,atl-edge-internal;dur=16,atl-edge-upstream;dur=257,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="kRcshY8YNZ9_joiCmAeb7U1eYOFWz03C4MnuuGDsmL3_gZeJOYRpdw==",cdn-downstream-fbl;dur=301
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9e854e194e7846c005e5306bd39c7648.cloudfront.net (CloudFront)
+ - 1.1 935c1dbe2a77979e8997ab720ef1b816.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - gKV0dsWP5bP7E10_ZHvT77QAabqclPskf1nhzkYAQDn9otNag7ApvQ==
+ - kRcshY8YNZ9_joiCmAeb7U1eYOFWz03C4MnuuGDsmL3_gZeJOYRpdw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P1
X-Arequestid:
- - 83135810049eb7e68252aea55822b7ad
+ - f74b655119bc2e15dd53ca2b2e1067ef
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21304
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21304","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304","key":"NTEST-3125","fields":{"statuscategorychangedate":"2025-07-25T21:11:23.773+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:23.513+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012h3:","updated":"2025-07-25T21:11:23.609+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - b070bed9-f21c-491e-9afc-33b55a75c88f
+ - 623c7ac1-0dd4-4625-839d-2fd8d34502ea
Atl-Traceid:
- - b070bed9f21c491e9afc33b55a75c88f
+ - 623c7ac10dd44625839d2fd8d34502ea
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:26 GMT
+ - Fri, 16 Jan 2026 21:00:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=414,atl-edge-internal;dur=15,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="TMn9j-H0OftkeUpreZrNHHPpD9rCH9ZBEJy4MwLotc3gYpn_s85oZw==",cdn-downstream-fbl;dur=421
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=271,atl-edge;dur=249,atl-edge-internal;dur=16,atl-edge-upstream;dur=232,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="15rig03pr5qfIJTxwNeQNkG6oO4w4pbtpePe765zjUjc_4cuRQzLtA==",cdn-downstream-fbl;dur=276
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9fe9a459a2b2b8935dc7f533182681dc.cloudfront.net (CloudFront)
+ - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - TMn9j-H0OftkeUpreZrNHHPpD9rCH9ZBEJy4MwLotc3gYpn_s85oZw==
+ - 15rig03pr5qfIJTxwNeQNkG6oO4w4pbtpePe765zjUjc_4cuRQzLtA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 43cdd7545ae0e00a25e22258e56fe633
+ - 89c33380d90cde62a8b42afab3c20823
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:27.688+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:55.685+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 837f3241-0212-4a02-976f-803ecc79f9e0
+ - 8dd1c2d0-96e0-4f7a-a977-d71fa6d35e45
Atl-Traceid:
- - 837f324102124a02976f803ecc79f9e0
+ - 8dd1c2d096e04f7aa977d71fa6d35e45
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:27 GMT
+ - Fri, 16 Jan 2026 21:00:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=326,atl-edge;dur=323,atl-edge-internal;dur=14,atl-edge-upstream;dur=309,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="cc3YA366JEQUuMPTiZxVW3ROBwJ1gT5CrVt3mAzZFQWIrb671-tWkQ==",cdn-downstream-fbl;dur=329
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=188,atl-edge;dur=164,atl-edge-internal;dur=15,atl-edge-upstream;dur=149,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="4kqa4ySsT-CK15z0iw-qMtsVVG7E1mz9FnGocUI6WX1FiQ1kyA11wg==",cdn-downstream-fbl;dur=192
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0cf8dd8ff8bb60665199a3fb2c2f8e9e.cloudfront.net (CloudFront)
+ - 1.1 93cc368823eb6941f79ab9c25f53ccbc.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - cc3YA366JEQUuMPTiZxVW3ROBwJ1gT5CrVt3mAzZFQWIrb671-tWkQ==
+ - 4kqa4ySsT-CK15z0iw-qMtsVVG7E1mz9FnGocUI6WX1FiQ1kyA11wg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - 21109b9bcf0fe621898fee21961dee59
+ - 6a15e5afa47892cff97929fedd20a6e2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 1527a268-f9d8-4c3f-8b55-3bc81440a648
+ - 4bed1d1e-7ff6-450c-a577-fe518dc2180a
Atl-Traceid:
- - 1527a268f9d84c3f8b553bc81440a648
+ - 4bed1d1e7ff6450ca577fe518dc2180a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:29 GMT
+ - Fri, 16 Jan 2026 21:00:56 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=476,atl-edge;dur=472,atl-edge-internal;dur=17,atl-edge-upstream;dur=455,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="kuF5_Y5Q5hlULgD-TvsWvSTXVRTJ3ibq0FYFRlIwftu3EH2l6LXtNA==",cdn-downstream-fbl;dur=480
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=301,atl-edge-internal;dur=18,atl-edge-upstream;dur=282,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="uzStj_PtLYrdOxLSfmQTPnGCCO2IAtMMyfgZsi3AeOihp1dCS0LejQ==",cdn-downstream-fbl;dur=327
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f64b5e1795622ac1fd367fad798c10.cloudfront.net (CloudFront)
+ - 1.1 153b67ebb1db442b5cea7f360e7f8cb6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - kuF5_Y5Q5hlULgD-TvsWvSTXVRTJ3ibq0FYFRlIwftu3EH2l6LXtNA==
+ - uzStj_PtLYrdOxLSfmQTPnGCCO2IAtMMyfgZsi3AeOihp1dCS0LejQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - 276f6defa3c2c538215d925f1716db72
+ - 00254f002163c2af175e625b94687561
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect Dojo link:* http://localhost:8080/finding/329
- (329)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect Dojo link:* http://localhost:8080/finding/343
+ (343)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21305","key":"NTEST-3126","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305"}'
+ string: '{"id":"24921","key":"NTEST-3206","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921"}'
headers:
Atl-Request-Id:
- - eace5d29-887c-4c84-b5da-2014ce8cbcb7
+ - 35d28678-a21f-4ec7-a320-d279ce9b7ea9
Atl-Traceid:
- - eace5d29887c4c84b5da2014ce8cbcb7
+ - 35d28678a21f4ec7a320d279ce9b7ea9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:31 GMT
+ - Fri, 16 Jan 2026 21:00:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=948,atl-edge;dur=946,atl-edge-internal;dur=15,atl-edge-upstream;dur=931,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="U3MBdnUe9rGFXl91N_Hg0psNRAbZkzPSh5vqcoUZiw_5mQIPdsHfFw==",cdn-downstream-fbl;dur=952
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=841,atl-edge;dur=817,atl-edge-internal;dur=16,atl-edge-upstream;dur=801,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="fsTL6R2uUhBocBQ-29wVk3ov8yUGn3mRtnlX1AQYnS1DVyyQ7aPDjw==",cdn-downstream-fbl;dur=846
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9fe9a459a2b2b8935dc7f533182681dc.cloudfront.net (CloudFront)
+ - 1.1 0ec4ee481d2d7e134f4c87a9b9fc4e06.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - U3MBdnUe9rGFXl91N_Hg0psNRAbZkzPSh5vqcoUZiw_5mQIPdsHfFw==
+ - fsTL6R2uUhBocBQ-29wVk3ov8yUGn3mRtnlX1AQYnS1DVyyQ7aPDjw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - d65b0ac4f92479c52fb036766a6fc080
+ - 8ed43bafd891fbce850cc2bf14dc9ea3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21305","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305","key":"NTEST-3126","fields":{"statuscategorychangedate":"2025-07-25T21:11:30.827+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:30.530+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hb:","updated":"2025-07-25T21:11:30.617+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect
- Dojo link:* http://localhost:8080/finding/329 (329)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e21d4040-36f0-4a70-aa77-5258c6c81bef
+ - a6d3cdcf-9b47-46ed-9116-de5a0ed12771
Atl-Traceid:
- - e21d404036f04a70aa775258c6c81bef
+ - a6d3cdcf9b4746ed9116de5a0ed12771
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:32 GMT
+ - Fri, 16 Jan 2026 21:00:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=397,atl-edge;dur=393,atl-edge-internal;dur=14,atl-edge-upstream;dur=378,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="O5GWXv786dIlTkoMnKa0YsSWZCZcXRuv1TUJejbFSBcdLt7Kg4Fv-w==",cdn-downstream-fbl;dur=400
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=381,atl-edge;dur=291,atl-edge-internal;dur=16,atl-edge-upstream;dur=275,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="v3VBpDI5r9U-vuWjE2NEpkUqvAckBlirJvAGsFOiuEenLSp82KBRGw==",cdn-downstream-fbl;dur=386
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a6b70b5c031397eba9646ba0eedbdb86.cloudfront.net (CloudFront)
+ - 1.1 dfb119739413f1d03dd274d99dda4dae.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - O5GWXv786dIlTkoMnKa0YsSWZCZcXRuv1TUJejbFSBcdLt7Kg4Fv-w==
+ - v3VBpDI5r9U-vuWjE2NEpkUqvAckBlirJvAGsFOiuEenLSp82KBRGw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 7881457b1fa7bca3d555c446ba186f2c
+ - 95ac43928941c6ebc7c51e33ba0d5a9d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21305
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21305","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305","key":"NTEST-3126","fields":{"statuscategorychangedate":"2025-07-25T21:11:30.827+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:30.530+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hb:","updated":"2025-07-25T21:11:30.617+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect
- Dojo link:* http://localhost:8080/finding/329 (329)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 22032281-5f9f-4f77-9899-7a6042a4d81c
+ - 56d4d6ea-f771-4a9f-9147-b9bad7416b4c
Atl-Traceid:
- - 220322815f9f4f7798997a6042a4d81c
+ - 56d4d6eaf7714a9f9147b9bad7416b4c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:33 GMT
+ - Fri, 16 Jan 2026 21:00:58 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=477,atl-edge;dur=475,atl-edge-internal;dur=16,atl-edge-upstream;dur=459,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="SNPUs3GnGc9FwWKqxoEzGAETojxWheMQvZN5t0lyifA8_dn2TvhDpA==",cdn-downstream-fbl;dur=480
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=304,atl-edge;dur=281,atl-edge-internal;dur=16,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="ko8wKeURnIsel7OgVuKuQAkReto9WbZyAwVO8mOY1zFKe-rAzrMT6w==",cdn-downstream-fbl;dur=308
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 30a845a852b74a2965aabbcb6034301e.cloudfront.net (CloudFront)
+ - 1.1 f0a2a95cb4d25b2414a9c1a7a754943e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - SNPUs3GnGc9FwWKqxoEzGAETojxWheMQvZN5t0lyifA8_dn2TvhDpA==
+ - ko8wKeURnIsel7OgVuKuQAkReto9WbZyAwVO8mOY1zFKe-rAzrMT6w==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 8d07b5bc87232746b7c47f1fa3ced7ed
+ - d759eaeaa701481b1c96abd9299c5635
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:34.758+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:00:58.320+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 13a2f690-5f17-4196-9c0f-729c21d5562f
+ - 7cdf5c27-ecc8-4a59-8940-f15f7fd357a1
Atl-Traceid:
- - 13a2f6905f1741969c0f729c21d5562f
+ - 7cdf5c27ecc84a598940f15f7fd357a1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:34 GMT
+ - Fri, 16 Jan 2026 21:00:58 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=326,atl-edge;dur=322,atl-edge-internal;dur=14,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="IKH1ZWcY2OECbf6VekWnzjS3Br4OZFZA6sjgT1j_F_QAuf31b_qcpg==",cdn-downstream-fbl;dur=330
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=201,atl-edge;dur=178,atl-edge-internal;dur=15,atl-edge-upstream;dur=163,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="DF5yNttSP5PClW2EcMQeKM0eFP8R1sljdIEDzuvl5g7MGa-ckeZm5g==",cdn-downstream-fbl;dur=205
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b96ad58427ffff8b9d3959350f8c9f16.cloudfront.net (CloudFront)
+ - 1.1 fa6b9e1b41b3cd4347ebce8cef156f7a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IKH1ZWcY2OECbf6VekWnzjS3Br4OZFZA6sjgT1j_F_QAuf31b_qcpg==
+ - DF5yNttSP5PClW2EcMQeKM0eFP8R1sljdIEDzuvl5g7MGa-ckeZm5g==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - 7c007faf81a164e4205e5857924c0619
+ - dadb80bc176c6ee61bcc7feef40d4969
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - a5bf075d-0709-466f-9216-e389fc288efc
+ - 3c07ed03-21a1-412e-a532-d1b33fce2864
Atl-Traceid:
- - a5bf075d0709466f9216e389fc288efc
+ - 3c07ed0321a1412ea532d1b33fce2864
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:36 GMT
+ - Fri, 16 Jan 2026 21:00:58 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=476,atl-edge;dur=474,atl-edge-internal;dur=16,atl-edge-upstream;dur=459,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="Qbam-JSQ-ZvxzkzB_4yDZHTrudTTyps0GjP-h5HpI5sW-Sgta1JShA==",cdn-downstream-fbl;dur=479
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=364,atl-edge;dur=342,atl-edge-internal;dur=17,atl-edge-upstream;dur=324,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="yvL1uSnGK9V01mqvk8zDNA2R2xLL-HP_30QCrN9Vs_dapmg1MzP2AA==",cdn-downstream-fbl;dur=369
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 34472d6f20d066888df6f09fc51137ba.cloudfront.net (CloudFront)
+ - 1.1 a38c14ade55be4cf569d0eca4271fe28.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Qbam-JSQ-ZvxzkzB_4yDZHTrudTTyps0GjP-h5HpI5sW-Sgta1JShA==
+ - yvL1uSnGK9V01mqvk8zDNA2R2xLL-HP_30QCrN9Vs_dapmg1MzP2AA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - cf6e61fd722859dee4698b74d9eb9bb0
+ - fe095991459d238e8d2daabed602bd23
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2167'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21306","key":"NTEST-3127","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306"}'
+ string: '{"id":"24922","key":"NTEST-3207","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922"}'
headers:
Atl-Request-Id:
- - febdba0e-984b-4b7e-ab6d-c5d4ede86add
+ - cceb0da2-1ed7-4dd5-9cd3-4a5cb0795a9e
Atl-Traceid:
- - febdba0e984b4b7eab6dc5d4ede86add
+ - cceb0da21ed74dd59cd34a5cb0795a9e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:37 GMT
+ - Fri, 16 Jan 2026 21:00:59 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=879,atl-edge;dur=878,atl-edge-internal;dur=15,atl-edge-upstream;dur=863,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="sczKlNjHb8HpQfktYvFMDQ1J2S6qtYgOR1G7NPVFSK45oF3VxlFG9g==",cdn-downstream-fbl;dur=882
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=842,atl-edge;dur=820,atl-edge-internal;dur=14,atl-edge-upstream;dur=804,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="wnXNHZkRPvNZ4NPhO7Gw_3cN33YdARgylmnzLZ0oK0wEXC70XhNiIA==",cdn-downstream-fbl;dur=847
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0b8c49517c533bb6e0c14033e0c899b0.cloudfront.net (CloudFront)
+ - 1.1 a827400055d7bbab6e387896737d4e50.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sczKlNjHb8HpQfktYvFMDQ1J2S6qtYgOR1G7NPVFSK45oF3VxlFG9g==
+ - wnXNHZkRPvNZ4NPhO7Gw_3cN33YdARgylmnzLZ0oK0wEXC70XhNiIA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 531bb5dc341baa9c234eee451ae5f25e
+ - 300c48253b7fca07bc9dcdf6a977718e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21306","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306","key":"NTEST-3127","fields":{"statuscategorychangedate":"2025-07-25T21:11:37.756+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:37.527+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hj:","updated":"2025-07-25T21:11:37.611+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 610bb1c9-e7ac-4fc4-a9e9-14615bb4f9fb
+ - 774c3161-44c7-4bca-9c5a-2b44a5a4ebf6
Atl-Traceid:
- - 610bb1c9e7ac4fc4a9e914615bb4f9fb
+ - 774c316144c74bca9c5a2b44a5a4ebf6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:39 GMT
+ - Fri, 16 Jan 2026 21:01:00 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=423,atl-edge;dur=420,atl-edge-internal;dur=16,atl-edge-upstream;dur=403,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="PPUD9q8h0Xmkw1U-dGxyBH4AAVLr8-LLQ8EklbnwIOBljD9QdsVv4A==",cdn-downstream-fbl;dur=427
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=282,atl-edge;dur=260,atl-edge-internal;dur=17,atl-edge-upstream;dur=243,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="E59NjF4WPzYYWf-nmYl3a4wX43vmNamxM3ij4j0Q278jkbqeJ68sPA==",cdn-downstream-fbl;dur=286
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 18973cd357a68e16bd20873be51e8596.cloudfront.net (CloudFront)
+ - 1.1 a42ce842e0f60814700ead82353e9f08.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - PPUD9q8h0Xmkw1U-dGxyBH4AAVLr8-LLQ8EklbnwIOBljD9QdsVv4A==
+ - E59NjF4WPzYYWf-nmYl3a4wX43vmNamxM3ij4j0Q278jkbqeJ68sPA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - 434d2d72e00c7f7376a6b9c1b20305ac
+ - 5e0efc49b816091f8641e8597e54a140
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21306
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21306","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306","key":"NTEST-3127","fields":{"statuscategorychangedate":"2025-07-25T21:11:37.756+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:37.527+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hj:","updated":"2025-07-25T21:11:37.611+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 7f684602-4189-4e41-b9ab-87be67528111
+ - b3a2eb7a-7472-4563-ad0c-085e68376787
Atl-Traceid:
- - 7f68460241894e41b9ab87be67528111
+ - b3a2eb7a74724563ad0c085e68376787
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:40 GMT
+ - Fri, 16 Jan 2026 21:01:00 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=420,atl-edge;dur=418,atl-edge-internal;dur=15,atl-edge-upstream;dur=403,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="dHoSU-PKs0hR2fI7UBGcdl2JcQDw6lPVimfIXk23hOQglJHOQgSExQ==",cdn-downstream-fbl;dur=424
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=295,atl-edge;dur=272,atl-edge-internal;dur=18,atl-edge-upstream;dur=253,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="rRsf0Qz8eVF48TEbULSfyIK997kUqVqVniM3DIgtbR8Iw4LVUN21bg==",cdn-downstream-fbl;dur=299
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1d79c793a8ae16fbcc3957bd18e4b392.cloudfront.net (CloudFront)
+ - 1.1 9079b3d6f14ce041c9c213a2fad4d5a4.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - dHoSU-PKs0hR2fI7UBGcdl2JcQDw6lPVimfIXk23hOQglJHOQgSExQ==
+ - rRsf0Qz8eVF48TEbULSfyIK997kUqVqVniM3DIgtbR8Iw4LVUN21bg==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - adb19e0c216ff5f1c9aea0737afe44d3
+ - 5b54f43901d71dbdcd803ff1ca3b6434
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/118", "url_api": "http://localhost:8080/api/v2/tests/118/",
+ "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 118, "url_ui": "http://localhost:8080/test/118", "url_api": "http://localhost:8080/api/v2/tests/118/"}}'
+ 123, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/118\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/118/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/123/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 118, \\\"url_ui\\\": \\\"http://localhost:8080/test/118\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/118/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 123, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 118,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/118/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/118\"\n },\n \"title\":
+ 123,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/123\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/118/\",\n \"url_ui\":
- \"http://localhost:8080/test/118\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n \"url_ui\":
+ \"http://localhost:8080/test/123\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:11:40 GMT
+ - Fri, 16 Jan 2026 21:01:00 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/118", "url_api": "http://localhost:8080/api/v2/tests/118/",
+ null, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 118, "url_ui": "http://localhost:8080/test/118", "url_api": "http://localhost:8080/api/v2/tests/118/"},
- "finding_count": 5, "findings": {"new": [{"id": 326, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/326",
- "url_api": "http://localhost:8080/api/v2/findings/326/"}, {"id": 327, "title":
+ 123, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/"},
+ "finding_count": 5, "findings": {"new": [{"id": 340, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/340",
+ "url_api": "http://localhost:8080/api/v2/findings/340/"}, {"id": 341, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/327", "url_api":
- "http://localhost:8080/api/v2/findings/327/"}, {"id": 325, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/341", "url_api":
+ "http://localhost:8080/api/v2/findings/341/"}, {"id": 339, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/325", "url_api": "http://localhost:8080/api/v2/findings/325/"},
- {"id": 328, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/328", "url_api":
- "http://localhost:8080/api/v2/findings/328/"}, {"id": 329, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/339", "url_api": "http://localhost:8080/api/v2/findings/339/"},
+ {"id": 342, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/342", "url_api":
+ "http://localhost:8080/api/v2/findings/342/"}, {"id": 343, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/329", "url_api":
- "http://localhost:8080/api/v2/findings/329/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/343", "url_api":
+ "http://localhost:8080/api/v2/findings/343/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/118\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/118/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 118, \\\"url_ui\\\": \\\"http://localhost:8080/test/118\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/118/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 326, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 123, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 340, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/326\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/326/\\\"}, {\\\"id\\\": 327, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/340\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/340/\\\"}, {\\\"id\\\": 341, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/327\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/327/\\\"},
- {\\\"id\\\": 325, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/341\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/341/\\\"},
+ {\\\"id\\\": 339, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/325\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/325/\\\"},
- {\\\"id\\\": 328, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/339\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/339/\\\"},
+ {\\\"id\\\": 342, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/328\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/328/\\\"},
- {\\\"id\\\": 329, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/342\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/342/\\\"},
+ {\\\"id\\\": 343, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/329\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/329/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/343\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/343/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 326,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 340,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/326/\",\n \"url_ui\": \"http://localhost:8080/finding/326\"\n
- \ },\n {\n \"id\": 327,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/340/\",\n \"url_ui\": \"http://localhost:8080/finding/340\"\n
+ \ },\n {\n \"id\": 341,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/327/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/327\"\n },\n
- \ {\n \"id\": 325,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/341/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/341\"\n },\n
+ \ {\n \"id\": 339,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/325/\",\n \"url_ui\": \"http://localhost:8080/finding/325\"\n
- \ },\n {\n \"id\": 328,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/339/\",\n \"url_ui\": \"http://localhost:8080/finding/339\"\n
+ \ },\n {\n \"id\": 342,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/328/\",\n \"url_ui\":
- \"http://localhost:8080/finding/328\"\n },\n {\n \"id\":
- 329,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/342/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/342\"\n },\n {\n \"id\":
+ 343,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/329/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/329\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/343/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/343\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 118,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/118/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/118\"\n },\n \"title\":
+ 123,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/123\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/118/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/118\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/123\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:11:40 GMT
+ - Fri, 16 Jan 2026 21:01:00 GMT
Transfer-Encoding:
- chunked
status:
@@ -1807,17 +1867,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:41.918+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:01.017+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 0d124ccf-b173-458c-b8fc-129c33a6af4e
+ - 4e0808d4-9c98-4026-a389-a9452fdb1bc1
Atl-Traceid:
- - 0d124ccfb173458cb8fc129c33a6af4e
+ - 4e0808d49c984026a389a9452fdb1bc1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1827,9 +1887,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:42 GMT
+ - Fri, 16 Jan 2026 21:01:01 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1837,7 +1897,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=318,atl-edge-internal;dur=12,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="VVAF2KL82vYpDi23b7D76cX9iR_-vzdWV3qjoS1r-6r7qlkM9eWoXg==",cdn-downstream-fbl;dur=325
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=213,atl-edge;dur=189,atl-edge-internal;dur=26,atl-edge-upstream;dur=159,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="cjJLdzXQDghC2WyWxKSmrOQS3CguFy-rAqYpPRwYetwrFtbgJ76cZQ==",cdn-downstream-fbl;dur=217
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1847,19 +1907,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2e2023905a055fb3a137d4ecfec97d0e.cloudfront.net (CloudFront)
+ - 1.1 08d2ad2df7ae14c356e73a61afe3347c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - VVAF2KL82vYpDi23b7D76cX9iR_-vzdWV3qjoS1r-6r7qlkM9eWoXg==
+ - cjJLdzXQDghC2WyWxKSmrOQS3CguFy-rAqYpPRwYetwrFtbgJ76cZQ==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P1
X-Arequestid:
- - 743824f72902afec7dd03c7a628a44cb
+ - 046bdb70e65d8ecc9c2a4f75a6e0606b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1879,105 +1943,59 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21305
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21305","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305","key":"NTEST-3126","fields":{"statuscategorychangedate":"2025-07-25T21:11:30.827+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:30.530+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hb:","updated":"2025-07-25T21:11:30.617+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
- Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
- 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
- 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs
- when the remote database or query specifies a crafted column name. \n\nThere
- are two specific scenarios in which it is likely for an application to be
- vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
- malicious column names.\n2. The application connects to an untrusted database
- and executes a query returning results which contain a malicious column name.\n\n##
- Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
- new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
- AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
- (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
- Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
- 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
- < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
- Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
- < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
- 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
- Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
- Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
- to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
- Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
- to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
- also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
- that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
- - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
- 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
- < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect
- Dojo link:* http://localhost:8080/finding/329 (329)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs
- when the remote database or query specifies a crafted column name. \n\nThere
- are two specific scenarios in which it is likely for an application to be
- vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
- malicious column names.\n2. The application connects to an untrusted database
- and executes a query returning results which contain a malicious column name.\n\n##
- Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
- new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
- AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
- (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
- Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
- 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
- < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
- Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
- < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
- 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
- Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
- Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
- to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
- Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
- to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
- also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
- that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c1c428b4-bd55-4d71-ad19-9aee120f4948
+ - 0d500d23-cabb-406a-998f-86d0e2cd15b4
Atl-Traceid:
- - c1c428b4bd554d71ad199aee120f4948
+ - 0d500d23cabb406a998f86d0e2cd15b4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1987,9 +2005,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:43 GMT
+ - Fri, 16 Jan 2026 21:01:01 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1997,7 +2015,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=428,atl-edge;dur=426,atl-edge-internal;dur=16,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="sYUVkdFvfz5m_7YafiyKiChxfpuSuebZdEO2j6qzuHsxR0G0uJrpXg==",cdn-downstream-fbl;dur=432
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=305,atl-edge;dur=279,atl-edge-internal;dur=21,atl-edge-upstream;dur=254,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="4_aQdNYf1o3kGEpEcKcoDZBC0GRZIAyM_KSSVf793AewjwoQsJ3Bjw==",cdn-downstream-fbl;dur=308
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2007,19 +2025,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 14ad4e3e12857f3153259ccd2089a180.cloudfront.net (CloudFront)
+ - 1.1 d18c8670421cff5c9fa297b260cb2814.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sYUVkdFvfz5m_7YafiyKiChxfpuSuebZdEO2j6qzuHsxR0G0uJrpXg==
+ - 4_aQdNYf1o3kGEpEcKcoDZBC0GRZIAyM_KSSVf793AewjwoQsJ3Bjw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - f7331b7460e020743144cd1ff4b589fa
+ - 809ab9ca31b0049f51d3030455fed439
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2039,7 +2061,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -2053,9 +2075,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 70ea3715-09c0-427e-95c0-f16d927ef6fb
+ - c6939e59-b3ad-4ac3-b3c6-f4cb1ec596d5
Atl-Traceid:
- - 70ea371509c0427e95c0f16d927ef6fb
+ - c6939e59b3ad4ac3b3c6f4cb1ec596d5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2065,9 +2087,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:44 GMT
+ - Fri, 16 Jan 2026 21:01:01 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2075,7 +2097,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=471,atl-edge;dur=469,atl-edge-internal;dur=16,atl-edge-upstream;dur=454,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="savt44My5G0CTOE8kZbds_VPcf-JVz6Zb5wscqsm_pVOC2_nbSME6w==",cdn-downstream-fbl;dur=475
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=363,atl-edge;dur=340,atl-edge-internal;dur=17,atl-edge-upstream;dur=323,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="2FedBNCAIGo-hJ48lH0aRS36WYY44Jh8pEh1VnouiyaBe55gK0Kfcg==",cdn-downstream-fbl;dur=367
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2085,22 +2107,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8dadf490fcfee4214b49a3509dc76616.cloudfront.net (CloudFront)
+ - 1.1 935c1dbe2a77979e8997ab720ef1b816.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - savt44My5G0CTOE8kZbds_VPcf-JVz6Zb5wscqsm_pVOC2_nbSME6w==
+ - 2FedBNCAIGo-hJ48lH0aRS36WYY44Jh8pEh1VnouiyaBe55gK0Kfcg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 4f8ff2dda33edac676f98e065a7b0acd
+ - 40d6596369a579a1a2cd9e9ff0d87d20
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2108,87 +2134,2811 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
- of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32] in [Security
- How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
- || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
- Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
- 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
- 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs when
- the remote database or query specifies a crafted column name. \n\nThere are
- two specific scenarios in which it is likely for an application to be vulnerable:\n1.
- The application executes unsafe, user-supplied sql which contains malicious
- column names.\n2. The application connects to an untrusted database and executes
- a query returning results which contain a malicious column name.\n\n## Proof
- of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
- sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
- = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
- Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
- 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
- >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
- || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
- || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
- 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
- < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
- Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
- or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
- Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
- or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
- 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
- 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
- impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
- < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
- 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect Dojo link:* http://localhost:8080/finding/329
- (329)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs when
- the remote database or query specifies a crafted column name. \n\nThere are
- two specific scenarios in which it is likely for an application to be vulnerable:\n1.
- The application executes unsafe, user-supplied sql which contains malicious
- column names.\n2. The application connects to an untrusted database and executes
- a query returning results which contain a malicious column name.\n\n## Proof
- of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
- sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
- = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
- Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
- 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
- >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
- || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
- || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
- 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
- < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
- Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
- or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
- Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
- or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
- 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
- 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
- impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '3558'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 285b0d44-4f9b-4e4e-a3a8-d85ee48cf9ce
+ Atl-Traceid:
+ - 285b0d444f9b4e4ea3a8d85ee48cf9ce
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:02 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=401,atl-edge;dur=377,atl-edge-internal;dur=18,atl-edge-upstream;dur=355,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="-Zx4SXzRTWfWuf7PjcvCKEJYJE9sH-CizNqjuY05CfzvnhUty01WpA==",cdn-downstream-fbl;dur=407
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 78848e87583c98ba04111361257adc96.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - -Zx4SXzRTWfWuf7PjcvCKEJYJE9sH-CizNqjuY05CfzvnhUty01WpA==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 0cae61fc70a2935b6833f63ee45c84fa
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 3a9f6932-b75a-4e2e-90e5-fef26a2bdf4e
+ Atl-Traceid:
+ - 3a9f6932b75a4e2e90e5fef26a2bdf4e
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:02 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=307,atl-edge;dur=284,atl-edge-internal;dur=17,atl-edge-upstream;dur=267,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="QRrvTRD0T2E5U8TDRfVaXsRyVsXH0EpT01NrAPgz_xodf-iVHvOmjw==",cdn-downstream-fbl;dur=312
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 47bd30b1233fcd4bea962db4946b0ff2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - QRrvTRD0T2E5U8TDRfVaXsRyVsXH0EpT01NrAPgz_xodf-iVHvOmjw==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 131b798d50c021274432771185641a7d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:03.068+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - efa4142d-4a86-4e8e-a0c2-b1d43a8f8843
+ Atl-Traceid:
+ - efa4142d4a864e8ea0c2b1d43a8f8843
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:03 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=204,atl-edge;dur=181,atl-edge-internal;dur=14,atl-edge-upstream;dur=166,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="E51I-UE7FaRC06c5F0UakMYKlpdEcLpd2CkjQhthWmZDyBX9CLtYOg==",cdn-downstream-fbl;dur=208
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 56a79b3a2ac1e2942686c2337f96fb72.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - E51I-UE7FaRC06c5F0UakMYKlpdEcLpd2CkjQhthWmZDyBX9CLtYOg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 9431a9010fdda4f60d8f25fe41ae0539
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - a98ca508-1f6c-49b3-94f2-e5756058d055
+ Atl-Traceid:
+ - a98ca5081f6c49b394f2e5756058d055
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:03 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=317,atl-edge;dur=290,atl-edge-internal;dur=30,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="la8qMBHnTuWwsjQwG2RF9lDZXgEX5sE00F3dUZGx37yAiI7fUDpJVw==",cdn-downstream-fbl;dur=321
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 e5778a61da2e928608d7fdc9242d1f8e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - la8qMBHnTuWwsjQwG2RF9lDZXgEX5sE00F3dUZGx37yAiI7fUDpJVw==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 3dca52140b224849625e0885d83fa7ec
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - ba4bca5c-953c-450c-8517-ae5f92e247ba
+ Atl-Traceid:
+ - ba4bca5c953c450c8517ae5f92e247ba
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:04 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=469,atl-edge;dur=446,atl-edge-internal;dur=18,atl-edge-upstream;dur=428,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="DAnvaJh2xNDnfaLBgGaWOucPOFbrwH5q1DhN1QXzXUXwBCRR7AyFLg==",cdn-downstream-fbl;dur=473
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 88bce767af5e31f726ade38ea5253bd4.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - DAnvaJh2xNDnfaLBgGaWOucPOFbrwH5q1DhN1QXzXUXwBCRR7AyFLg==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - b27e1861352e1df03129388bcfb5a9f5
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect Dojo link:* http://localhost:8080/finding/343
+ (343)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 751cb4d6-8582-4367-a2ff-a55cecdba712
+ Atl-Traceid:
+ - 751cb4d685824367a2ffa55cecdba712
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:04 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=441,atl-edge;dur=416,atl-edge-internal;dur=17,atl-edge-upstream;dur=398,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="0mtI30WAANlTy4slJyl79vkjrSqcT8gQ0R3nHl2mgOffFTPrjPuH3A==",cdn-downstream-fbl;dur=447
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 f0fd475ee39ced21db4c99c5a3fdb1b2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 0mtI30WAANlTy4slJyl79vkjrSqcT8gQ0R3nHl2mgOffFTPrjPuH3A==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - a54fedc847d6ae0bb3d414aa84f4ea92
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - c99ca093-9b4b-4c2d-a4c7-971cc9426964
+ Atl-Traceid:
+ - c99ca0939b4b4c2da4c7971cc9426964
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:05 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=356,atl-edge;dur=267,atl-edge-internal;dur=20,atl-edge-upstream;dur=247,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="v9lNHgmES3foRpiOfLlkn_pE3I2YjoxQnEVhfEqZfOF62V3eK5asew==",cdn-downstream-fbl;dur=360
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 a0b647da77edd97cca88fb4c4b1a9d08.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - v9lNHgmES3foRpiOfLlkn_pE3I2YjoxQnEVhfEqZfOF62V3eK5asew==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - c91471494ce6783367c5c9d3ac207ea6
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:05.403+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 3220b41b-37cd-4bef-a4cc-45c39f57d1f3
+ Atl-Traceid:
+ - 3220b41b37cd4befa4cc45c39f57d1f3
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:05 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=209,atl-edge;dur=186,atl-edge-internal;dur=14,atl-edge-upstream;dur=172,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="PuIN07Qd9_iNeikuRE6RW6cCPUa3ijULWjIKw1EH2CRT8mIIlJ-B5Q==",cdn-downstream-fbl;dur=213
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 25c0c572fef0588285c0d89bc75071be.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - PuIN07Qd9_iNeikuRE6RW6cCPUa3ijULWjIKw1EH2CRT8mIIlJ-B5Q==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 024c03679abbfaa0159addf73fe1ed2d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - c2bcca86-dbb0-4ae8-9388-94cd64353242
+ Atl-Traceid:
+ - c2bcca86dbb04ae8938894cd64353242
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:05 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=263,atl-edge;dur=240,atl-edge-internal;dur=19,atl-edge-upstream;dur=220,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="UVRSVPKi1leLgIHpj7cs60TxYuYuZOp6daCMPrzcFmBE8WcpYBj1rw==",cdn-downstream-fbl;dur=266
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 56a79b3a2ac1e2942686c2337f96fb72.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - UVRSVPKi1leLgIHpj7cs60TxYuYuZOp6daCMPrzcFmBE8WcpYBj1rw==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - f6822c787b8599f4b05f04dfc443fe33
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 6e2c67c8-c0fb-47ec-8d18-4c7ff5f19cc5
+ Atl-Traceid:
+ - 6e2c67c8c0fb47ec8d184c7ff5f19cc5
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:06 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=367,atl-edge;dur=344,atl-edge-internal;dur=18,atl-edge-upstream;dur=324,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="YH20Dko0dDyIktiL3_t0fI9PRS4iLVb1mHge9EiDbRxWiTJJfDwFOw==",cdn-downstream-fbl;dur=370
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 a7c0ba01db75946f7df3f7eaf69984b6.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - YH20Dko0dDyIktiL3_t0fI9PRS4iLVb1mHge9EiDbRxWiTJJfDwFOw==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - b4f7eb9ceb0cbf836b0835aa612dd3f3
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect Dojo link:* http://localhost:8080/finding/343
+ (343)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - b5eb8192-f269-4424-96e3-ec060b1fb228
+ Atl-Traceid:
+ - b5eb8192f269442496e3ec060b1fb228
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:06 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=426,atl-edge;dur=401,atl-edge-internal;dur=14,atl-edge-upstream;dur=387,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="VJnxG-E_p4DKkQoS4QUgZ-0nCPgT3iXXZ2Jgjx7SeMcDwg2iokskjg==",cdn-downstream-fbl;dur=431
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 66fbb9efab6146079af1497f336edf9e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - VJnxG-E_p4DKkQoS4QUgZ-0nCPgT3iXXZ2Jgjx7SeMcDwg2iokskjg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 387422646c8d6339e48bc5ec8bd39f0c
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - bd05bd0c-28c4-4eb3-8bf8-47afa2fd9ecc
+ Atl-Traceid:
+ - bd05bd0c28c44eb38bf847afa2fd9ecc
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:07 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=507,atl-edge;dur=485,atl-edge-internal;dur=18,atl-edge-upstream;dur=466,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="wPQNaqj7FYGPrrguxpBTRhiP6lmWYlTmCBZzJimJ-2r6NgLUT4PpNg==",cdn-downstream-fbl;dur=511
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 89657e9ba87ccb5f5b96de064bf6d496.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - wPQNaqj7FYGPrrguxpBTRhiP6lmWYlTmCBZzJimJ-2r6NgLUT4PpNg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 04887d50f01afef622c2836393232895
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:07.668+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 9f577617-54f9-4b45-86e8-ee6b6c9eff83
+ Atl-Traceid:
+ - 9f57761754f94b4586e8ee6b6c9eff83
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:07 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=196,atl-edge;dur=170,atl-edge-internal;dur=15,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="qz-HVFHUKSWmMthZ1BH43-evlwoayuvRTtv2xx28Wky2jBmgMrxw6A==",cdn-downstream-fbl;dur=199
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 93cc368823eb6941f79ab9c25f53ccbc.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - qz-HVFHUKSWmMthZ1BH43-evlwoayuvRTtv2xx28Wky2jBmgMrxw6A==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - be13589fed468d3c159d36a2eb206940
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - b616125e-3e77-49b7-8c83-eb17e0614f56
+ Atl-Traceid:
+ - b616125e3e7749b78c83eb17e0614f56
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:08 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=301,atl-edge;dur=278,atl-edge-internal;dur=15,atl-edge-upstream;dur=263,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="vRkX45xhJ1t6zlR8LJsLek71mHP-wyKRgb18xMc8pRlr9hmh3iArnQ==",cdn-downstream-fbl;dur=305
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 0e87c7138186d05e35dac8a520dc0682.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - vRkX45xhJ1t6zlR8LJsLek71mHP-wyKRgb18xMc8pRlr9hmh3iArnQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 5b7ca474819e509e7d395522f8f5dcd3
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 4cf8a491-060e-4fd3-921c-815f9e59a3f5
+ Atl-Traceid:
+ - 4cf8a491060e4fd3921c815f9e59a3f5
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:08 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=320,atl-edge;dur=298,atl-edge-internal;dur=20,atl-edge-upstream;dur=277,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Ts_4uTEERKBhru1F55gHdK4lDUtBgwUuzbVp37P0XTkrXRVVEoB7EQ==",cdn-downstream-fbl;dur=324
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 02fc3cd955ad2ebfd334fd214c58f79a.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - Ts_4uTEERKBhru1F55gHdK4lDUtBgwUuzbVp37P0XTkrXRVVEoB7EQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - b6a36f3e4ff5cfac0988293a06fed37d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '2181'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 9d159434-9c17-4a6f-82f9-931c7a5d9b02
+ Atl-Traceid:
+ - 9d1594349c174a6f82f9931c7a5d9b02
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:09 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=421,atl-edge;dur=396,atl-edge-internal;dur=16,atl-edge-upstream;dur=380,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="LNUTVFut7h-gwFm7RldHDve65YO62cqSnEoK1HfpTZV_9udeFWO7lQ==",cdn-downstream-fbl;dur=424
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 1c80fe425edf82026702c486fb324fd0.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - LNUTVFut7h-gwFm7RldHDve65YO62cqSnEoK1HfpTZV_9udeFWO7lQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 266fc404e3937d52b0dcff46497d304d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - b31075b2-fc12-4c66-bb8a-8548023f478c
+ Atl-Traceid:
+ - b31075b2fc124c66bb8a8548023f478c
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:09 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=271,atl-edge;dur=247,atl-edge-internal;dur=17,atl-edge-upstream;dur=230,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="cJfN7Vay9W_l1OhUVyfxwYKFWkYUh4TgrLdZHN9_w2wOwcFmfdJbPw==",cdn-downstream-fbl;dur=275
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 92deee8348203aa783cce35d78bd0efe.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - cJfN7Vay9W_l1OhUVyfxwYKFWkYUh4TgrLdZHN9_w2wOwcFmfdJbPw==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - dfb08b125b02ef760b7b3bfb11306df1
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:09.717+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - bcc70286-14b0-4572-b7e7-889ab4e5b119
+ Atl-Traceid:
+ - bcc7028614b04572b7e7889ab4e5b119
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:09 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=195,atl-edge;dur=172,atl-edge-internal;dur=16,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="gpKTiM3d-ElwR1ieJmUuQ49dzolgm8fgl1K7EtWikz16zkTlJxI-tQ==",cdn-downstream-fbl;dur=198
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 4665a13a9a7d99c0536b8829f2bef2e8.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - gpKTiM3d-ElwR1ieJmUuQ49dzolgm8fgl1K7EtWikz16zkTlJxI-tQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 5d10a0cd9923ed78dd68b5a04e2953bf
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 3037c536-65a3-4e2e-bae7-e127fd8f5cde
+ Atl-Traceid:
+ - 3037c53665a34e2ebae7e127fd8f5cde
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:10 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=266,atl-edge;dur=243,atl-edge-internal;dur=16,atl-edge-upstream;dur=227,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="ZSqrdJXmsKPUa9W-dt_Snuozos-awm06-zSzN8pD9JSUvMzVPo59wg==",cdn-downstream-fbl;dur=269
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 93cc368823eb6941f79ab9c25f53ccbc.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - ZSqrdJXmsKPUa9W-dt_Snuozos-awm06-zSzN8pD9JSUvMzVPo59wg==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - ad80ebe24a2854e699774bf4ee2eaf7b
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 3dfe8009-32e5-4a50-9196-2b167210978c
+ Atl-Traceid:
+ - 3dfe800932e54a5091962b167210978c
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:10 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=441,atl-edge;dur=417,atl-edge-internal;dur=20,atl-edge-upstream;dur=398,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="1nhZV8DEhfRUdirKNVjOjm5RCB79pVYZTIsmJCtQWl4juNuiezpp-Q==",cdn-downstream-fbl;dur=445
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 fda672f0d6e472cdf596c05a64c6184e.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 1nhZV8DEhfRUdirKNVjOjm5RCB79pVYZTIsmJCtQWl4juNuiezpp-Q==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 661f36cda13bf070efb2e9a9d553c933
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '3558'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 1d054593-004d-4a98-ac26-4b3cb6b343db
+ Atl-Traceid:
+ - 1d054593004d4a98ac264b3cb6b343db
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:11 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=399,atl-edge-internal;dur=16,atl-edge-upstream;dur=382,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="iJ6Q6K6aSDVNYoWVqoSJ9DKU01M98EVrQSHJeDyExhUUB0ANc4_YMw==",cdn-downstream-fbl;dur=426
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 77dfdef79344c95f75de8512042d4bac.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - iJ6Q6K6aSDVNYoWVqoSJ9DKU01M98EVrQSHJeDyExhUUB0ANc4_YMw==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - ac0376bc3e936cb60d7f219a152ffe48
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 79d6203e-1879-4344-9819-d339d4434f52
+ Atl-Traceid:
+ - 79d6203e187943449819d339d4434f52
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:11 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=386,atl-edge-internal;dur=21,atl-edge-upstream;dur=368,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="2wL661XqSvAiVAucqDRfGAXxTiGRU0Fu4dwRRVd1grKscIsfbKeX9w==",cdn-downstream-fbl;dur=421
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 f91d1b84d49f9e5cc7391ee66e3cbed0.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 2wL661XqSvAiVAucqDRfGAXxTiGRU0Fu4dwRRVd1grKscIsfbKeX9w==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - d7730d445377d94a3914891c3f864ace
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:12.038+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - cb6ea27c-c9fd-42b6-8969-b67fe4a72d1c
+ Atl-Traceid:
+ - cb6ea27cc9fd42b68969b67fe4a72d1c
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:12 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=197,atl-edge;dur=174,atl-edge-internal;dur=14,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="DSJi4zSS0I2h68FuDH1-F6d-5VCfWvU9dUzQZRCAnhXxXBlgK7AxRw==",cdn-downstream-fbl;dur=200
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 336e07b8333fbc3aae87e6eef16ec270.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - DSJi4zSS0I2h68FuDH1-F6d-5VCfWvU9dUzQZRCAnhXxXBlgK7AxRw==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 700e4bf8b96251f9225bc0760bc54e82
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - d8293386-c1fc-4e5e-9bdf-ea6e44dbca14
+ Atl-Traceid:
+ - d8293386c1fc4e5e9bdfea6e44dbca14
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:12 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=18,atl-edge-upstream;dur=239,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="eQh3_bRxKKTp48LWN0iXGJ8yfn3Er32quN5j5Vvo4a-eCzElvG_c7A==",cdn-downstream-fbl;dur=284
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 37a4ef6008154b58024bba8916008f66.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - eQh3_bRxKKTp48LWN0iXGJ8yfn3Er32quN5j5Vvo4a-eCzElvG_c7A==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 2c70904665292d5f6157c90451cecae5
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 27c76c75-77fb-4bb3-8cad-e63f071732ea
+ Atl-Traceid:
+ - 27c76c7577fb4bb38cade63f071732ea
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:12 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=368,atl-edge;dur=346,atl-edge-internal;dur=18,atl-edge-upstream;dur=327,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="-uv0zPgLUs22paF2JBmE_NBv4YbdT_1eRhagCb_WsmkWX09X0hXJrw==",cdn-downstream-fbl;dur=372
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 98d9402866aa771c6e6bbecb98c200aa.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - -uv0zPgLUs22paF2JBmE_NBv4YbdT_1eRhagCb_WsmkWX09X0hXJrw==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 0f2d5e3e0dd24b436d56aeee60070023
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
headers:
Accept:
@@ -2200,21 +4950,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7026'
+ - '3558'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21305
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 856ddbc4-bd6d-4daa-ab34-129fdb65b09d
+ - dd3f0c97-686d-4e43-8b5f-bb832cb41951
Atl-Traceid:
- - 856ddbc4bd6d4daaab34129fdb65b09d
+ - dd3f0c97686d4e438b5fbb832cb41951
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2222,9 +4972,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:46 GMT
+ - Fri, 16 Jan 2026 21:01:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2232,7 +4982,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=512,atl-edge;dur=509,atl-edge-internal;dur=14,atl-edge-upstream;dur=495,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="XNBbsqACn03rsALOqq1p1N5oS6I6TeJ3hm-kYElW-2zTYBt2ttG1TQ==",cdn-downstream-fbl;dur=517
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=380,atl-edge;dur=356,atl-edge-internal;dur=16,atl-edge-upstream;dur=340,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="_xkXaeLUcDipuA4G8L-IGoY2ZEGmFT7cbloxA5AUCJdX57zkaDKRfA==",cdn-downstream-fbl;dur=385
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2240,19 +4990,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d5a7b4f0ce5b27d5b6750a1a5f7fd024.cloudfront.net (CloudFront)
+ - 1.1 f91d1b84d49f9e5cc7391ee66e3cbed0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - XNBbsqACn03rsALOqq1p1N5oS6I6TeJ3hm-kYElW-2zTYBt2ttG1TQ==
+ - _xkXaeLUcDipuA4G8L-IGoY2ZEGmFT7cbloxA5AUCJdX57zkaDKRfA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 68b1d8b182aa2e9836ddc8169cc1efb8
+ - 7e5dc506cf9d523a450e481dad587375
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2272,105 +5026,59 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21305
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24920
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21305","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305","key":"NTEST-3126","fields":{"statuscategorychangedate":"2025-07-25T21:11:30.827+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24920","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920","key":"NTEST-3205","fields":{"statuscategorychangedate":"2026-01-16T22:00:54.497+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3126/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:30.530+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hb:","updated":"2025-07-25T21:11:30.617+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3205/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:54.240+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jj:","updated":"2026-01-16T22:00:54.329+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/32]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/100]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]|Active,
- Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
- Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
- 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
- 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]|Active,
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
- 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
- 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/327]\n*Defect
- Dojo link:* http://localhost:8080/finding/327 (327)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs
- when the remote database or query specifies a crafted column name. \n\nThere
- are two specific scenarios in which it is likely for an application to be
- vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
- malicious column names.\n2. The application connects to an untrusted database
- and executes a query returning results which contain a malicious column name.\n\n##
- Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
- new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
- AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
- (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
- Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
- 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
- < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
- Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
- < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
- 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
- Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
- Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
- to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
- Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
- to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
- also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
- that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
- - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
- 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
- < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/329]\n*Defect
- Dojo link:* http://localhost:8080/finding/329 (329)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
- \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
- File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
- versions of `pg` contain a remote code execution vulnerability that occurs
- when the remote database or query specifies a crafted column name. \n\nThere
- are two specific scenarios in which it is likely for an application to be
- vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
- malicious column names.\n2. The application connects to an untrusted database
- and executes a query returning results which contain a malicious column name.\n\n##
- Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
- new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
- AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
- (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
- Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
- 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
- < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
- Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
- < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
- 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
- Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
- Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
- to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
- Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
- to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
- also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
- that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/340]\n*Defect Dojo link:* http://localhost:8080/finding/340
+ (340)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/339]\n*Defect
+ Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21305/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24920/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 85087320-e1b1-4ff8-a0be-01f679850c32
+ - 5e6c9837-a119-4d9d-be78-3ccf2ac8f919
Atl-Traceid:
- - 85087320e1b14ff8a0be01f679850c32
+ - 5e6c9837a1194d9dbe783ccf2ac8f919
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2380,9 +5088,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:47 GMT
+ - Fri, 16 Jan 2026 21:01:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2390,7 +5098,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=408,atl-edge;dur=405,atl-edge-internal;dur=14,atl-edge-upstream;dur=391,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="ci9L2xVdgPgAARDgzctuREULjzCWHcwE-xSJwiSlev8GotmFRKbv2w==",cdn-downstream-fbl;dur=414
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=337,atl-edge;dur=311,atl-edge-internal;dur=16,atl-edge-upstream;dur=295,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="4l3fJoiHdPAeAFiuzJ0d5A-u2bSfJ0d-muwElvTX6dQHhW1XLvxmmw==",cdn-downstream-fbl;dur=341
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2400,19 +5108,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 df166554184adf2da43f53000107ac74.cloudfront.net (CloudFront)
+ - 1.1 08d2ad2df7ae14c356e73a61afe3347c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ci9L2xVdgPgAARDgzctuREULjzCWHcwE-xSJwiSlev8GotmFRKbv2w==
+ - 4l3fJoiHdPAeAFiuzJ0d5A-u2bSfJ0d-muwElvTX6dQHhW1XLvxmmw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - 0ee9b3d72b19602c079d284a430b6aab
+ - 0862d7a0312a448f33f3a0f2b23cdd62
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2432,17 +5144,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:48.522+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:14.047+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 66e05310-2ed4-4468-90d5-21866c4454fb
+ - 172e95ec-bccd-414c-b161-aff52243e8a9
Atl-Traceid:
- - 66e053102ed4446890d521866c4454fb
+ - 172e95ecbccd414cb161aff52243e8a9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2452,9 +5164,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:48 GMT
+ - Fri, 16 Jan 2026 21:01:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2462,7 +5174,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=318,atl-edge;dur=316,atl-edge-internal;dur=13,atl-edge-upstream;dur=302,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="UtdKInG5Ddm4z02lsxc5sls576gUMzZSgpl3hnnqHYlaZYsQjDOOBg==",cdn-downstream-fbl;dur=322
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=223,atl-edge;dur=200,atl-edge-internal;dur=13,atl-edge-upstream;dur=186,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="BUMVog3U1uHhAPVYy5Q1AKXjBNfaFp-QEUwez4WD64pPB7iNUQtalA==",cdn-downstream-fbl;dur=226
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2472,19 +5184,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 901fdc9beff7ff35478f18c7b70da04e.cloudfront.net (CloudFront)
+ - 1.1 3681f5bfbccc8d8a2e6e6b4b8c018b92.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UtdKInG5Ddm4z02lsxc5sls576gUMzZSgpl3hnnqHYlaZYsQjDOOBg==
+ - BUMVog3U1uHhAPVYy5Q1AKXjBNfaFp-QEUwez4WD64pPB7iNUQtalA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 6210cc7c6cd098c5ffb90d7b8e473761
+ - 08a429467231c60fb9dc918e34e62f5e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2504,44 +5220,105 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21306
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21306","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306","key":"NTEST-3127","fields":{"statuscategorychangedate":"2025-07-25T21:11:37.756+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:37.527+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hj:","updated":"2025-07-25T21:11:37.611+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service
- when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 1b266d35-6cc6-4bb6-bb32-0097417efbde
+ - ce75133b-9c45-4b98-ab3e-9f44b5a0041f
Atl-Traceid:
- - 1b266d356cc64bb6bb320097417efbde
+ - ce75133b9c454b98ab3e9f44b5a0041f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2551,9 +5328,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:49 GMT
+ - Fri, 16 Jan 2026 21:01:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2561,7 +5338,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=445,atl-edge;dur=442,atl-edge-internal;dur=17,atl-edge-upstream;dur=426,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="atIXMP-QSfaWGHXc4vM72WaqF55f7CDT6mWULXF1l2q4ajvrp1bkdA==",cdn-downstream-fbl;dur=449
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=312,atl-edge;dur=289,atl-edge-internal;dur=15,atl-edge-upstream;dur=273,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="8s93kiEY5qZUomfOWmjyx1XhjjbWQM49sAoVKj4H-cB10VjCer9nPA==",cdn-downstream-fbl;dur=316
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2571,19 +5348,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e575582c24a1bc95cd06311c3837a63a.cloudfront.net (CloudFront)
+ - 1.1 786e78cb5cbe5eadde8b1e6951bf8a60.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - atIXMP-QSfaWGHXc4vM72WaqF55f7CDT6mWULXF1l2q4ajvrp1bkdA==
+ - 8s93kiEY5qZUomfOWmjyx1XhjjbWQM49sAoVKj4H-cB10VjCer9nPA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - bc6b8989ba691f106b3cf3aea95cbf4a
+ - 1bcf034727e9217ab6ead10b1273b048
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2603,7 +5384,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -2617,9 +5398,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - d3e61770-8900-45bd-b8e6-a37fe3ccd153
+ - 9d075b61-25df-409b-9146-7b2dc95566dd
Atl-Traceid:
- - d3e61770890045bdb8e6a37fe3ccd153
+ - 9d075b6125df409b91467b2dc95566dd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2629,9 +5410,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:51 GMT
+ - Fri, 16 Jan 2026 21:01:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2639,7 +5420,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=477,atl-edge;dur=474,atl-edge-internal;dur=14,atl-edge-upstream;dur=460,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="nYPKagC-YhiR2w0KHLJloh15yRJnyWrhVYC8mlEmwyFBZ3FtoIwSow==",cdn-downstream-fbl;dur=480
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=345,atl-edge;dur=323,atl-edge-internal;dur=26,atl-edge-upstream;dur=296,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="2M3p776SOe2cKVmHZuAfIQAoEOHIkaj15IaVatv81M1iRGMDsUfd6g==",cdn-downstream-fbl;dur=349
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2649,22 +5430,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 99d08a30eb552b5891a16e6c0ba4a4ea.cloudfront.net (CloudFront)
+ - 1.1 dfb119739413f1d03dd274d99dda4dae.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - nYPKagC-YhiR2w0KHLJloh15yRJnyWrhVYC8mlEmwyFBZ3FtoIwSow==
+ - 2M3p776SOe2cKVmHZuAfIQAoEOHIkaj15IaVatv81M1iRGMDsUfd6g==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 7be15fa014c2b83107d63d1657415902
+ - aaf5a40f86bd0baf30ed8ec14045db6a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2672,28 +5457,88 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
- Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service when
- parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect Dojo link:* http://localhost:8080/finding/343
+ (343)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
headers:
Accept:
- application/json,*/*;q=0.9
@@ -2704,21 +5549,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2178'
+ - '7028'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21306
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
response:
body:
string: ''
headers:
Atl-Request-Id:
- - ecbdc1db-bee0-4ad2-8e27-633510496d35
+ - 222ecb21-b20a-4b13-9736-6115696bf688
Atl-Traceid:
- - ecbdc1dbbee04ad28e27633510496d35
+ - 222ecb21b20a4b1397366115696bf688
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2726,9 +5571,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:52 GMT
+ - Fri, 16 Jan 2026 21:01:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2736,7 +5581,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=483,atl-edge;dur=480,atl-edge-internal;dur=15,atl-edge-upstream;dur=465,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="xrZ3lborOjRKziXy-mTApP_9Kekm1rce75e1yKfOzmSwwA6G3beqLg==",cdn-downstream-fbl;dur=487
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=397,atl-edge-internal;dur=17,atl-edge-upstream;dur=378,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="DIVh3BMCSd_8YI7iwGlJgrN4Re0C26FV_7R5Vdlg-LkQu9bqkxlXDA==",cdn-downstream-fbl;dur=427
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2744,19 +5589,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2bff6bbbee7da79c98259baccec11e2c.cloudfront.net (CloudFront)
+ - 1.1 fb583d18c6b0f24d4447146b294e4f68.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - xrZ3lborOjRKziXy-mTApP_9Kekm1rce75e1yKfOzmSwwA6G3beqLg==
+ - DIVh3BMCSd_8YI7iwGlJgrN4Re0C26FV_7R5Vdlg-LkQu9bqkxlXDA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - ffc0523bafe1ed111a6b4c314e432b9f
+ - 5a740b410c5707104714a6490470bfd7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2776,44 +5625,105 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21306
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24921
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21306","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306","key":"NTEST-3127","fields":{"statuscategorychangedate":"2025-07-25T21:11:37.756+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3127/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:37.527+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hj:","updated":"2025-07-25T21:11:37.611+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24921","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921","key":"NTEST-3206","fields":{"statuscategorychangedate":"2026-01-16T22:00:56.975+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3206/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:56.679+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jr:","updated":"2026-01-16T22:00:56.789+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/33]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/101]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]|Active,
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/328]\n*Defect
- Dojo link:* http://localhost:8080/finding/328 (328)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service
- when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/341]\n*Defect
+ Dojo link:* http://localhost:8080/finding/341 (341)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/343]\n*Defect
+ Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21306/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24921/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - a4f15868-6a16-4672-ba8b-7a773cbf14ae
+ - 54f2c3ee-6a59-4c1c-b05f-e645fb6d5498
Atl-Traceid:
- - a4f158686a164672ba8b7a773cbf14ae
+ - 54f2c3ee6a594c1cb05fe645fb6d5498
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2823,9 +5733,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:53 GMT
+ - Fri, 16 Jan 2026 21:01:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2833,7 +5743,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=420,atl-edge-internal;dur=15,atl-edge-upstream;dur=405,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="fZaLbh1JHmeXPOHlyCvxRPYGjU3tFKP180FiNQG8LBZH-a1c_kAIIg==",cdn-downstream-fbl;dur=425
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=312,atl-edge;dur=289,atl-edge-internal;dur=19,atl-edge-upstream;dur=270,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="BN8ZIQpMPyoqvw5K4FKlGNEM2fL7Ig4vl59BZFxtl1e-ckHoF7n0Jg==",cdn-downstream-fbl;dur=317
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2843,19 +5753,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9e854e194e7846c005e5306bd39c7648.cloudfront.net (CloudFront)
+ - 1.1 acb55e8d2b8ad7df45561a8bccaaa688.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - fZaLbh1JHmeXPOHlyCvxRPYGjU3tFKP180FiNQG8LBZH-a1c_kAIIg==
+ - BN8ZIQpMPyoqvw5K4FKlGNEM2fL7Ig4vl59BZFxtl1e-ckHoF7n0Jg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 04d08334e5623042ebabda8bb2d81af5
+ - 06966ce6f1d2cd17e0500636efc0d150
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2875,17 +5789,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:11:55.054+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:16.049+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 276f4a26-343c-4e83-bf02-df0007d419ac
+ - 0d1692e8-3b15-4621-8084-cad8e9ac8ed9
Atl-Traceid:
- - 276f4a26343c4e83bf02df0007d419ac
+ - 0d1692e83b1546218084cad8e9ac8ed9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2895,9 +5809,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:55 GMT
+ - Fri, 16 Jan 2026 21:01:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2905,7 +5819,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=321,atl-edge-internal;dur=13,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="YdRHSaLbr3IzM05LS9dyc2ozsYpQKcd6x1CT4mkvY2dzRogo1sIcqg==",cdn-downstream-fbl;dur=327
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=203,atl-edge;dur=179,atl-edge-internal;dur=15,atl-edge-upstream;dur=164,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="anCdEB3MgfrU2eocvNdHvP2o17tcLOKvogOLF07kPp_pgVb4EcvWiA==",cdn-downstream-fbl;dur=207
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2915,19 +5829,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9c9c7e612d1d6c87f0238098c1c16662.cloudfront.net (CloudFront)
+ - 1.1 d2ee90557b7dff69fea2eb2ff85880ec.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - YdRHSaLbr3IzM05LS9dyc2ozsYpQKcd6x1CT4mkvY2dzRogo1sIcqg==
+ - anCdEB3MgfrU2eocvNdHvP2o17tcLOKvogOLF07kPp_pgVb4EcvWiA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 402d0808041a8dc8362df5ce2b3abd17
+ - 7ad228c1bbe076caea7172826c3e2aa8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2947,59 +5865,44 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21304
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21304","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304","key":"NTEST-3125","fields":{"statuscategorychangedate":"2025-07-25T21:11:23.773+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:23.513+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012h3:","updated":"2025-07-25T21:11:23.609+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
- Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - a518318a-5379-467f-816a-2fd5bb1d628a
+ - 6f93ecff-10d2-4b67-bd40-68df4c55afe2
Atl-Traceid:
- - a518318a5379467f816a2fd5bb1d628a
+ - 6f93ecff10d24b67bd4068df4c55afe2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3009,9 +5912,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:56 GMT
+ - Fri, 16 Jan 2026 21:01:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3019,7 +5922,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=402,atl-edge;dur=400,atl-edge-internal;dur=14,atl-edge-upstream;dur=385,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="srbfXN1ZX-KVXeIg3ykEF3k7EfUGJYQd7OjrUxmbWJEzJnvY7pA6Zw==",cdn-downstream-fbl;dur=406
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=289,atl-edge;dur=266,atl-edge-internal;dur=17,atl-edge-upstream;dur=249,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="mQT5DdT3wSuH9YGHVu7ldDDYe05c0uq5DmuWZGNphcuuve4od4rJHA==",cdn-downstream-fbl;dur=293
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3029,19 +5932,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 5bbd11939e03577f970787e60c8f7b4e.cloudfront.net (CloudFront)
+ - 1.1 37a4ef6008154b58024bba8916008f66.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - srbfXN1ZX-KVXeIg3ykEF3k7EfUGJYQd7OjrUxmbWJEzJnvY7pA6Zw==
+ - mQT5DdT3wSuH9YGHVu7ldDDYe05c0uq5DmuWZGNphcuuve4od4rJHA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - e91b9418c5ad31e5a1a2901bb6bc0614
+ - f1cb88e1bbbe23d51a3116b27b721c39
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3061,7 +5968,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -3075,9 +5982,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - b81449bf-ffc9-4c82-bd0c-7603726fb070
+ - 6a02cf8e-e59c-4fba-bef0-406ca1778431
Atl-Traceid:
- - b81449bfffc94c82bd0c7603726fb070
+ - 6a02cf8ee59c4fbabef0406ca1778431
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3087,9 +5994,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:57 GMT
+ - Fri, 16 Jan 2026 21:01:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3097,7 +6004,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=514,atl-edge;dur=511,atl-edge-internal;dur=17,atl-edge-upstream;dur=495,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="FogNCmo8ryxMJt9Ms3429TmvA1vZYL4J1LDvBcSXguWMDrM3jftaOA==",cdn-downstream-fbl;dur=522
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=412,atl-edge;dur=389,atl-edge-internal;dur=21,atl-edge-upstream;dur=367,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="Q3QfyedfSHQjlrp3uHshLlXVAp5bOFS2BC3PFUXLW6v5GQwfoGHJCA==",cdn-downstream-fbl;dur=415
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3107,22 +6014,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1b68da67ecd8210b43b9ded7550536ca.cloudfront.net (CloudFront)
+ - 1.1 d09fd0ac0a8733df98f134da74eec098.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - FogNCmo8ryxMJt9Ms3429TmvA1vZYL4J1LDvBcSXguWMDrM3jftaOA==
+ - Q3QfyedfSHQjlrp3uHshLlXVAp5bOFS2BC3PFUXLW6v5GQwfoGHJCA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - 77a93b3e7306a3d833b459b8c0fe5871
+ - 5cad443930ff29526b46c17a5850ca81
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3130,43 +6041,28 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
- group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
- in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
- Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
- || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
- Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language` header
- value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
- Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language` header
- value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
- Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
headers:
Accept:
- application/json,*/*;q=0.9
@@ -3177,21 +6073,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3556'
+ - '2181'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21304
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 4c32a69f-93bd-4e73-8acc-4ca1fca5f492
+ - 7f5b5408-fe93-45e0-bd65-df16a6dd4ce3
Atl-Traceid:
- - 4c32a69f93bd4e738acc4ca1fca5f492
+ - 7f5b5408fe9345e0bd65df16a6dd4ce3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3199,9 +6095,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:11:59 GMT
+ - Fri, 16 Jan 2026 21:01:17 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3209,7 +6105,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=479,atl-edge;dur=476,atl-edge-internal;dur=14,atl-edge-upstream;dur=462,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="9TSxTdKv6vXBH71oJY3kpiiI7Z66aH7a0_eNDqoLhb6KScka8r1SuQ==",cdn-downstream-fbl;dur=483
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=357,atl-edge;dur=334,atl-edge-internal;dur=13,atl-edge-upstream;dur=320,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="cmWZNvjY19oU_3Qm0aNqIay6ZEUN2Tje4Mgge3EeVZf16R-RO-A48A==",cdn-downstream-fbl;dur=361
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3217,19 +6113,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 dff94781894736c12dbb6eb4e456a898.cloudfront.net (CloudFront)
+ - 1.1 fda672f0d6e472cdf596c05a64c6184e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9TSxTdKv6vXBH71oJY3kpiiI7Z66aH7a0_eNDqoLhb6KScka8r1SuQ==
+ - cmWZNvjY19oU_3Qm0aNqIay6ZEUN2Tje4Mgge3EeVZf16R-RO-A48A==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 15223c120f4884f499fdee517d41bc57
+ - de8933ee4b5725b00579f358f72ce323
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3249,59 +6149,44 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21304
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24922
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21304","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304","key":"NTEST-3125","fields":{"statuscategorychangedate":"2025-07-25T21:11:23.773+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3125/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:11:23.513+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012h3:","updated":"2025-07-25T21:11:23.609+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24922","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922","key":"NTEST-3207","fields":{"statuscategorychangedate":"2026-01-16T22:00:59.643+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3207/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:00:59.331+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014jz:","updated":"2026-01-16T22:00:59.430+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/31]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/102]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/118]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/326]|Active,
- Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]|Active,
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/326]\n*Defect Dojo link:* http://localhost:8080/finding/326
- (326)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
- \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/325]\n*Defect
- Dojo link:* http://localhost:8080/finding/325 (325)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
- File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
- versions of `negotiator` are vulnerable to regular expression denial of service
- attacks, which trigger upon parsing a specially crafted `Accept-Language`
- header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
- 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/342]\n*Defect
+ Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21304/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24922/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 133bd080-5598-48c0-af12-2e8bfe08b19e
+ - 788f7b5c-2a0f-4916-800b-663567015076
Atl-Traceid:
- - 133bd080559848c0af122e8bfe08b19e
+ - 788f7b5c2a0f4916800b663567015076
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3311,9 +6196,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:00 GMT
+ - Fri, 16 Jan 2026 21:01:17 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3321,7 +6206,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=407,atl-edge-internal;dur=14,atl-edge-upstream;dur=393,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="LNsyUMsg9c8WXkfEdO6qQVNIWEaOqb_0Owcg65LeyDqBIDpZ3RQJLQ==",cdn-downstream-fbl;dur=413
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=336,atl-edge;dur=313,atl-edge-internal;dur=17,atl-edge-upstream;dur=296,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="rP4WKZ6gG2iIqQu1lthOC1xeMhQzrFgOdsuNfuWTE5eSwzeRckbUjw==",cdn-downstream-fbl;dur=341
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3331,26 +6216,58 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4bfeb1eae9544366893e37b97eee8e6e.cloudfront.net (CloudFront)
+ - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - LNsyUMsg9c8WXkfEdO6qQVNIWEaOqb_0Owcg65LeyDqBIDpZ3RQJLQ==
+ - rP4WKZ6gG2iIqQu1lthOC1xeMhQzrFgOdsuNfuWTE5eSwzeRckbUjw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - fb8e968fe4ec3cd648e131e04495d6d6
+ - f25f154ececf97227c182aba977d801b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
code: 200
message: OK
- request:
- body: '"scan_added.tpl"'
+ body: '{"description": "Event scan_added_empty has occurred.", "title": "Created/Updated
+ 0 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
+ null, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/",
+ "product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
+ "url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
+ "Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
+ "http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
+ Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
+ "http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
+ 123, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/"},
+ "finding_count": 0, "findings": {"new": [], "reactivated": [], "mitigated":
+ [], "untouched": [{"id": 340, "title": "2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/340",
+ "url_api": "http://localhost:8080/api/v2/findings/340/"}, {"id": 341, "title":
+ "Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
+ || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
+ || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
+ "severity": "High", "url_ui": "http://localhost:8080/finding/341", "url_api":
+ "http://localhost:8080/api/v2/findings/341/"}, {"id": 339, "title": "Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
+ "url_ui": "http://localhost:8080/finding/339", "url_api": "http://localhost:8080/api/v2/findings/339/"},
+ {"id": 342, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/342", "url_api":
+ "http://localhost:8080/api/v2/findings/342/"}, {"id": 343, "title": "2222Remote
+ Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
+ 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
+ >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/343", "url_api":
+ "http://localhost:8080/api/v2/findings/343/"}]}}'
headers:
Accept:
- application/json
@@ -3361,11 +6278,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '16'
+ - '2384'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added_empty
X-DefectDojo-Instance:
@@ -3377,25 +6294,96 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"16\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2384\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added_empty\"\n ],\n \"X-Defectdojo-Instance\": [\n
\ \"http://localhost:8080\"\n ]\n },\n \"method\": \"POST\",\n \"origin\":
- \"10.250.1.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
- \"\\\"scan_added.tpl\\\"\",\n \"files\": {},\n \"form\": {},\n \"json\":
- \"scan_added.tpl\"\n}\n"
+ \"172.19.0.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
+ \"{\\\"description\\\": \\\"Event scan_added_empty has occurred.\\\", \\\"title\\\":
+ \\\"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\\\", \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\", \\\"product_type\\\":
+ {\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
+ {\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
+ {\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
+ \\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 123, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\"}, \\\"finding_count\\\":
+ 0, \\\"findings\\\": {\\\"new\\\": [], \\\"reactivated\\\": [], \\\"mitigated\\\":
+ [], \\\"untouched\\\": [{\\\"id\\\": 340, \\\"title\\\": \\\"2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"High\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/340\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/340/\\\"}, {\\\"id\\\": 341, \\\"title\\\":
+ \\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
+ < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
+ 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/341\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/341/\\\"},
+ {\\\"id\\\": 339, \\\"title\\\": \\\"Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/339\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/339/\\\"},
+ {\\\"id\\\": 342, \\\"title\\\": \\\"Regular Expression Denial of Service
+ - (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/342\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/342/\\\"},
+ {\\\"id\\\": 343, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
+ 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
+ < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/343\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/343/\\\"}]}}\",\n \"files\": {},\n
+ \ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added_empty
+ has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
+ \"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
+ \ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
+ 0,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [],\n \"reactivated\":
+ [],\n \"untouched\": [\n {\n \"id\": 340,\n \"severity\":
+ \"High\",\n \"title\": \"2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/340/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/340\"\n },\n
+ \ {\n \"id\": 341,\n \"severity\": \"High\",\n \"title\":
+ \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 <
+ 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0
+ < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >=
+ 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/341/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/341\"\n },\n
+ \ {\n \"id\": 339,\n \"severity\": \"Medium\",\n \"title\":
+ \"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/findings/339/\",\n \"url_ui\": \"http://localhost:8080/finding/339\"\n
+ \ },\n {\n \"id\": 342,\n \"severity\": \"Medium\",\n
+ \ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/342/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/342\"\n },\n {\n \"id\":
+ 343,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
+ >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
+ || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/343/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/343\"\n }\n ]\n
+ \ },\n \"product\": {\n \"id\": 2,\n \"name\": \"Security How-to\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\":
+ \"http://localhost:8080/product/2\"\n },\n \"product_type\": {\n \"id\":
+ 2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
+ \ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
+ {\n \"id\": 123,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/123\"\n },\n \"title\":
+ \"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/123\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
Access-Control-Allow-Origin:
- '*'
- Content-Length:
- - '732'
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:12:00 GMT
+ - Fri, 16 Jan 2026 21:01:17 GMT
+ Transfer-Encoding:
+ - chunked
status:
code: 200
message: OK
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_push_to_jira_is_false_but_push_all_issues.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_push_to_jira_is_false_but_push_all_issues.yaml
index 4be22df8eae..2d78b5c2068 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_push_to_jira_is_false_but_push_all_issues.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_push_to_jira_is_false_but_push_all_issues.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:02.005+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:18.336+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - d5ef2110-72b5-45c5-93ce-076b0c0b252b
+ - 1dab2b3d-60f7-487d-ad64-832357fc1dbd
Atl-Traceid:
- - d5ef211072b545c593ce076b0c0b252b
+ - 1dab2b3d60f7487dad64832357fc1dbd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:02 GMT
+ - Fri, 16 Jan 2026 21:01:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=322,atl-edge;dur=320,atl-edge-internal;dur=15,atl-edge-upstream;dur=305,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="UbjMEvwA_RWB1gMs2Zs9c5nVshkEx_NNHQf8LdDTQRGWFJOz4FbAjw==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=203,atl-edge;dur=180,atl-edge-internal;dur=15,atl-edge-upstream;dur=165,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="aOZQ3f1E3fDc7xXp7V4c8AbgqoZnDYE1rKdZmjvLKcdCeHUKwrSdMA==",cdn-downstream-fbl;dur=207
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 332185989ef2da97d1a56bdaee204b78.cloudfront.net (CloudFront)
+ - 1.1 76f2e1e449c547c66904d58101f10ea6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UbjMEvwA_RWB1gMs2Zs9c5nVshkEx_NNHQf8LdDTQRGWFJOz4FbAjw==
+ - aOZQ3f1E3fDc7xXp7V4c8AbgqoZnDYE1rKdZmjvLKcdCeHUKwrSdMA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P2
X-Arequestid:
- - 12ad83923a69655cd13da18edb6011f3
+ - 6abf52f5c58cedff83f7c86ef6399c47
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 895d2f76-78be-4e24-99c8-453cbd0e3cf2
+ - cf90dd13-d54a-4635-844c-dea48d834058
Atl-Traceid:
- - 895d2f7678be4e2499c8453cbd0e3cf2
+ - cf90dd13d54a4635844cdea48d834058
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:03 GMT
+ - Fri, 16 Jan 2026 21:01:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=516,atl-edge;dur=514,atl-edge-internal;dur=17,atl-edge-upstream;dur=497,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="rmwd_Q3W0G9s9NIt5yymtqwYnS_NYmWoddISWPEsIPSZSSJuNECo-Q==",cdn-downstream-fbl;dur=520
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=400,atl-edge-internal;dur=16,atl-edge-upstream;dur=383,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="lAQe7A6aO6cQBTUHrJrYe6GoehYinbfx-aR66hbbpXoSZhXylZxAww==",cdn-downstream-fbl;dur=426
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f5bc0d54a76b57b6f435f98d3e741ea4.cloudfront.net (CloudFront)
+ - 1.1 c7b824e75cbf9cd365bcdd74ef25829a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - rmwd_Q3W0G9s9NIt5yymtqwYnS_NYmWoddISWPEsIPSZSSJuNECo-Q==
+ - lAQe7A6aO6cQBTUHrJrYe6GoehYinbfx-aR66hbbpXoSZhXylZxAww==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - fe3e8ece23126e4d3263d44ef5891ec4
+ - 0431f0926150303e5cb2592ec3c7028d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21307","key":"NTEST-3128","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307"}'
+ string: '{"id":"24923","key":"NTEST-3208","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923"}'
headers:
Atl-Request-Id:
- - e8afeea1-c21e-44d9-b574-0c08460cd63d
+ - 2111d064-b304-48a2-b852-3d37bbf467e4
Atl-Traceid:
- - e8afeea1c21e44d9b5740c08460cd63d
+ - 2111d064b30448a2b8523d37bbf467e4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:05 GMT
+ - Fri, 16 Jan 2026 21:01:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=941,atl-edge;dur=939,atl-edge-internal;dur=16,atl-edge-upstream;dur=923,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="UFH79CJn_gY0tbCD4kFKqnWZ5GJMenL-beViUrOxwJ-v4IozHY4o8A==",cdn-downstream-fbl;dur=945
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1024,atl-edge;dur=1000,atl-edge-internal;dur=17,atl-edge-upstream;dur=983,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="lif1eUw1MGLlM57gfnMeeNVB6x5jsuFigLwrAswGAtZenbQux0rAbQ==",cdn-downstream-fbl;dur=1029
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 cf3f6fdeca566994c58f318f9ac55680.cloudfront.net (CloudFront)
+ - 1.1 5ca5d4f769888ca013d817040942ebf2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - UFH79CJn_gY0tbCD4kFKqnWZ5GJMenL-beViUrOxwJ-v4IozHY4o8A==
+ - lif1eUw1MGLlM57gfnMeeNVB6x5jsuFigLwrAswGAtZenbQux0rAbQ==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - af59af685df3451991d649854a838170
+ - 025c81352bac1ecf117716dbda886c69
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 8b430912-0f2f-4eae-bd2e-5c04ab3836f3
+ - dae6295d-7fdb-4ae5-ae26-103dca97387a
Atl-Traceid:
- - 8b4309120f2f4eaebd2e5c04ab3836f3
+ - dae6295d7fdb4ae5ae26103dca97387a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:06 GMT
+ - Fri, 16 Jan 2026 21:01:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=401,atl-edge;dur=399,atl-edge-internal;dur=16,atl-edge-upstream;dur=382,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="L2okPmT-Ef_r-kA5h10be2pmvFmRWBoysjOFBDwGwvvnPNViAockeQ==",cdn-downstream-fbl;dur=404
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=69,cdn-upstream-fbl;dur=461,atl-edge;dur=369,atl-edge-internal;dur=34,atl-edge-upstream;dur=332,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="c524rIFzQ9oUqals-gSleudAcWMQ3JA8zbn_jhvFjEPoERoWEpq-Tg==",cdn-downstream-fbl;dur=465
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 853f4fb2226327c7e93e1af35b3e6c8c.cloudfront.net (CloudFront)
+ - 1.1 96725c0e4ced177a38df871e7cc48a4a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - L2okPmT-Ef_r-kA5h10be2pmvFmRWBoysjOFBDwGwvvnPNViAockeQ==
+ - c524rIFzQ9oUqals-gSleudAcWMQ3JA8zbn_jhvFjEPoERoWEpq-Tg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 52d6a23e2c53196d501a6f22a4926cac
+ - f3b0477c41a5367249ebf19a9f7a3f52
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 22208682-988a-454f-bc04-c56f3636f315
+ - 4c858097-e8aa-4466-9149-73cc9a280983
Atl-Traceid:
- - 22208682988a454fbc04c56f3636f315
+ - 4c858097e8aa4466914973cc9a280983
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:07 GMT
+ - Fri, 16 Jan 2026 21:01:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=413,atl-edge;dur=411,atl-edge-internal;dur=15,atl-edge-upstream;dur=396,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="5_5Zh7IYU1MsfCOI7GqIUl5OqNiFl7U8oZaybQeGALqeyfMqIjdtNA==",cdn-downstream-fbl;dur=416
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=386,atl-edge;dur=297,atl-edge-internal;dur=16,atl-edge-upstream;dur=280,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="oocfhjtxwKGnZY6_MQvHWBx5pJ4B8MFku3Jo3fEWaYSEhjtvBZ-c_A==",cdn-downstream-fbl;dur=398
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 59304f445e251c540e46633ed3dd4f64.cloudfront.net (CloudFront)
+ - 1.1 d4fb3448d1a8d3229dcf0a89f4bbe7e8.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5_5Zh7IYU1MsfCOI7GqIUl5OqNiFl7U8oZaybQeGALqeyfMqIjdtNA==
+ - oocfhjtxwKGnZY6_MQvHWBx5pJ4B8MFku3Jo3fEWaYSEhjtvBZ-c_A==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - 9a41731c15ad08938c45b6c7cd178f98
+ - c98742480884668ef485cab4e9285693
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:08.971+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:21.402+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 45151a90-8eb4-4070-8497-a09710454ef3
+ - 28e2bb85-dee1-4d9f-a3b3-4aa089ea8524
Atl-Traceid:
- - 45151a908eb440708497a09710454ef3
+ - 28e2bb85dee14d9fa3b34aa089ea8524
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:09 GMT
+ - Fri, 16 Jan 2026 21:01:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=325,atl-edge;dur=322,atl-edge-internal;dur=14,atl-edge-upstream;dur=309,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="brSJxF6IxgfbK-mnVVnDkxu5BpHTfQY8172RfgrwUGOly9QDdKDYcQ==",cdn-downstream-fbl;dur=329
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=196,atl-edge;dur=173,atl-edge-internal;dur=14,atl-edge-upstream;dur=158,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="JM6ZZsZbMxzR97aXEkcuH1Gga_NR3Mjg9fYp2FKXVb-2tfpz17OgSQ==",cdn-downstream-fbl;dur=200
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d984fdadf0cdecb9528648815c62416c.cloudfront.net (CloudFront)
+ - 1.1 2b6f0b2cd8495233ea20114fbb247772.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - brSJxF6IxgfbK-mnVVnDkxu5BpHTfQY8172RfgrwUGOly9QDdKDYcQ==
+ - JM6ZZsZbMxzR97aXEkcuH1Gga_NR3Mjg9fYp2FKXVb-2tfpz17OgSQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - f7375375a0c2786807f1a626787a4a9b
+ - 290312ac62592c98da6b628e20cf0480
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - b624f362-be3c-49c2-acd4-d34af4926da1
+ - 6b8a9792-5efd-4114-b368-212f0eb8fa16
Atl-Traceid:
- - b624f362be3c49c2acd4d34af4926da1
+ - 6b8a97925efd4114b368212f0eb8fa16
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:10 GMT
+ - Fri, 16 Jan 2026 21:01:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=508,atl-edge;dur=505,atl-edge-internal;dur=16,atl-edge-upstream;dur=490,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="-_q8MRJ3UNBiNBAmeF3L4OUIR4lh7Gy4NSQzfeyexu2z8x6T1rn1KA==",cdn-downstream-fbl;dur=511
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=601,atl-edge;dur=578,atl-edge-internal;dur=16,atl-edge-upstream;dur=562,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="toISXVwSucVeqxCNSaUdtpObGMUdyfmEOUkFNAe2eZvDlfzg4aRE-g==",cdn-downstream-fbl;dur=604
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0d87c721c7b25d6fef7d75bbb22d3468.cloudfront.net (CloudFront)
+ - 1.1 78848e87583c98ba04111361257adc96.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - -_q8MRJ3UNBiNBAmeF3L4OUIR4lh7Gy4NSQzfeyexu2z8x6T1rn1KA==
+ - toISXVwSucVeqxCNSaUdtpObGMUdyfmEOUkFNAe2eZvDlfzg4aRE-g==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 3355f84b6a1def66a4cf0b734a1003f6
+ - b8425de8d828c8dc63d2c6a187a45756
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect Dojo link:* http://localhost:8080/finding/334
- (334)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect Dojo link:* http://localhost:8080/finding/348
+ (348)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21308","key":"NTEST-3129","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308"}'
+ string: '{"id":"24924","key":"NTEST-3209","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924"}'
headers:
Atl-Request-Id:
- - 86a63c50-9b37-469f-bbe6-8f8e5a8a1695
+ - 624e5304-3a06-4088-a24c-16e09dbcfc9c
Atl-Traceid:
- - 86a63c509b37469fbbe68f8e5a8a1695
+ - 624e53043a064088a24c16e09dbcfc9c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:12 GMT
+ - Fri, 16 Jan 2026 21:01:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=896,atl-edge;dur=895,atl-edge-internal;dur=13,atl-edge-upstream;dur=881,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="suc_QCDFm6ZEIBgljnP1LcFykYJz6pb1JHLLT2WIlPLq2Jw-ayZPmw==",cdn-downstream-fbl;dur=901
+ - cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="0wO73buN389YccGAvbnTyCU_URH0sm_b5zu8ngckH3amvVWVRb_J4Q==",cdn-downstream-fbl;dur=988,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=985,atl-edge;dur=894,atl-edge-internal;dur=17,atl-edge-upstream;dur=876,atl-edge-pop;desc="aws-us-west-2"
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7bda591fa44b42ef6384ae955fdd5d7c.cloudfront.net (CloudFront)
+ - 1.1 7ee47747c4818585fe9ee49bdf1ecccc.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - suc_QCDFm6ZEIBgljnP1LcFykYJz6pb1JHLLT2WIlPLq2Jw-ayZPmw==
+ - 0wO73buN389YccGAvbnTyCU_URH0sm_b5zu8ngckH3amvVWVRb_J4Q==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - 50a3a47195dbe8e6348b576a867ff269
+ - 598d516e14144f57cf14cd43d43d1332
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - da9cd33d-0402-47d5-b808-4637b66a8325
+ - 19691d65-80da-4997-9e5e-f7b2b479c4e2
Atl-Traceid:
- - da9cd33d040247d5b8084637b66a8325
+ - 19691d6580da49979e5ef7b2b479c4e2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:13 GMT
+ - Fri, 16 Jan 2026 21:01:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=412,atl-edge-internal;dur=16,atl-edge-upstream;dur=396,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="cQn0Iigvph_EYX-f_MN_niSECi9munUqfr6nJNeqCu9oUezT_wr5uQ==",cdn-downstream-fbl;dur=418
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=300,atl-edge-internal;dur=17,atl-edge-upstream;dur=282,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="_rTorYjeVd6s8ERbp7pgi6AUU6jqTmSyVYhWRSjb_aND8HDzHezCrQ==",cdn-downstream-fbl;dur=327
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 29491175c208d4b12663a88d492ee9d0.cloudfront.net (CloudFront)
+ - 1.1 22cbebcbe97dd961cd3fddb13b91b816.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - cQn0Iigvph_EYX-f_MN_niSECi9munUqfr6nJNeqCu9oUezT_wr5uQ==
+ - _rTorYjeVd6s8ERbp7pgi6AUU6jqTmSyVYhWRSjb_aND8HDzHezCrQ==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - 390bca104d4ee3833d34e3839091bf62
+ - 5904ba9c2bb4944194d4d532e79791d1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 670125e4-71bf-4f79-a148-db1e67dd463b
+ - 380e1a40-9c0e-4162-866b-ffe408500143
Atl-Traceid:
- - 670125e471bf4f79a148db1e67dd463b
+ - 380e1a409c0e4162866bffe408500143
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:14 GMT
+ - Fri, 16 Jan 2026 21:01:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=387,atl-edge;dur=383,atl-edge-internal;dur=14,atl-edge-upstream;dur=369,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="Mc5BP92PbpPvNnqUT5RkpjiFo_zWzwB7QXT7jDsRp54c3w9X7CxCiQ==",cdn-downstream-fbl;dur=390
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=355,atl-edge;dur=267,atl-edge-internal;dur=17,atl-edge-upstream;dur=250,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="FxB4n8H6Qm4SOsXpjkf9grd5wGwkSZ76lxkTC8vxb8-FdapnIbL9hQ==",cdn-downstream-fbl;dur=358
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 00625c2aa02f6876cd9570486ac98924.cloudfront.net (CloudFront)
+ - 1.1 db28001b9bfb563d1bfcaccd38c4436a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Mc5BP92PbpPvNnqUT5RkpjiFo_zWzwB7QXT7jDsRp54c3w9X7CxCiQ==
+ - FxB4n8H6Qm4SOsXpjkf9grd5wGwkSZ76lxkTC8vxb8-FdapnIbL9hQ==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P1
X-Arequestid:
- - 247b4ae0b5e74ae6fa56a8a5e2018a5c
+ - 92049ea14e5f509b44c1e8be6804e2c7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:15.905+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:24.392+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 470742de-b360-459a-bcbc-55c8e910ed2d
+ - ab7d621d-4334-4db8-9b65-eb6bb698f98e
Atl-Traceid:
- - 470742deb360459abcbc55c8e910ed2d
+ - ab7d621d43344db89b65eb6bb698f98e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:16 GMT
+ - Fri, 16 Jan 2026 21:01:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=321,atl-edge-internal;dur=13,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="dfhcAstZhNShy6oEGcxTZfdTgdzLFHv1I7Ivot6rPCt07mcENLfaWw==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=207,atl-edge;dur=185,atl-edge-internal;dur=14,atl-edge-upstream;dur=170,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="VvmgKblrh4mXzCmZKx6Dl_I5jn4ix08R2GHgV1mFjudtIhuIRnSWeQ==",cdn-downstream-fbl;dur=212
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8783138ea9666e4b4e108d637479e468.cloudfront.net (CloudFront)
+ - 1.1 f56ef7e5c4cb094743e3a564f21d47b0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - dfhcAstZhNShy6oEGcxTZfdTgdzLFHv1I7Ivot6rPCt07mcENLfaWw==
+ - VvmgKblrh4mXzCmZKx6Dl_I5jn4ix08R2GHgV1mFjudtIhuIRnSWeQ==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - a033efae55e588fc7d1082ba9777ae8b
+ - 2e807fe2ac90090d8815bbccd7ccc771
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 985557ab-04b7-4f85-9df9-bf2dcd56f306
+ - 85466078-eee6-4d04-a984-b3d2de9cd4dd
Atl-Traceid:
- - 985557ab04b74f859df9bf2dcd56f306
+ - 85466078eee64d04a984b3d2de9cd4dd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:17 GMT
+ - Fri, 16 Jan 2026 21:01:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=481,atl-edge;dur=479,atl-edge-internal;dur=15,atl-edge-upstream;dur=464,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="nilFuf5IsxZJbXDvFsebFvq1MjOE6aNU3sgDXvzyDVvQ6-ErRd7DOA==",cdn-downstream-fbl;dur=485
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=516,atl-edge;dur=494,atl-edge-internal;dur=16,atl-edge-upstream;dur=477,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Wub_iERt3Ef1zULX_Xz6uQ8UCtyiUz5dSTTy_bWteUPKCmZf8JoJEg==",cdn-downstream-fbl;dur=520
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 774e46f6c14ff2c856f5733bff7d936e.cloudfront.net (CloudFront)
+ - 1.1 6baae223a8a0bac3ed58b2661c840b8e.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - nilFuf5IsxZJbXDvFsebFvq1MjOE6aNU3sgDXvzyDVvQ6-ErRd7DOA==
+ - Wub_iERt3Ef1zULX_Xz6uQ8UCtyiUz5dSTTy_bWteUPKCmZf8JoJEg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 1f1f357f0d042e193a9b70b0b2841b97
+ - 8999949fc590504fef8e43b87ae5d957
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2167'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21309","key":"NTEST-3130","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309"}'
+ string: '{"id":"24925","key":"NTEST-3210","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925"}'
headers:
Atl-Request-Id:
- - 47a9c817-7b22-4f2d-a64c-54ed967ba044
+ - 26cb07e5-21cd-44e8-85d4-44964f6a1b6b
Atl-Traceid:
- - 47a9c8177b224f2da64c54ed967ba044
+ - 26cb07e521cd44e885d444964f6a1b6b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:19 GMT
+ - Fri, 16 Jan 2026 21:01:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=831,atl-edge;dur=829,atl-edge-internal;dur=15,atl-edge-upstream;dur=814,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="TVsmX91Lwau-W9RH2N_TMT9ySh0EzL0sKrjnn9E9OY2p1DipvZiWkw==",cdn-downstream-fbl;dur=834
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=869,atl-edge;dur=846,atl-edge-internal;dur=18,atl-edge-upstream;dur=828,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="nsdFmhphkrPlslRwwv_WAAiRS7s6OBD4i5Ekwm71mTXu8oTtXpvIXw==",cdn-downstream-fbl;dur=873
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0d87c721c7b25d6fef7d75bbb22d3468.cloudfront.net (CloudFront)
+ - 1.1 21d788b44c2b3d335a275c07a54548b6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - TVsmX91Lwau-W9RH2N_TMT9ySh0EzL0sKrjnn9E9OY2p1DipvZiWkw==
+ - nsdFmhphkrPlslRwwv_WAAiRS7s6OBD4i5Ekwm71mTXu8oTtXpvIXw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P3
X-Arequestid:
- - 136afb3f6e890fe13af97d4b7de4eb58
+ - 4f548a3bf54b376a9bdbc4817e1ddd92
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 65ae5bc0-fdc1-4959-814d-eb30d8a8c289
+ - 01ac2544-e363-42f3-b696-762494c82eba
Atl-Traceid:
- - 65ae5bc0fdc14959814deb30d8a8c289
+ - 01ac2544e36342f3b696762494c82eba
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:20 GMT
+ - Fri, 16 Jan 2026 21:01:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=901,atl-edge;dur=899,atl-edge-internal;dur=15,atl-edge-upstream;dur=884,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="LtOhIYBweTsX51SV3szI-YNCQNHzBJDUD0Hz7e20c_11UZuojxtmWg==",cdn-downstream-fbl;dur=905
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=331,atl-edge;dur=308,atl-edge-internal;dur=17,atl-edge-upstream;dur=291,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Rd4jISaYheDWy0O7Fva-l_slRQkJ1taT9uR_xKNtBRGbJ2tuljYQ3A==",cdn-downstream-fbl;dur=334
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 bc177ce25ddc555a7d303bc4d290a6ec.cloudfront.net (CloudFront)
+ - 1.1 0952fdd661cdbb703496fdb1bd8ea4a2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - LtOhIYBweTsX51SV3szI-YNCQNHzBJDUD0Hz7e20c_11UZuojxtmWg==
+ - Rd4jISaYheDWy0O7Fva-l_slRQkJ1taT9uR_xKNtBRGbJ2tuljYQ3A==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 627be8ec40b41381fa041a0929aff07c
+ - cc1f9c9213e757ee6e89bff9ab301d67
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 5940e0e7-a5c9-4378-9460-795dce9b999f
+ - 300fee5a-6730-4825-ad8b-ea7cd800d263
Atl-Traceid:
- - 5940e0e7a5c943789460795dce9b999f
+ - 300fee5a67304825ad8bea7cd800d263
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:22 GMT
+ - Fri, 16 Jan 2026 21:01:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=420,atl-edge;dur=418,atl-edge-internal;dur=16,atl-edge-upstream;dur=402,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="GhErglOdWWquSBPnB0QjRTxVPifn_kraXOhRkA2CYcAPwIrxxfmTyg==",cdn-downstream-fbl;dur=423
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=314,atl-edge;dur=291,atl-edge-internal;dur=16,atl-edge-upstream;dur=275,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="egy5MS9P-RUNwqChCQyuvKZ6KI7yW0L5O0p5IK2rnsIPctgfdKP8_Q==",cdn-downstream-fbl;dur=318
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 2db2695e7e4ed9660f2422e6ea5c01e4.cloudfront.net (CloudFront)
+ - 1.1 fa6b9e1b41b3cd4347ebce8cef156f7a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - GhErglOdWWquSBPnB0QjRTxVPifn_kraXOhRkA2CYcAPwIrxxfmTyg==
+ - egy5MS9P-RUNwqChCQyuvKZ6KI7yW0L5O0p5IK2rnsIPctgfdKP8_Q==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 36bdd7bf38d8bbd131d8ec69e310ab40
+ - 2b9eeb37b8a9909a75c05277a4d5bad6
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/119", "url_api": "http://localhost:8080/api/v2/tests/119/",
+ "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 119, "url_ui": "http://localhost:8080/test/119", "url_api": "http://localhost:8080/api/v2/tests/119/"}}'
+ 124, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/119\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/119/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/124/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 119, \\\"url_ui\\\": \\\"http://localhost:8080/test/119\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/119/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 124, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 119,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/119/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/119\"\n },\n \"title\":
+ 124,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/124\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/119/\",\n \"url_ui\":
- \"http://localhost:8080/test/119\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n \"url_ui\":
+ \"http://localhost:8080/test/124\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:12:22 GMT
+ - Fri, 16 Jan 2026 21:01:26 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/119", "url_api": "http://localhost:8080/api/v2/tests/119/",
+ null, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 119, "url_ui": "http://localhost:8080/test/119", "url_api": "http://localhost:8080/api/v2/tests/119/"},
- "finding_count": 5, "findings": {"new": [{"id": 331, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/331",
- "url_api": "http://localhost:8080/api/v2/findings/331/"}, {"id": 332, "title":
+ 124, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/"},
+ "finding_count": 5, "findings": {"new": [{"id": 345, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/345",
+ "url_api": "http://localhost:8080/api/v2/findings/345/"}, {"id": 346, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/332", "url_api":
- "http://localhost:8080/api/v2/findings/332/"}, {"id": 330, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/346", "url_api":
+ "http://localhost:8080/api/v2/findings/346/"}, {"id": 344, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/330", "url_api": "http://localhost:8080/api/v2/findings/330/"},
- {"id": 333, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/333", "url_api":
- "http://localhost:8080/api/v2/findings/333/"}, {"id": 334, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/344", "url_api": "http://localhost:8080/api/v2/findings/344/"},
+ {"id": 347, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/347", "url_api":
+ "http://localhost:8080/api/v2/findings/347/"}, {"id": 348, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/334", "url_api":
- "http://localhost:8080/api/v2/findings/334/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/348", "url_api":
+ "http://localhost:8080/api/v2/findings/348/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/119\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/119/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 119, \\\"url_ui\\\": \\\"http://localhost:8080/test/119\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/119/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 331, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 124, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 345, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/331\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/331/\\\"}, {\\\"id\\\": 332, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/345\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/345/\\\"}, {\\\"id\\\": 346, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/332\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/332/\\\"},
- {\\\"id\\\": 330, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/346\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/346/\\\"},
+ {\\\"id\\\": 344, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/330\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/330/\\\"},
- {\\\"id\\\": 333, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/344\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/344/\\\"},
+ {\\\"id\\\": 347, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/333\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/333/\\\"},
- {\\\"id\\\": 334, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/347\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/347/\\\"},
+ {\\\"id\\\": 348, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/334\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/334/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/348\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/348/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 331,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 345,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/331/\",\n \"url_ui\": \"http://localhost:8080/finding/331\"\n
- \ },\n {\n \"id\": 332,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/345/\",\n \"url_ui\": \"http://localhost:8080/finding/345\"\n
+ \ },\n {\n \"id\": 346,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/332/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/332\"\n },\n
- \ {\n \"id\": 330,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/346/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/346\"\n },\n
+ \ {\n \"id\": 344,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/330/\",\n \"url_ui\": \"http://localhost:8080/finding/330\"\n
- \ },\n {\n \"id\": 333,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/344/\",\n \"url_ui\": \"http://localhost:8080/finding/344\"\n
+ \ },\n {\n \"id\": 347,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/333/\",\n \"url_ui\":
- \"http://localhost:8080/finding/333\"\n },\n {\n \"id\":
- 334,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/347/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/347\"\n },\n {\n \"id\":
+ 348,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/334/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/334\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/348/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/348\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 119,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/119/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/119\"\n },\n \"title\":
+ 124,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/124\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/119/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/119\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/124\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:12:22 GMT
+ - Fri, 16 Jan 2026 21:01:26 GMT
Transfer-Encoding:
- chunked
status:
@@ -1807,17 +1867,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:23.376+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:27.199+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 60f5caa2-1cc6-4102-844d-557131bf54a9
+ - be0a42a2-c051-4deb-b096-c9eb95b5ad7d
Atl-Traceid:
- - 60f5caa21cc64102844d557131bf54a9
+ - be0a42a2c0514debb096c9eb95b5ad7d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1827,9 +1887,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:23 GMT
+ - Fri, 16 Jan 2026 21:01:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1837,7 +1897,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=352,atl-edge;dur=350,atl-edge-internal;dur=17,atl-edge-upstream;dur=333,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="Iq81i09E5msxr5f6axK4biqiO88phDPSys_FDS7k9baRZoS-cBHQRA==",cdn-downstream-fbl;dur=356
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=214,atl-edge;dur=190,atl-edge-internal;dur=15,atl-edge-upstream;dur=176,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="7UV7HQPEfLorAxKxPFJFbumYB6k-9-1hdF0Rc4Iv6VHVw6eXCImAAw==",cdn-downstream-fbl;dur=218
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1847,19 +1907,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4279a60193243ca3cf62feedc7fe581e.cloudfront.net (CloudFront)
+ - 1.1 5dcf09eaf65257abe85ddc5988a25c4e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Iq81i09E5msxr5f6axK4biqiO88phDPSys_FDS7k9baRZoS-cBHQRA==
+ - 7UV7HQPEfLorAxKxPFJFbumYB6k-9-1hdF0Rc4Iv6VHVw6eXCImAAw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - 5160e75c4160e55b0e8729b7f5b76fb9
+ - aa11d1afb8a8cb89041ce6983cf85d32
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1879,32 +1943,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1914,9 +1978,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -1926,12 +1990,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 84327e95-4ed9-413e-9bb4-9d330eeb2066
+ - 6bbca567-8013-4bf4-bf11-92051e39c509
Atl-Traceid:
- - 84327e954ed9413e9bb49d330eeb2066
+ - 6bbca56780134bf4bf1192051e39c509
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1941,9 +2005,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:24 GMT
+ - Fri, 16 Jan 2026 21:01:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1951,7 +2015,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=464,atl-edge;dur=462,atl-edge-internal;dur=15,atl-edge-upstream;dur=447,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="2S-DRHJ6fDZnSFfWrKb_08cQg4_p7mVJFrt8t3u_EReqC4-cX5Sf0Q==",cdn-downstream-fbl;dur=467
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=335,atl-edge;dur=311,atl-edge-internal;dur=18,atl-edge-upstream;dur=292,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="mjgw65fpxGEdn3LcXZJSICoEMCkbWZD37ipfVWH3LKzvdO0j1wjofg==",cdn-downstream-fbl;dur=338
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1961,19 +2025,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3e4f9c0400441c93ce3468dd26ef9ee4.cloudfront.net (CloudFront)
+ - 1.1 b35c566c5c237e7090b19170d36f7ad2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 2S-DRHJ6fDZnSFfWrKb_08cQg4_p7mVJFrt8t3u_EReqC4-cX5Sf0Q==
+ - mjgw65fpxGEdn3LcXZJSICoEMCkbWZD37ipfVWH3LKzvdO0j1wjofg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 44b14c1f272af678244684c398557cfb
+ - cc6938a2a03f0e4fbbc1f4e97a5e4a5f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1993,17 +2061,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:25.927+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:27.990+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 827f5572-7eb2-405f-96c8-58cfdc6fe68e
+ - fc5caa8e-080f-4794-8b1c-8cdd6ddfaca0
Atl-Traceid:
- - 827f55727eb2405f96c858cfdc6fe68e
+ - fc5caa8e080f47948b1c8cdd6ddfaca0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2013,9 +2081,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:26 GMT
+ - Fri, 16 Jan 2026 21:01:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2023,7 +2091,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=318,atl-edge;dur=315,atl-edge-internal;dur=13,atl-edge-upstream;dur=303,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="9crKIWpR8eJ68pb504wuNgDZ2F7Fod0e8cLlPDW7oPjqwY14so8WWw==",cdn-downstream-fbl;dur=322
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=191,atl-edge;dur=168,atl-edge-internal;dur=13,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="VjaDD3h_unz85x1O7eOGM4I8QBZnQq51q82QxIR72Wbd6dxdJeW_Yw==",cdn-downstream-fbl;dur=196
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2033,19 +2101,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ebc52833900e41e6796b998a5877893e.cloudfront.net (CloudFront)
+ - 1.1 96971091469e558c8f8e351ccf0d7212.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9crKIWpR8eJ68pb504wuNgDZ2F7Fod0e8cLlPDW7oPjqwY14so8WWw==
+ - VjaDD3h_unz85x1O7eOGM4I8QBZnQq51q82QxIR72Wbd6dxdJeW_Yw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - ab46a4f8688a4922ab976a6af51f599f
+ - d2d0957c4a7554bc7f9acc717c7048ef
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2065,41 +2137,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -2129,9 +2201,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -2158,12 +2230,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 11572003-ca1e-47eb-b586-4c5e2b3bd9c6
+ - 698cb2c6-4be9-47a6-aabd-bf1bfa5885b6
Atl-Traceid:
- - 11572003ca1e47ebb5864c5e2b3bd9c6
+ - 698cb2c64be947a6aabdbf1bfa5885b6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2173,9 +2245,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:27 GMT
+ - Fri, 16 Jan 2026 21:01:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2183,7 +2255,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=438,atl-edge;dur=436,atl-edge-internal;dur=15,atl-edge-upstream;dur=421,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="gFD1oVqcJfFOGXy6rvPdKBs1LBeT3b6EL7SDgGnzQpkTeN5Wn4GpHw==",cdn-downstream-fbl;dur=442
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=290,atl-edge;dur=267,atl-edge-internal;dur=16,atl-edge-upstream;dur=251,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="o4_p9XoBQIrwH8i9IVBOzwKz7IxQzXdWk6y0nYlbpEwqH-khWfabSg==",cdn-downstream-fbl;dur=294
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2193,19 +2265,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8a987ddeb53d46074ad1f07f669c10c4.cloudfront.net (CloudFront)
+ - 1.1 98d9402866aa771c6e6bbecb98c200aa.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - gFD1oVqcJfFOGXy6rvPdKBs1LBeT3b6EL7SDgGnzQpkTeN5Wn4GpHw==
+ - o4_p9XoBQIrwH8i9IVBOzwKz7IxQzXdWk6y0nYlbpEwqH-khWfabSg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 3db858f0fcbe6ea75ce1467c7be95b04
+ - c738719380f74ba2590c60865755fde5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2225,17 +2301,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:28.428+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:28.636+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 6b810cef-d1a0-495c-82b2-60dca0532c6f
+ - ce174547-ae62-4a30-b554-1d5f5b8576d0
Atl-Traceid:
- - 6b810cefd1a0495c82b260dca0532c6f
+ - ce174547ae624a30b5541d5f5b8576d0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2245,9 +2321,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:28 GMT
+ - Fri, 16 Jan 2026 21:01:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2255,7 +2331,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=331,atl-edge;dur=328,atl-edge-internal;dur=16,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="1BQJ0EJDCNZV_faPEskWyUBsAeCjZvgvqLip7MRW3AQdgajf8Eh3Pg==",cdn-downstream-fbl;dur=335
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=218,atl-edge;dur=195,atl-edge-internal;dur=14,atl-edge-upstream;dur=181,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="uj3dswQz4wwDfkKJvuSRrQ0APMWJapXCgaFcHi5g-msBrgFLlmmewQ==",cdn-downstream-fbl;dur=235
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2265,19 +2341,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1d79c793a8ae16fbcc3957bd18e4b392.cloudfront.net (CloudFront)
+ - 1.1 a42ce842e0f60814700ead82353e9f08.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 1BQJ0EJDCNZV_faPEskWyUBsAeCjZvgvqLip7MRW3AQdgajf8Eh3Pg==
+ - uj3dswQz4wwDfkKJvuSRrQ0APMWJapXCgaFcHi5g-msBrgFLlmmewQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - 37289bf7c6c635919b0b669debea2a0d
+ - ec74af39978ceafe858127952ea01608
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2297,41 +2377,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -2361,9 +2441,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -2390,12 +2470,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 583e2241-0793-4c16-a6e8-cd3246bc2c0c
+ - 65e8cd24-e1b6-4a37-9bd3-58a2097c6dcd
Atl-Traceid:
- - 583e224107934c16a6e8cd3246bc2c0c
+ - 65e8cd24e1b64a379bd358a2097c6dcd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2405,9 +2485,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:29 GMT
+ - Fri, 16 Jan 2026 21:01:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2415,7 +2495,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=402,atl-edge;dur=400,atl-edge-internal;dur=14,atl-edge-upstream;dur=387,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="qTMxiF0iv3QPXvcN3LUI4XlGrhUh4hKX_Xa1pChNdCtDRIrfWJ7SuQ==",cdn-downstream-fbl;dur=406
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=329,atl-edge;dur=306,atl-edge-internal;dur=16,atl-edge-upstream;dur=290,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="SbfEutcNTFgraiG454NYeNd3wQ51Wqobm_xjn4QSRRA-_PeCPxrj9g==",cdn-downstream-fbl;dur=333
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2425,19 +2505,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e80732d7ef726bed77c3f67a8339cc96.cloudfront.net (CloudFront)
+ - 1.1 4727c17386dca598865fa547bcafadfa.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - qTMxiF0iv3QPXvcN3LUI4XlGrhUh4hKX_Xa1pChNdCtDRIrfWJ7SuQ==
+ - SbfEutcNTFgraiG454NYeNd3wQ51Wqobm_xjn4QSRRA-_PeCPxrj9g==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P1
X-Arequestid:
- - 9d81996033c110ea00579c0355a1df66
+ - 8b676b8b46cf7dfae6885aea1b24dd22
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '395'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2457,17 +2541,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:30.949+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:29.360+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 0b8dc205-aeef-4e8a-b0e0-c1e490221df2
+ - bfea7b29-622c-46a4-9db4-0b87f86bbdf6
Atl-Traceid:
- - 0b8dc205aeef4e8ab0e0c1e490221df2
+ - bfea7b29622c46a49db40b87f86bbdf6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2477,9 +2561,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:31 GMT
+ - Fri, 16 Jan 2026 21:01:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2487,7 +2571,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=318,atl-edge;dur=315,atl-edge-internal;dur=16,atl-edge-upstream;dur=300,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="FKnsG1zlZpSxJkHdiug2OwnPWkOOugfRV1rZMoOrwzMIxaQUoDfXTA==",cdn-downstream-fbl;dur=322
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=190,atl-edge;dur=166,atl-edge-internal;dur=14,atl-edge-upstream;dur=152,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="x9Bh9ihZplYR995_TtdcyvbEd3FOoBnkgoQp17UHqdBbqbVS4JnrOQ==",cdn-downstream-fbl;dur=194
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2497,19 +2581,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ebc52833900e41e6796b998a5877893e.cloudfront.net (CloudFront)
+ - 1.1 03fa0691c8124b25f37416f26d179308.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - FKnsG1zlZpSxJkHdiug2OwnPWkOOugfRV1rZMoOrwzMIxaQUoDfXTA==
+ - x9Bh9ihZplYR995_TtdcyvbEd3FOoBnkgoQp17UHqdBbqbVS4JnrOQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 261699706f80ab6d5f8bd8343ad9334a
+ - b4cb71200af6d08fdaa0dbb865bf774f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '346'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2529,30 +2617,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -2561,12 +2649,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 3d3e3aca-fae8-4e41-b923-d9e6da0b61d0
+ - bae96ed2-fbb0-40dd-8f6d-7420b6cdf10c
Atl-Traceid:
- - 3d3e3acafae84e41b923d9e6da0b61d0
+ - bae96ed2fbb040dd8f6d7420b6cdf10c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2576,9 +2664,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:32 GMT
+ - Fri, 16 Jan 2026 21:01:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2586,7 +2674,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=408,atl-edge;dur=406,atl-edge-internal;dur=18,atl-edge-upstream;dur=388,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="52lE7xSWbkN1Tlf4VOboyX3c8Vyo7s1h6WpC67n2vT2rtm12X8bwWQ==",cdn-downstream-fbl;dur=411
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=313,atl-edge;dur=290,atl-edge-internal;dur=16,atl-edge-upstream;dur=274,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="6bTlGsIpzEDueY5hOXe3YEsau6vMt5EkVmt_2rpg31oSDbfihuXJFA==",cdn-downstream-fbl;dur=317
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2596,19 +2684,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 16481a07c9d54ca0e038ad1d2aec824a.cloudfront.net (CloudFront)
+ - 1.1 64f15bfbd33a77e4a1cbe7d2b1e398e2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 52lE7xSWbkN1Tlf4VOboyX3c8Vyo7s1h6WpC67n2vT2rtm12X8bwWQ==
+ - 6bTlGsIpzEDueY5hOXe3YEsau6vMt5EkVmt_2rpg31oSDbfihuXJFA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P2
X-Arequestid:
- - 9eb99b80c4bf5f4be955349b308c2b24
+ - 9575cb7bb9e38d19e97bcda032456363
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '394'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2628,17 +2720,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:34.454+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:30.132+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 64ab4b14-bfcc-41b0-8ca1-50e30c887200
+ - f9b9c76c-961a-423c-ae3a-e32722933d9e
Atl-Traceid:
- - 64ab4b14bfcc41b08ca150e30c887200
+ - f9b9c76c961a423cae3ae32722933d9e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2648,9 +2740,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:34 GMT
+ - Fri, 16 Jan 2026 21:01:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2658,7 +2750,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=324,atl-edge;dur=318,atl-edge-internal;dur=14,atl-edge-upstream;dur=304,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="2UnSOny9-IZowaUIe-_uZRK1PBCMNFZXu8hqrenQnhbpg9Ok_7ATYQ==",cdn-downstream-fbl;dur=327
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=232,atl-edge;dur=208,atl-edge-internal;dur=15,atl-edge-upstream;dur=193,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="j1xm4AXx56WFSpHGeqOwLSgav6PZBnFfLxm_2YEa_P3aQk6B0n9ikA==",cdn-downstream-fbl;dur=245
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2668,19 +2760,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 60a3c74b395afbd3a50d71e59ea19eca.cloudfront.net (CloudFront)
+ - 1.1 96725c0e4ced177a38df871e7cc48a4a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 2UnSOny9-IZowaUIe-_uZRK1PBCMNFZXu8hqrenQnhbpg9Ok_7ATYQ==
+ - j1xm4AXx56WFSpHGeqOwLSgav6PZBnFfLxm_2YEa_P3aQk6B0n9ikA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - d97e7f91cbd1b8a0b3dbb9f695e99a4b
+ - 76e873c58c290fa833f8158c212ff19d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '345'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2700,32 +2796,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2735,9 +2831,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2747,12 +2843,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 2eaf5061-54f0-4df5-9c7f-ae73bcb10215
+ - 06039617-037e-4fc1-8655-36b06972bac0
Atl-Traceid:
- - 2eaf506154f04df59c7fae73bcb10215
+ - 06039617037e4fc1865536b06972bac0
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2762,9 +2858,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:35 GMT
+ - Fri, 16 Jan 2026 21:01:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2772,7 +2868,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=447,atl-edge;dur=443,atl-edge-internal;dur=17,atl-edge-upstream;dur=426,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="12Tf30gQlZeyIa7ANrsnJHi5Sp6ECyqkLSkHLqFZcZBfdQ1qFe3uLQ==",cdn-downstream-fbl;dur=450
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=380,atl-edge;dur=358,atl-edge-internal;dur=21,atl-edge-upstream;dur=336,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="q7sXpy0D4g0QqEX1sygmSUXdeC4WV0LleCuz3P5IbJc3J6t-pvWhiQ==",cdn-downstream-fbl;dur=384
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2782,19 +2878,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fd52efac0e72eb0d0b1148d8f877dd9e.cloudfront.net (CloudFront)
+ - 1.1 8e3b59cbfaa682579fb24502d1ad1194.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 12Tf30gQlZeyIa7ANrsnJHi5Sp6ECyqkLSkHLqFZcZBfdQ1qFe3uLQ==
+ - q7sXpy0D4g0QqEX1sygmSUXdeC4WV0LleCuz3P5IbJc3J6t-pvWhiQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P2
X-Arequestid:
- - 5af2ef9da554a97b1ceda99eedf1a940
+ - de104226e1d3ee69254ea3b7e56a4cb3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '393'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2814,17 +2914,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:37.150+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:31.060+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 772f0b9a-d2ae-477c-91b4-f96cedf0070c
+ - a05a9fe2-5fec-4c98-8154-312d392a7894
Atl-Traceid:
- - 772f0b9ad2ae477c91b4f96cedf0070c
+ - a05a9fe25fec4c988154312d392a7894
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2834,9 +2934,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:37 GMT
+ - Fri, 16 Jan 2026 21:01:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2844,7 +2944,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=316,atl-edge;dur=315,atl-edge-internal;dur=15,atl-edge-upstream;dur=300,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="6h0j1QlwSuDR3SehuEaBuNMAoZv2OvFjh95VAExX8iEvVgDnMwkOAw==",cdn-downstream-fbl;dur=319
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=198,atl-edge;dur=174,atl-edge-internal;dur=14,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="MrNfvSediBLE1y7mvNBySaZLU-CKTqki6vPaFExh5MYXs5cVggNOHg==",cdn-downstream-fbl;dur=202
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2854,19 +2954,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1febefb7e39b5395820bafc78730e954.cloudfront.net (CloudFront)
+ - 1.1 dfb119739413f1d03dd274d99dda4dae.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 6h0j1QlwSuDR3SehuEaBuNMAoZv2OvFjh95VAExX8iEvVgDnMwkOAw==
+ - MrNfvSediBLE1y7mvNBySaZLU-CKTqki6vPaFExh5MYXs5cVggNOHg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 83418196fd874982a89f59952da1d982
+ - 0a22897b5b9572d03621980cb378c5a5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '344'
X-Xss-Protection:
- 1; mode=block
status:
@@ -2886,32 +2990,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2921,9 +3025,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -2933,12 +3037,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 51d5c0b6-9cb6-4237-b529-898cfcdbcaa2
+ - 10fa999e-1a61-45ea-a0c5-a38cf919a178
Atl-Traceid:
- - 51d5c0b69cb64237b529898cfcdbcaa2
+ - 10fa999e1a6145eaa0c5a38cf919a178
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -2948,9 +3052,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:38 GMT
+ - Fri, 16 Jan 2026 21:01:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -2958,7 +3062,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=451,atl-edge;dur=449,atl-edge-internal;dur=16,atl-edge-upstream;dur=432,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="3Z4KGny8a9P1sGtj9F-17gVgYN3C5pPNOto7f7DS9dwdQ2gP1TAzGA==",cdn-downstream-fbl;dur=454
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=302,atl-edge;dur=279,atl-edge-internal;dur=17,atl-edge-upstream;dur=262,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Etw76Lps_7EHIqV1tucFCz4KAsf9AuhFUAUMaSS0oOVdEebTFrFmZQ==",cdn-downstream-fbl;dur=306
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -2968,19 +3072,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 19f48f8a678ef4e5c0ca07e0cf91cbc6.cloudfront.net (CloudFront)
+ - 1.1 fa6b9e1b41b3cd4347ebce8cef156f7a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 3Z4KGny8a9P1sGtj9F-17gVgYN3C5pPNOto7f7DS9dwdQ2gP1TAzGA==
+ - Etw76Lps_7EHIqV1tucFCz4KAsf9AuhFUAUMaSS0oOVdEebTFrFmZQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - aef40c8de6e5df136ddc727573c8497d
+ - 7ac11c284294423e478aa48caad68239
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '392'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3000,7 +3108,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -3014,9 +3122,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - e4593b52-fae8-4ed4-b9c1-acf2198a33ba
+ - a980ea38-7243-437f-9797-1fde8b454954
Atl-Traceid:
- - e4593b52fae84ed4b9c1acf2198a33ba
+ - a980ea387243437f97971fde8b454954
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3026,9 +3134,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:39 GMT
+ - Fri, 16 Jan 2026 21:01:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3036,7 +3144,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=493,atl-edge;dur=491,atl-edge-internal;dur=14,atl-edge-upstream;dur=477,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="SNzkVffTPhzVPnMkLQipHBdK4wuZRIWVEnIp06Lg8qqJMQGD4JXEXw==",cdn-downstream-fbl;dur=498
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=386,atl-edge-internal;dur=18,atl-edge-upstream;dur=366,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="ZyIgxAERaoJklXJiR1xLPbuNuSjkO_ZRZRDyNBae7OffWWMcx06Xwg==",cdn-downstream-fbl;dur=413
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3046,22 +3154,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 18973cd357a68e16bd20873be51e8596.cloudfront.net (CloudFront)
+ - 1.1 12db2441e97bca59edef39f0800ba984.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - SNzkVffTPhzVPnMkLQipHBdK4wuZRIWVEnIp06Lg8qqJMQGD4JXEXw==
+ - ZyIgxAERaoJklXJiR1xLPbuNuSjkO_ZRZRDyNBae7OffWWMcx06Xwg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P1
X-Arequestid:
- - bd3dc0b14219921cc31d99d65c39290a
+ - 4ca0adc5779c32a4b02b9186ad7de3f8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3071,20 +3183,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3094,9 +3206,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3116,21 +3228,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3556'
+ - '3558'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
string: ''
headers:
Atl-Request-Id:
- - b0d6aa61-32d5-4065-a615-9102c6dee2bc
+ - 7f8621e0-8f55-48e3-af07-9db4f1d0b34f
Atl-Traceid:
- - b0d6aa6132d54065a6159102c6dee2bc
+ - 7f8621e08f5548e3af079db4f1d0b34f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3138,9 +3250,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:41 GMT
+ - Fri, 16 Jan 2026 21:01:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3148,7 +3260,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=518,atl-edge;dur=515,atl-edge-internal;dur=14,atl-edge-upstream;dur=501,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="pizvZOqDOaew66CF6Txs3bbEGnp6gcmAEiKWHwkDkbHyg8O2aWPb7w==",cdn-downstream-fbl;dur=522
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=442,atl-edge;dur=418,atl-edge-internal;dur=17,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="sQhbFYH5D0LlVlcg_nTz085jlBcLPPXVDuwWgS4ZG28tjvVeKtoIvg==",cdn-downstream-fbl;dur=447
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3156,19 +3268,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7bbccbab99aa927533c5da8ccfb22e02.cloudfront.net (CloudFront)
+ - 1.1 e559b1049f75d818d7420cfc59459998.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - pizvZOqDOaew66CF6Txs3bbEGnp6gcmAEiKWHwkDkbHyg8O2aWPb7w==
+ - sQhbFYH5D0LlVlcg_nTz085jlBcLPPXVDuwWgS4ZG28tjvVeKtoIvg==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P3
X-Arequestid:
- - 5103b3d96be53ff84d55fb3a86f24f1f
+ - 50853dc5eeb53b4b25e0b777bb7d8446
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3188,32 +3304,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3223,9 +3339,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -3235,12 +3351,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 897113d6-7242-44b5-b9aa-f51c6494ee51
+ - bc8dc3b9-7488-4a1a-98e8-9147bc87e7a9
Atl-Traceid:
- - 897113d6724244b5b9aaf51c6494ee51
+ - bc8dc3b974884a1a98e89147bc87e7a9
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3250,9 +3366,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:42 GMT
+ - Fri, 16 Jan 2026 21:01:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3260,7 +3376,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=416,atl-edge;dur=414,atl-edge-internal;dur=14,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="BsABNupmEE21T8_TFh_cp778c4NY0LMS4nKSK2DfPjguY4ellqYx7A==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=296,atl-edge;dur=274,atl-edge-internal;dur=19,atl-edge-upstream;dur=254,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="7TSNYwxMT8509840W_Un4waijH18ozl3QqM2DUNG4tKMDXK4nrOn2g==",cdn-downstream-fbl;dur=299
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3270,19 +3386,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 853f4fb2226327c7e93e1af35b3e6c8c.cloudfront.net (CloudFront)
+ - 1.1 e1dbbcedf936fc7d0284466c9c65e78c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - BsABNupmEE21T8_TFh_cp778c4NY0LMS4nKSK2DfPjguY4ellqYx7A==
+ - 7TSNYwxMT8509840W_Un4waijH18ozl3QqM2DUNG4tKMDXK4nrOn2g==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - d4769308d2d38f01e267b78170e3975e
+ - aa4bb71ca5892ef9f3a1d55672c3a370
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3302,17 +3422,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:43.788+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:33.203+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 7f19d993-0607-4fc0-b3b9-17b1af136883
+ - 81b68b64-0866-4dce-bbaa-79d070ccbd66
Atl-Traceid:
- - 7f19d99306074fc0b3b917b1af136883
+ - 81b68b6408664dcebbaa79d070ccbd66
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3322,9 +3442,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:43 GMT
+ - Fri, 16 Jan 2026 21:01:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3332,7 +3452,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=320,atl-edge;dur=318,atl-edge-internal;dur=15,atl-edge-upstream;dur=304,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="PiuVhtlwDQHUkOAeKxV6hSbwYkzHy4dJnavEVgq-hP_SBuWJBP6oaA==",cdn-downstream-fbl;dur=323
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=195,atl-edge;dur=172,atl-edge-internal;dur=14,atl-edge-upstream;dur=157,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="p0_dfI1Ic6BsW3o3yse-Rd2rH0ZMzSEAcTkSjzJzzXbqswTVomtLCg==",cdn-downstream-fbl;dur=199
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3342,19 +3462,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8ccca629f0b1ca48e2e69a056f61f9a6.cloudfront.net (CloudFront)
+ - 1.1 e559b1049f75d818d7420cfc59459998.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - PiuVhtlwDQHUkOAeKxV6hSbwYkzHy4dJnavEVgq-hP_SBuWJBP6oaA==
+ - p0_dfI1Ic6BsW3o3yse-Rd2rH0ZMzSEAcTkSjzJzzXbqswTVomtLCg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P3
X-Arequestid:
- - 0e486cee277d3b9acf074910b03bd5c2
+ - df934d949f0bc090a7a246104085e675
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3374,41 +3498,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -3438,9 +3562,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -3467,12 +3591,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 3086a253-0701-4d95-a19a-098448e26a9c
+ - 9da8da26-f48c-4a4d-af73-496cdd2391bd
Atl-Traceid:
- - 3086a25307014d95a19a098448e26a9c
+ - 9da8da26f48c4a4daf73496cdd2391bd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3482,9 +3606,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:45 GMT
+ - Fri, 16 Jan 2026 21:01:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3492,7 +3616,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=409,atl-edge;dur=405,atl-edge-internal;dur=17,atl-edge-upstream;dur=389,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="hQNdr7UOh5JT2OLZXnP9t8JHoPbPSLxFuccwQqZj7i-evvfaOGj_hA==",cdn-downstream-fbl;dur=413
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=328,atl-edge;dur=304,atl-edge-internal;dur=16,atl-edge-upstream;dur=289,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="bkBlhFPDj7TPPwrJeel9FkWVnh2sltfggabpmMfXl5rTtoPbxAynXw==",cdn-downstream-fbl;dur=333
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3502,19 +3626,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9478009849c2f6b9551c4c5c23842910.cloudfront.net (CloudFront)
+ - 1.1 d9fe97589e952f97209f7a422c89d876.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hQNdr7UOh5JT2OLZXnP9t8JHoPbPSLxFuccwQqZj7i-evvfaOGj_hA==
+ - bkBlhFPDj7TPPwrJeel9FkWVnh2sltfggabpmMfXl5rTtoPbxAynXw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - e9408d72797f7ea546782f4e7315adb4
+ - 4800e0e109a2170515af317a9b0a9956
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3534,7 +3662,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -3548,9 +3676,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 568a13c9-28c1-41b3-a2ba-37ca56f377b7
+ - 4e73cbb8-5c28-49a6-a264-3c35c2846451
Atl-Traceid:
- - 568a13c928c141b3a2ba37ca56f377b7
+ - 4e73cbb85c2849a6a2643c35c2846451
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3560,9 +3688,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:47 GMT
+ - Fri, 16 Jan 2026 21:01:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3570,7 +3698,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=967,atl-edge;dur=965,atl-edge-internal;dur=15,atl-edge-upstream;dur=949,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="NlRqjJD7b4y-mxL5hneeqJn29QVYwa99fmgJ-6wL9IwiPPNiLHStZQ==",cdn-downstream-fbl;dur=971
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=418,atl-edge;dur=395,atl-edge-internal;dur=18,atl-edge-upstream;dur=376,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="QErJJfD3yY_oNswrDlur9xTBYC9VkheVtYZpUHW8YJlcviseegOPPw==",cdn-downstream-fbl;dur=422
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3580,22 +3708,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fa43c7fc4cce8d15bc6bb688567ffc10.cloudfront.net (CloudFront)
+ - 1.1 fda672f0d6e472cdf596c05a64c6184e.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - NlRqjJD7b4y-mxL5hneeqJn29QVYwa99fmgJ-6wL9IwiPPNiLHStZQ==
+ - QErJJfD3yY_oNswrDlur9xTBYC9VkheVtYZpUHW8YJlcviseegOPPw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - 57b66ed674858e79fced5d532dc5f9e1
+ - a3865485779a952832d68d9f1b166af8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3605,29 +3737,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -3657,8 +3789,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect Dojo link:* http://localhost:8080/finding/334
- (334)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect Dojo link:* http://localhost:8080/finding/348
+ (348)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -3695,21 +3827,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7026'
+ - '7028'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
string: ''
headers:
Atl-Request-Id:
- - 8e7c9385-a054-4662-87c9-8287f10e3569
+ - 315a583a-6445-420b-86e8-d45b6d4c02b1
Atl-Traceid:
- - 8e7c9385a054466287c98287f10e3569
+ - 315a583a6445420b86e8d45b6d4c02b1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3717,9 +3849,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:48 GMT
+ - Fri, 16 Jan 2026 21:01:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3727,7 +3859,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=502,atl-edge;dur=499,atl-edge-internal;dur=14,atl-edge-upstream;dur=485,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="QVUOgOELd7EJ6bQYIALtCkK2Oo0r4i_Fpl6NdiRqzB7ehDifoR4Esg==",cdn-downstream-fbl;dur=505
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=385,atl-edge-internal;dur=16,atl-edge-upstream;dur=369,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Q3nOl49NQckIOEd83Powop379zXfOtv3dgeJoNhq4HsGw_37r7VSDQ==",cdn-downstream-fbl;dur=414
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3735,19 +3867,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fd52efac0e72eb0d0b1148d8f877dd9e.cloudfront.net (CloudFront)
+ - 1.1 e1dbbcedf936fc7d0284466c9c65e78c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - QVUOgOELd7EJ6bQYIALtCkK2Oo0r4i_Fpl6NdiRqzB7ehDifoR4Esg==
+ - Q3nOl49NQckIOEd83Powop379zXfOtv3dgeJoNhq4HsGw_37r7VSDQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 12ed9b3356868138525a338c63212e38
+ - 0bfc1d449b158043e09ace9e902bab9d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3767,41 +3903,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -3831,9 +3967,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -3860,12 +3996,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - f1b5d42c-f548-4ff1-b597-e3a0a8875100
+ - 029b41da-f472-4d4d-885e-950affb9bd9a
Atl-Traceid:
- - f1b5d42cf5484ff1b597e3a0a8875100
+ - 029b41daf4724d4d885e950affb9bd9a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3875,9 +4011,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:49 GMT
+ - Fri, 16 Jan 2026 21:01:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3885,7 +4021,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=420,atl-edge;dur=418,atl-edge-internal;dur=15,atl-edge-upstream;dur=403,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="KU7Y9tFTSirttNGFtYzigvMOICNsoydwZcmVFK1FveUH3go2AC44HA==",cdn-downstream-fbl;dur=425
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=290,atl-edge;dur=268,atl-edge-internal;dur=15,atl-edge-upstream;dur=252,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="y8rPOec-t960gM4im6mmeV1MqySnL_E9jUeNySNTg_MBVAi4uJN2Qg==",cdn-downstream-fbl;dur=295
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3895,19 +4031,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e6e7ea42488c65b080113b45f9cdebb4.cloudfront.net (CloudFront)
+ - 1.1 185338419e21d148fae1747402a58e8a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - KU7Y9tFTSirttNGFtYzigvMOICNsoydwZcmVFK1FveUH3go2AC44HA==
+ - y8rPOec-t960gM4im6mmeV1MqySnL_E9jUeNySNTg_MBVAi4uJN2Qg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 933a99c2892029b5f6724e3400251c65
+ - 58a09694e5056ba2abd6f8f2a6076835
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3927,17 +4067,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:50.851+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:35.304+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 328c3cb9-ddec-45d6-9bcd-be19659a0b12
+ - 3aef6895-a247-4ec3-8e47-3307b1e44346
Atl-Traceid:
- - 328c3cb9ddec45d69bcdbe19659a0b12
+ - 3aef6895a2474ec38e473307b1e44346
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -3947,9 +4087,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:50 GMT
+ - Fri, 16 Jan 2026 21:01:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -3957,7 +4097,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=320,atl-edge-internal;dur=15,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="eSW8Xt63hxnIviKiBWiWuMrZdwdk5e49BJk3aT580j_olr1wfbUU-A==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=196,atl-edge;dur=173,atl-edge-internal;dur=14,atl-edge-upstream;dur=159,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="CtB2Wf3EL5icRJnHDcItuWaFL8snoMYU5qet_69TbGVL3hdW6Fcdgw==",cdn-downstream-fbl;dur=200
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -3967,19 +4107,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a7a7ee092ee4b4df82064022cbdb7e94.cloudfront.net (CloudFront)
+ - 1.1 a08d0c528a82de68a642b3996b12dc5e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - eSW8Xt63hxnIviKiBWiWuMrZdwdk5e49BJk3aT580j_olr1wfbUU-A==
+ - CtB2Wf3EL5icRJnHDcItuWaFL8snoMYU5qet_69TbGVL3hdW6Fcdgw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 7efdb6881ee61f9211cc42c65d1405f7
+ - af909a199356276e4e6860ea015f7874
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -3999,30 +4143,2575 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - fb8dcea4-d4eb-4b4e-9336-8574bc451556
+ Atl-Traceid:
+ - fb8dcea4d4eb4b4e93368574bc451556
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:35 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=298,atl-edge;dur=276,atl-edge-internal;dur=18,atl-edge-upstream;dur=257,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="TG3lXjIqfLmxQkPjUUVtc0XW6HfKVQFTjOfSK6Ft5Rvs8sFvkIhFlg==",cdn-downstream-fbl;dur=302
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 5dcf09eaf65257abe85ddc5988a25c4e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - TG3lXjIqfLmxQkPjUUVtc0XW6HfKVQFTjOfSK6Ft5Rvs8sFvkIhFlg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - df6445ad7c42c36a2ba2c2ea256aecfc
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - e52c0e7d-e343-4d5a-90a9-f7055345ece5
+ Atl-Traceid:
+ - e52c0e7de3434d5a90a9f7055345ece5
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:36 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=368,atl-edge;dur=345,atl-edge-internal;dur=22,atl-edge-upstream;dur=323,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="qv8xvy3th7-nsdVf00istF096tbynx8Z62i0tgHUxpCvIvvM4TQFHA==",cdn-downstream-fbl;dur=371
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 a827400055d7bbab6e387896737d4e50.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - qv8xvy3th7-nsdVf00istF096tbynx8Z62i0tgHUxpCvIvvM4TQFHA==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - d29d32df8128b940d751ce2c516c87ac
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect Dojo link:* http://localhost:8080/finding/348
+ (348)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - a5b4342c-33e4-4b12-83d0-7313e20d9eb3
+ Atl-Traceid:
+ - a5b4342c33e44b1283d07313e20d9eb3
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:36 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=430,atl-edge;dur=406,atl-edge-internal;dur=13,atl-edge-upstream;dur=392,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="cJvRaEyojPhRpUoL6pCQRGWSvz726fprkifEK2gq5fo1KEal-bP-iQ==",cdn-downstream-fbl;dur=436
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 d9978c4c79926d2f68f210859236f550.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - cJvRaEyojPhRpUoL6pCQRGWSvz726fprkifEK2gq5fo1KEal-bP-iQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 81e462f7803bd0739f7cb9c17d72f13d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 2f09f195-04be-455b-a9d4-6365fa20c46b
+ Atl-Traceid:
+ - 2f09f19504be455ba9d46365fa20c46b
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:37 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=281,atl-edge;dur=258,atl-edge-internal;dur=16,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="2603RoLeA8ctHD0BXr6Y624wpO4oXb1HV3Pmvm1d_jmZTsSGMvW6dw==",cdn-downstream-fbl;dur=285
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 78848e87583c98ba04111361257adc96.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 2603RoLeA8ctHD0BXr6Y624wpO4oXb1HV3Pmvm1d_jmZTsSGMvW6dw==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 0fe9162a3f02f18fe65f65ea025cae3a
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:37.362+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 42230075-a22f-426a-bb66-f86d85f2e11a
+ Atl-Traceid:
+ - 42230075a22f426abb66f86d85f2e11a
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:37 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=189,atl-edge;dur=166,atl-edge-internal;dur=14,atl-edge-upstream;dur=151,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="ezayOkujlp40NO9Hff655QE6y8Qc4Jo-pIYqaXBaWcY5QMCmnNN2NQ==",cdn-downstream-fbl;dur=193
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 786e78cb5cbe5eadde8b1e6951bf8a60.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - ezayOkujlp40NO9Hff655QE6y8Qc4Jo-pIYqaXBaWcY5QMCmnNN2NQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 3ece961b16a1acf55382e5f69d9b8fe6
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 0180f10b-658b-4da1-b950-8c6c14a8378a
+ Atl-Traceid:
+ - 0180f10b658b4da1b9508c6c14a8378a
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:37 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=341,atl-edge;dur=318,atl-edge-internal;dur=18,atl-edge-upstream;dur=300,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="4BVa2E6GFdoMuN-rkcOfiPW82Hmd3VI4JEr5HRgwLAQX_Qg7cItegg==",cdn-downstream-fbl;dur=344
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 e9b2affad5fcea678c9381d59c2d8e5c.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 4BVa2E6GFdoMuN-rkcOfiPW82Hmd3VI4JEr5HRgwLAQX_Qg7cItegg==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - b216c5aeff802b5bc3547972504bf58e
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - b2c9ed0d-9eb0-426a-99c1-76c0a720ac9e
+ Atl-Traceid:
+ - b2c9ed0d9eb0426a99c176c0a720ac9e
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:38 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=375,atl-edge;dur=351,atl-edge-internal;dur=16,atl-edge-upstream;dur=335,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Ga_QTa9KiZo7dk5-VYga50grcZOktuYiPdZMiWG9Pe_fnft0x16fnQ==",cdn-downstream-fbl;dur=379
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 2b6f0b2cd8495233ea20114fbb247772.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - Ga_QTa9KiZo7dk5-VYga50grcZOktuYiPdZMiWG9Pe_fnft0x16fnQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - dcf938af7c0c8ec7e925545b2318ebd8
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '2181'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - db1bf8df-0973-4110-aa6c-7ba5989a40ba
+ Atl-Traceid:
+ - db1bf8df09734110aa6c7ba5989a40ba
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:38 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=362,atl-edge;dur=338,atl-edge-internal;dur=16,atl-edge-upstream;dur=322,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="mrUPvAF0XZwKjzBPr531Sflcv2YH91zSetUTe5CZ31Pk8GupR9hTrA==",cdn-downstream-fbl;dur=365
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 fda672f0d6e472cdf596c05a64c6184e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - mrUPvAF0XZwKjzBPr531Sflcv2YH91zSetUTe5CZ31Pk8GupR9hTrA==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 062cd06f9508f31f12613a52d1cebbe2
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 21332fb3-f134-465c-86cd-39e87afeead6
+ Atl-Traceid:
+ - 21332fb3f134465c86cd39e87afeead6
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:39 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=295,atl-edge;dur=273,atl-edge-internal;dur=17,atl-edge-upstream;dur=255,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="kH28nnEAK1Z0dYYam6dFP5lpRepXLxTC-T8d1OVQmbQqhw3GTARIEQ==",cdn-downstream-fbl;dur=299
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 f919695384def1b11aac2656ceef40bc.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - kH28nnEAK1Z0dYYam6dFP5lpRepXLxTC-T8d1OVQmbQqhw3GTARIEQ==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 5d99771c17f031fe0d5b4f9df954543d
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:39.423+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - d1d42d6e-cb66-4319-8715-b242f73125c8
+ Atl-Traceid:
+ - d1d42d6ecb6643198715b242f73125c8
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:39 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=204,atl-edge;dur=180,atl-edge-internal;dur=18,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="ZlmJRy-2ceM6wB9VvYA5BByWjIahnCsRLBzwU-BzTZEx9UgCzT-lHQ==",cdn-downstream-fbl;dur=208
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 730d0b7e5f5de3b777d629325ecdb89c.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - ZlmJRy-2ceM6wB9VvYA5BByWjIahnCsRLBzwU-BzTZEx9UgCzT-lHQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 80d2334d230a9417ba0017e3b27ef236
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 4a15124a-3fa6-49fa-8b47-57d0588e07b3
+ Atl-Traceid:
+ - 4a15124a3fa649fa8b4757d0588e07b3
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:39 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=282,atl-edge;dur=257,atl-edge-internal;dur=16,atl-edge-upstream;dur=240,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="4tmb2_dYO2vfK5g_XrR9ArwmhGQ2gFJ3iA7T1NTyzlkAFshP3aY45g==",cdn-downstream-fbl;dur=286
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 163ba804bc3aef9b5b1ce185b475d852.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 4tmb2_dYO2vfK5g_XrR9ArwmhGQ2gFJ3iA7T1NTyzlkAFshP3aY45g==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 0e090862898a1059309b57c8371c52d4
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - bff35514-13f7-4ecf-b998-9aae84485ea1
+ Atl-Traceid:
+ - bff3551413f74ecfb9989aae84485ea1
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:40 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=408,atl-edge;dur=384,atl-edge-internal;dur=18,atl-edge-upstream;dur=366,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="RaOxuAW25LE5CUtxKZHJ00MXPlUK33NdjaZvM-xueoFUYOFIw6xBSw==",cdn-downstream-fbl;dur=411
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 382c1ac99264c38b9320835b20f5260e.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - RaOxuAW25LE5CUtxKZHJ00MXPlUK33NdjaZvM-xueoFUYOFIw6xBSw==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 5636445460b9484f41f57616597bd062
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '3558'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 97c7073e-d35d-4a94-a9c0-8fa7d93790f9
+ Atl-Traceid:
+ - 97c7073ed35d4a94a9c08fa7d93790f9
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:40 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=398,atl-edge-internal;dur=16,atl-edge-upstream;dur=381,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="OoYx52aMINoO76VuyyBc8019a7bCjyXvY_EPOy72wOVIFP0CVtw6cg==",cdn-downstream-fbl;dur=427
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 898cace407c8c555d5663d79cc4cc36a.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - OoYx52aMINoO76VuyyBc8019a7bCjyXvY_EPOy72wOVIFP0CVtw6cg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 66af9052ed82824e3934c5557ed119b8
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - d77212db-b296-4f97-be56-36f5aa4ce068
+ Atl-Traceid:
+ - d77212dbb2964f97be5636f5aa4ce068
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:41 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=305,atl-edge;dur=282,atl-edge-internal;dur=15,atl-edge-upstream;dur=267,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="JwEHcfftUndCxko9hGtC3_kPDWceOTIf3UXjt0Kb939Tn4KwzCffdw==",cdn-downstream-fbl;dur=309
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - JwEHcfftUndCxko9hGtC3_kPDWceOTIf3UXjt0Kb939Tn4KwzCffdw==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 8db02777c7fdb2ad10ad001cc76f3788
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:41.697+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 55110e0f-8cdc-4d4c-a0c6-bb3611b3273e
+ Atl-Traceid:
+ - 55110e0f8cdc4d4ca0c6bb3611b3273e
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:41 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=228,atl-edge;dur=205,atl-edge-internal;dur=14,atl-edge-upstream;dur=191,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="1NWJrbULX6nWpUwqBsLEi-gRUomnrVcBxIO-fVd_7u8f0vAYV27gCg==",cdn-downstream-fbl;dur=232
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 89771419757f75b08f6c8fd411f8ef54.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 1NWJrbULX6nWpUwqBsLEi-gRUomnrVcBxIO-fVd_7u8f0vAYV27gCg==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 28fed8a4aa718181a34b8b934b43f0ab
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 90f3e227-4f18-42bb-ab6b-9bba5d4f1d36
+ Atl-Traceid:
+ - 90f3e2274f1842bbab6b9bba5d4f1d36
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:42 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=447,atl-edge;dur=357,atl-edge-internal;dur=18,atl-edge-upstream;dur=339,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="8GGC-3N1v5jP5gfYTgnzWu3U1mVJiHmlrPKlCYzxtixLVA8IVA1YJA==",cdn-downstream-fbl;dur=452
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 4727c17386dca598865fa547bcafadfa.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 8GGC-3N1v5jP5gfYTgnzWu3U1mVJiHmlrPKlCYzxtixLVA8IVA1YJA==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - a1365907f33b07148f9a3586821db6f0
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - d85f1d12-f0ad-4fb6-9de3-dff3b7c710a2
+ Atl-Traceid:
+ - d85f1d12f0ad4fb69de3dff3b7c710a2
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:42 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=437,atl-edge;dur=415,atl-edge-internal;dur=18,atl-edge-upstream;dur=397,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Srmx3S8ADo17f_ggNAmMLtWo0K7H9EISgEI4ZZbIx1UpvYurMN38ow==",cdn-downstream-fbl;dur=441
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 6fc2d4bdda3d8efb927d086a87e8483e.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - Srmx3S8ADo17f_ggNAmMLtWo0K7H9EISgEI4ZZbIx1UpvYurMN38ow==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 4e7887bf9f2c6fad34d68d2b204a648a
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect Dojo link:* http://localhost:8080/finding/348
+ (348)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 23cde205-0805-4119-9531-5bba5bad4d56
+ Atl-Traceid:
+ - 23cde2050805411995315bba5bad4d56
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:43 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=631,atl-edge;dur=606,atl-edge-internal;dur=15,atl-edge-upstream;dur=591,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="3EwDB2sY5qqjxgM9DNcAy8Q_Cnb6GuDE4HjISYZOz9Oyfg1PU-ngyg==",cdn-downstream-fbl;dur=636
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 cf7db6af8b8a86ebeb9fc938221e81da.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 3EwDB2sY5qqjxgM9DNcAy8Q_Cnb6GuDE4HjISYZOz9Oyfg1PU-ngyg==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 2503e9ef7ef7aa19fcad044edfb0998b
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 4d7cc52a-9bda-4d65-8908-d255f68080d8
+ Atl-Traceid:
+ - 4d7cc52a9bda4d658908d255f68080d8
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:43 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=279,atl-edge;dur=256,atl-edge-internal;dur=16,atl-edge-upstream;dur=240,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="zXOSvQAQv2uysNEOFc6ZHSv1X4phCZ4Gz2YPwn787iknooPzF45MMQ==",cdn-downstream-fbl;dur=283
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 6fc2d4bdda3d8efb927d086a87e8483e.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - zXOSvQAQv2uysNEOFc6ZHSv1X4phCZ4Gz2YPwn787iknooPzF45MMQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 45fd1b2b645a8e0edda912c0188629a6
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:44.222+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 8120300c-8030-4666-9ca7-d8f0efc3c8a3
+ Atl-Traceid:
+ - 8120300c803046669ca7d8f0efc3c8a3
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:44 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=190,atl-edge;dur=167,atl-edge-internal;dur=15,atl-edge-upstream;dur=152,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="IFnIIl6zb_H7cxDPkxo4bH20Z6LKUfAnsWakB9uzRtBJejlUVmJtFQ==",cdn-downstream-fbl;dur=195
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 98d9402866aa771c6e6bbecb98c200aa.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - IFnIIl6zb_H7cxDPkxo4bH20Z6LKUfAnsWakB9uzRtBJejlUVmJtFQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 3ae82ff8e53b01ce75f9e6a3138f6b6e
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 1648ce0e-8ae6-4104-8537-cf804bbbcad8
+ Atl-Traceid:
+ - 1648ce0e8ae641048537cf804bbbcad8
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:44 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=298,atl-edge-internal;dur=19,atl-edge-upstream;dur=279,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="0FUfeIC0HTAsYHlPIszbfQb5cpJHgPbxHvtzm2qTJB4PjPdrfJhnog==",cdn-downstream-fbl;dur=325
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 ae2999d214179b68f3cdd080c9f4c304.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 0FUfeIC0HTAsYHlPIszbfQb5cpJHgPbxHvtzm2qTJB4PjPdrfJhnog==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - e7dbdffdefc91abcdd7feada6bae6c26
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 8807c6c3-0176-4924-95af-9fa8d3f9998d
+ Atl-Traceid:
+ - 8807c6c30176492495af9fa8d3f9998d
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:45 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=351,atl-edge;dur=329,atl-edge-internal;dur=18,atl-edge-upstream;dur=311,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="buL4pfOBYLEtwd2iquFPSXmzGAM_-bwSDD9b1edbrUJSEVq_C0iVTw==",cdn-downstream-fbl;dur=355
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 e9b2affad5fcea678c9381d59c2d8e5c.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - buL4pfOBYLEtwd2iquFPSXmzGAM_-bwSDD9b1edbrUJSEVq_C0iVTw==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - bfa970714206092296974fcbd75e6a49
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '2181'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - f4795509-f1d5-4968-a2b6-a36e3fa90936
+ Atl-Traceid:
+ - f4795509f1d54968a2b6a36e3fa90936
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:45 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=410,atl-edge;dur=386,atl-edge-internal;dur=32,atl-edge-upstream;dur=354,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="KPL48xe-QpzTiWNlLhB1w-JvetmJcJSsWi64BLlgHV9U8c1lK4cQ8g==",cdn-downstream-fbl;dur=415
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 3f8295ce0024dc68ca43a1b1a38c5bd6.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - KPL48xe-QpzTiWNlLhB1w-JvetmJcJSsWi64BLlgHV9U8c1lK4cQ8g==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 98b6a5f745f06ee878d539b67296fcdc
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -4031,12 +6720,206 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 3a29ffb1-6793-44ed-a1b8-74a8a302952f
+ Atl-Traceid:
+ - 3a29ffb1679344eda1b874a8a302952f
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:46 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=290,atl-edge;dur=268,atl-edge-internal;dur=16,atl-edge-upstream;dur=251,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="HQBm02Vnmh3NJQGkIwK7I8Ihw63mD5UlKkB1hbYHga9nGHXdVwxdjA==",cdn-downstream-fbl;dur=295
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 708370555615eac6a25379c04fbdd8ea.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - HQBm02Vnmh3NJQGkIwK7I8Ihw63mD5UlKkB1hbYHga9nGHXdVwxdjA==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 0283c7caf1cdf22c3c2ff6a73142b321
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:46.215+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - ab103b7f-4d46-423d-9d2b-10537b41a29b
+ Atl-Traceid:
+ - ab103b7f4d46423d9d2b10537b41a29b
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:46 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=199,atl-edge;dur=175,atl-edge-internal;dur=14,atl-edge-upstream;dur=161,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="oFlkCj5Y3Eu1PTsuHeuk50dqL9kd0VLHhyC0wH44QV8YC7K3mKgwPw==",cdn-downstream-fbl;dur=203
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 fca1997d98cd4ed3a56af08cac126fa6.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - oFlkCj5Y3Eu1PTsuHeuk50dqL9kd0VLHhyC0wH44QV8YC7K3mKgwPw==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - aea4dba339a6de7fa0827a24899614d3
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 230ed940-dbca-4792-9894-36238c2d1378
+ - 18facfcc-6a3e-457b-b3e5-d694870b4f9f
Atl-Traceid:
- - 230ed940dbca4792989436238c2d1378
+ - 18facfcc6a3e457bb3e5d694870b4f9f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4046,9 +6929,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:52 GMT
+ - Fri, 16 Jan 2026 21:01:46 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4056,7 +6939,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=442,atl-edge;dur=440,atl-edge-internal;dur=15,atl-edge-upstream;dur=425,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="te7VTwoVhMGu-Zj-LMsie7HmDuNVGsPXtnmU9ILPOOaCcXFBhKyfuA==",cdn-downstream-fbl;dur=446
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=310,atl-edge;dur=286,atl-edge-internal;dur=16,atl-edge-upstream;dur=271,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="p4Qn7J4GhpjOtur1exHekXKCS2Q0ZOBNoJxHArfcC6dAwjN21p_w3g==",cdn-downstream-fbl;dur=313
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4066,19 +6949,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 505047c0efc37a1900f1288c6f749f90.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - te7VTwoVhMGu-Zj-LMsie7HmDuNVGsPXtnmU9ILPOOaCcXFBhKyfuA==
+ - p4Qn7J4GhpjOtur1exHekXKCS2Q0ZOBNoJxHArfcC6dAwjN21p_w3g==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 8d541c812995c6a77de56dd054bace20
+ - 6aadf31c3df6a8153920c128085b7e41
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4098,7 +6985,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -4112,9 +6999,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 1807842a-c9c0-447d-a961-fd7e9a786f98
+ - 6b83dc2d-0aa2-4243-9910-82dab0c82fd4
Atl-Traceid:
- - 1807842ac9c0447da961fd7e9a786f98
+ - 6b83dc2d0aa24243991082dab0c82fd4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4124,9 +7011,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:53 GMT
+ - Fri, 16 Jan 2026 21:01:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4134,7 +7021,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=499,atl-edge;dur=498,atl-edge-internal;dur=15,atl-edge-upstream;dur=483,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="mpEz_HBzgoDfdsxNePQK1j7pXA5FR_h96hZFK8NG9P7kFogjE9Wq8g==",cdn-downstream-fbl;dur=503
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=328,atl-edge;dur=305,atl-edge-internal;dur=17,atl-edge-upstream;dur=287,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="PHSXf77CU84KxRwm3ZgFQ4kT3-rQCjFyJamlIEZiYlH-TQJpg3kZBg==",cdn-downstream-fbl;dur=332
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4144,22 +7031,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e575582c24a1bc95cd06311c3837a63a.cloudfront.net (CloudFront)
+ - 1.1 0e87c7138186d05e35dac8a520dc0682.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - mpEz_HBzgoDfdsxNePQK1j7pXA5FR_h96hZFK8NG9P7kFogjE9Wq8g==
+ - PHSXf77CU84KxRwm3ZgFQ4kT3-rQCjFyJamlIEZiYlH-TQJpg3kZBg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - be9cc3525a244f72c089ba3bb3fdd9d0
+ - 5a583deb07c0b15f11321f6557b2d562
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4167,28 +7058,43 @@ interactions:
message: OK
- request:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
- of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36] in [Security
- How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
- Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service when
- parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
headers:
Accept:
- application/json,*/*;q=0.9
@@ -4199,21 +7105,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2178'
+ - '3558'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: PUT
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
string: ''
headers:
Atl-Request-Id:
- - c0304cdf-db0d-49d9-be3c-cbbf69286355
+ - e4103509-b845-4876-b947-332432615fad
Atl-Traceid:
- - c0304cdfdb0d49d9be3ccbbf69286355
+ - e4103509b8454876b947332432615fad
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4221,9 +7127,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:55 GMT
+ - Fri, 16 Jan 2026 21:01:47 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4231,7 +7137,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=949,atl-edge;dur=943,atl-edge-internal;dur=15,atl-edge-upstream;dur=928,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="SKGPHI_YbElqdxeRA89QzAB2nfP219jmFTRImo-RLDsd7QfLAd7F3A==",cdn-downstream-fbl;dur=953
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=539,atl-edge;dur=514,atl-edge-internal;dur=15,atl-edge-upstream;dur=499,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="urLwYIAQqMgqVhBLACBbGRCJQ5qqHm-Pe-dVAHcGGwpRuSAT8KTlwA==",cdn-downstream-fbl;dur=544
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4239,19 +7145,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 43b4a9a8792e30ac49642ef84dd35fc8.cloudfront.net (CloudFront)
+ - 1.1 a70648d67d4a5a7f7eed7b14595ab4fe.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - SKGPHI_YbElqdxeRA89QzAB2nfP219jmFTRImo-RLDsd7QfLAd7F3A==
+ - urLwYIAQqMgqVhBLACBbGRCJQ5qqHm-Pe-dVAHcGGwpRuSAT8KTlwA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - 2c827ce7f4c99136c7b7c700f8dc39a2
+ - fa6f529a52101e2b86f4858fc8007157
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4271,44 +7181,59 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
- || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service
- when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
- or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 7f8890b2-30cb-4e14-a20b-d71e3e5c1a84
+ - cd5c251d-914b-4f47-bbfa-fa8f35e6c112
Atl-Traceid:
- - 7f8890b230cb4e14a20bd71e3e5c1a84
+ - cd5c251d914b4f47bbfafa8f35e6c112
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4318,9 +7243,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:56 GMT
+ - Fri, 16 Jan 2026 21:01:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4328,7 +7253,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=420,atl-edge;dur=417,atl-edge-internal;dur=16,atl-edge-upstream;dur=403,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="DvICQVpprm0nVxYLly1uO0DwKEr3UmN39uhL68xwTac1mZm1rxpqhg==",cdn-downstream-fbl;dur=423
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=341,atl-edge;dur=318,atl-edge-internal;dur=16,atl-edge-upstream;dur=302,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="EjMWyshIVqbRGum6MHCw7g-VTrHenRGoJf15o1ugpV9dxnbY-WUvAg==",cdn-downstream-fbl;dur=345
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4338,26 +7263,58 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8008f773a176223da2278b5cb39f91fa.cloudfront.net (CloudFront)
+ - 1.1 708370555615eac6a25379c04fbdd8ea.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - DvICQVpprm0nVxYLly1uO0DwKEr3UmN39uhL68xwTac1mZm1rxpqhg==
+ - EjMWyshIVqbRGum6MHCw7g-VTrHenRGoJf15o1ugpV9dxnbY-WUvAg==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - b450e8c1c7187df4e097b4f68c14bca1
+ - dbf99862e07e5349986a1a8fbb47367a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
code: 200
message: OK
- request:
- body: '"scan_added.tpl"'
+ body: '{"description": "Event scan_added_empty has occurred.", "title": "Created/Updated
+ 0 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
+ null, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/",
+ "product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
+ "url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
+ "Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
+ "http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
+ Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
+ "http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
+ 124, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/"},
+ "finding_count": 0, "findings": {"new": [], "reactivated": [], "mitigated":
+ [], "untouched": [{"id": 345, "title": "2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/345",
+ "url_api": "http://localhost:8080/api/v2/findings/345/"}, {"id": 346, "title":
+ "Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
+ || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
+ || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
+ "severity": "High", "url_ui": "http://localhost:8080/finding/346", "url_api":
+ "http://localhost:8080/api/v2/findings/346/"}, {"id": 344, "title": "Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
+ "url_ui": "http://localhost:8080/finding/344", "url_api": "http://localhost:8080/api/v2/findings/344/"},
+ {"id": 347, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/347", "url_api":
+ "http://localhost:8080/api/v2/findings/347/"}, {"id": 348, "title": "2222Remote
+ Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
+ 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
+ >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/348", "url_api":
+ "http://localhost:8080/api/v2/findings/348/"}]}}'
headers:
Accept:
- application/json
@@ -4368,11 +7325,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '16'
+ - '2384'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added_empty
X-DefectDojo-Instance:
@@ -4384,25 +7341,96 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"16\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2384\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added_empty\"\n ],\n \"X-Defectdojo-Instance\": [\n
\ \"http://localhost:8080\"\n ]\n },\n \"method\": \"POST\",\n \"origin\":
- \"10.250.1.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
- \"\\\"scan_added.tpl\\\"\",\n \"files\": {},\n \"form\": {},\n \"json\":
- \"scan_added.tpl\"\n}\n"
+ \"172.19.0.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
+ \"{\\\"description\\\": \\\"Event scan_added_empty has occurred.\\\", \\\"title\\\":
+ \\\"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\\\", \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\", \\\"product_type\\\":
+ {\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
+ {\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
+ {\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
+ \\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 124, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\"}, \\\"finding_count\\\":
+ 0, \\\"findings\\\": {\\\"new\\\": [], \\\"reactivated\\\": [], \\\"mitigated\\\":
+ [], \\\"untouched\\\": [{\\\"id\\\": 345, \\\"title\\\": \\\"2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"High\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/345\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/345/\\\"}, {\\\"id\\\": 346, \\\"title\\\":
+ \\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
+ < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
+ 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/346\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/346/\\\"},
+ {\\\"id\\\": 344, \\\"title\\\": \\\"Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/344\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/344/\\\"},
+ {\\\"id\\\": 347, \\\"title\\\": \\\"Regular Expression Denial of Service
+ - (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/347\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/347/\\\"},
+ {\\\"id\\\": 348, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
+ 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
+ < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/348\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/348/\\\"}]}}\",\n \"files\": {},\n
+ \ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added_empty
+ has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
+ \"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
+ \ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
+ 0,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [],\n \"reactivated\":
+ [],\n \"untouched\": [\n {\n \"id\": 345,\n \"severity\":
+ \"High\",\n \"title\": \"2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/345/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/345\"\n },\n
+ \ {\n \"id\": 346,\n \"severity\": \"High\",\n \"title\":
+ \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 <
+ 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0
+ < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >=
+ 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/346/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/346\"\n },\n
+ \ {\n \"id\": 344,\n \"severity\": \"Medium\",\n \"title\":
+ \"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/findings/344/\",\n \"url_ui\": \"http://localhost:8080/finding/344\"\n
+ \ },\n {\n \"id\": 347,\n \"severity\": \"Medium\",\n
+ \ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/347/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/347\"\n },\n {\n \"id\":
+ 348,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
+ >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
+ || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/348/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/348\"\n }\n ]\n
+ \ },\n \"product\": {\n \"id\": 2,\n \"name\": \"Security How-to\",\n
+ \ \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\":
+ \"http://localhost:8080/product/2\"\n },\n \"product_type\": {\n \"id\":
+ 2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
+ \ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
+ {\n \"id\": 124,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/124\"\n },\n \"title\":
+ \"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/124\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
Access-Control-Allow-Origin:
- '*'
- Content-Length:
- - '732'
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:12:56 GMT
+ - Fri, 16 Jan 2026 21:01:48 GMT
+ Transfer-Encoding:
+ - chunked
status:
code: 200
message: OK
@@ -4420,17 +7448,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:12:57.944+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:48.377+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - e6c12730-e67d-41a5-a0de-76f4a28c382b
+ - d7ddf760-f8c2-46d3-8c19-159f11dfa588
Atl-Traceid:
- - e6c12730e67d41a5a0de76f4a28c382b
+ - d7ddf760f8c246d38c19159f11dfa588
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4440,9 +7468,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:58 GMT
+ - Fri, 16 Jan 2026 21:01:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4450,7 +7478,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=318,atl-edge;dur=315,atl-edge-internal;dur=13,atl-edge-upstream;dur=302,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="2it0GYY8tMctcxfsLidw-_bXjuneg31ipBlV1ma9bhIeYckF0zi4oA==",cdn-downstream-fbl;dur=320
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=209,atl-edge;dur=185,atl-edge-internal;dur=15,atl-edge-upstream;dur=167,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="DDarAY_8_kP-5NVXfACePllb1mJVtAbIc-wqLaroKHA2g18mW3MOuA==",cdn-downstream-fbl;dur=212
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4460,19 +7488,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f5bc0d54a76b57b6f435f98d3e741ea4.cloudfront.net (CloudFront)
+ - 1.1 acc243f78de7eeb0f922e11bff25a22a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 2it0GYY8tMctcxfsLidw-_bXjuneg31ipBlV1ma9bhIeYckF0zi4oA==
+ - DDarAY_8_kP-5NVXfACePllb1mJVtAbIc-wqLaroKHA2g18mW3MOuA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - 1cb19318024cb051cf186c45554a391c
+ - 88efebb2a7a89536d815b03ac9b86222
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4492,32 +7524,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4527,9 +7559,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -4539,12 +7571,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 40a89966-6a26-413b-b739-8e327907694d
+ - ad0c5733-920d-4c85-bcae-437cc357eb05
Atl-Traceid:
- - 40a899666a26413bb7398e327907694d
+ - ad0c5733920d4c85bcae437cc357eb05
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4554,9 +7586,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:12:59 GMT
+ - Fri, 16 Jan 2026 21:01:48 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4564,7 +7596,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=409,atl-edge;dur=403,atl-edge-internal;dur=18,atl-edge-upstream;dur=385,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="oeG2l106VThRsIXcv-Os6PR6dEGOoB1eqgd2AfEd9d5tugStmvXaKw==",cdn-downstream-fbl;dur=413
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=326,atl-edge;dur=303,atl-edge-internal;dur=19,atl-edge-upstream;dur=283,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="g4C2ulU3R5lpBE_zTb3cqdmqV8j6th0nhBMB9P2IzRNGqGcwSBtm-g==",cdn-downstream-fbl;dur=330
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4574,19 +7606,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 212ddd6c8eb82cf3007eedad5f05dca8.cloudfront.net (CloudFront)
+ - 1.1 43eacc46a8d7338068c3e681a16f62be.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - oeG2l106VThRsIXcv-Os6PR6dEGOoB1eqgd2AfEd9d5tugStmvXaKw==
+ - g4C2ulU3R5lpBE_zTb3cqdmqV8j6th0nhBMB9P2IzRNGqGcwSBtm-g==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - a914d653cf4abc7e704eda79266ef0f8
+ - c349c6e288170fd767abb71b853fd41b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4606,17 +7642,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:00.434+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:49.089+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - d30bbef3-df17-4a63-af4a-ca1baea18fa1
+ - 8403f873-b9e6-47b9-a75b-efc3172fe393
Atl-Traceid:
- - d30bbef3df174a63af4aca1baea18fa1
+ - 8403f873b9e647b9a75befc3172fe393
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4626,9 +7662,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:00 GMT
+ - Fri, 16 Jan 2026 21:01:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4636,7 +7672,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=320,atl-edge-internal;dur=15,atl-edge-upstream;dur=305,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="Cpsa79NqnBbp56a9cfpWrImYYbL2XcANeocpsmO9ABRoli8Qfpl5GA==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=271,atl-edge;dur=183,atl-edge-internal;dur=14,atl-edge-upstream;dur=168,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="qa9eJ-TCKi2D-_7dV-9ILg3G7jSvyswTQ5035dDb3RGE_dJlaib4hw==",cdn-downstream-fbl;dur=274
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4646,19 +7682,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ddbdc753f03fb9542b090928fc2d074a.cloudfront.net (CloudFront)
+ - 1.1 3f8295ce0024dc68ca43a1b1a38c5bd6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Cpsa79NqnBbp56a9cfpWrImYYbL2XcANeocpsmO9ABRoli8Qfpl5GA==
+ - qa9eJ-TCKi2D-_7dV-9ILg3G7jSvyswTQ5035dDb3RGE_dJlaib4hw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - b05d850d764bbe1ebae69399d5a802b3
+ - 774bde096f75ba66346fa63db91c24b8
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '348'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4678,41 +7718,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -4742,9 +7782,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -4771,12 +7811,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4a850f0f-3d19-4e3d-bc5e-0bad673d8987
+ - 957b1519-66d3-4685-a5bc-274624d2bec4
Atl-Traceid:
- - 4a850f0f3d194e3dbc5e0bad673d8987
+ - 957b151966d34685a5bc274624d2bec4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4786,9 +7826,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:01 GMT
+ - Fri, 16 Jan 2026 21:01:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4796,7 +7836,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=417,atl-edge;dur=415,atl-edge-internal;dur=15,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="nEfqgi4uerHzXLBwtdhNAhzGruiGrXVvq3M0vy8BmwaQPYY1GgvXyw==",cdn-downstream-fbl;dur=420
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=283,atl-edge;dur=260,atl-edge-internal;dur=19,atl-edge-upstream;dur=241,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="dhUHrQVX4WUM4ioUAfa5b07sIvZhCJViZD-p3C2ZBLCf5eTIpxUAUw==",cdn-downstream-fbl;dur=287
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4806,19 +7846,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0d87c721c7b25d6fef7d75bbb22d3468.cloudfront.net (CloudFront)
+ - 1.1 1a5bcf25cf6144683736a6579a7fb98e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - nEfqgi4uerHzXLBwtdhNAhzGruiGrXVvq3M0vy8BmwaQPYY1GgvXyw==
+ - dhUHrQVX4WUM4ioUAfa5b07sIvZhCJViZD-p3C2ZBLCf5eTIpxUAUw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P2
X-Arequestid:
- - 7aba3d2a0d28d1216c26aa7be355a894
+ - 586a03da605457effb1ef7a345dc32d9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4838,17 +7882,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:02.903+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:49.737+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 82b8032e-3778-499c-9e90-b7428e4d6d9a
+ - 4a86dd32-cdfb-418e-abef-8218952dc644
Atl-Traceid:
- - 82b8032e3778499c9e90b7428e4d6d9a
+ - 4a86dd32cdfb418eabef8218952dc644
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -4858,9 +7902,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:03 GMT
+ - Fri, 16 Jan 2026 21:01:49 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -4868,7 +7912,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=321,atl-edge;dur=319,atl-edge-internal;dur=14,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="YjF89f3rCKBDwnmpW4P8VBx2-z9OZKIMmJC7EzKZRdzEPsLa1qZ7kA==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=205,atl-edge;dur=182,atl-edge-internal;dur=16,atl-edge-upstream;dur=162,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="Y9V3Cv6Gzmys-n0q2ikBd6HUB6_6BxunwM5K75GBVRV7xTvJmCwp8A==",cdn-downstream-fbl;dur=209
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -4878,19 +7922,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e6e7ea42488c65b080113b45f9cdebb4.cloudfront.net (CloudFront)
+ - 1.1 3dc4c80cd959e984309833cac8f5a630.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - YjF89f3rCKBDwnmpW4P8VBx2-z9OZKIMmJC7EzKZRdzEPsLa1qZ7kA==
+ - Y9V3Cv6Gzmys-n0q2ikBd6HUB6_6BxunwM5K75GBVRV7xTvJmCwp8A==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - 68afb039a45bcd47def46df7c803412d
+ - ada8d897fa8be186daef3cd7185ab17c
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '347'
X-Xss-Protection:
- 1; mode=block
status:
@@ -4910,41 +7958,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21308
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24924
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21308","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308","key":"NTEST-3129","fields":{"statuscategorychangedate":"2025-07-25T21:12:12.081+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24924","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924","key":"NTEST-3209","fields":{"statuscategorychangedate":"2026-01-16T22:01:23.124+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3129/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:11.797+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hz:","updated":"2025-07-25T21:12:11.888+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3209/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:22.758+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kf:","updated":"2026-01-16T22:01:22.881+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/35]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/104]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/332]\n*Defect
- Dojo link:* http://localhost:8080/finding/332 (332)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/346]\n*Defect
+ Dojo link:* http://localhost:8080/finding/346 (346)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -4974,9 +8022,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/334]\n*Defect
- Dojo link:* http://localhost:8080/finding/334 (334)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/348]\n*Defect
+ Dojo link:* http://localhost:8080/finding/348 (348)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -5003,12 +8051,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21308/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24924/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c3db35b0-6e64-4ab0-b112-660a3cb9e759
+ - 61323c21-e629-4f2c-a911-7c40177f961e
Atl-Traceid:
- - c3db35b06e644ab0b112660a3cb9e759
+ - 61323c21e6294f2ca9117c40177f961e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5018,9 +8066,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:04 GMT
+ - Fri, 16 Jan 2026 21:01:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5028,7 +8076,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=421,atl-edge;dur=419,atl-edge-internal;dur=15,atl-edge-upstream;dur=404,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="11ChwwI0xUS1jbTVul9uUdGX8S3qa8KVDZnYSzT9ngTPbWvBGnZZoQ==",cdn-downstream-fbl;dur=425
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=313,atl-edge;dur=289,atl-edge-internal;dur=17,atl-edge-upstream;dur=272,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="rnh_eeqvvgcUajjUKpN_iHQZNnb5s_RqzjnZKUg5Y3h3mWzigLds6g==",cdn-downstream-fbl;dur=317
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5038,19 +8086,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 ebc52833900e41e6796b998a5877893e.cloudfront.net (CloudFront)
+ - 1.1 61ea521c913b8f6dbadaa96ecbb825ec.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 11ChwwI0xUS1jbTVul9uUdGX8S3qa8KVDZnYSzT9ngTPbWvBGnZZoQ==
+ - rnh_eeqvvgcUajjUKpN_iHQZNnb5s_RqzjnZKUg5Y3h3mWzigLds6g==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P3
X-Arequestid:
- - 16d0685ff66b400b0055acb665f36f12
+ - de85bf0f116987495ece7197959fe756
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '396'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5070,17 +8122,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:05.375+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:50.454+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - a55f21fa-17ef-4ac8-bae3-48e56cd3c890
+ - 1896c507-d2af-4c75-89c0-d41f51230abd
Atl-Traceid:
- - a55f21fa17ef4ac8bae348e56cd3c890
+ - 1896c507d2af4c7589c0d41f51230abd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5090,9 +8142,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:05 GMT
+ - Fri, 16 Jan 2026 21:01:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5100,7 +8152,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=319,atl-edge;dur=317,atl-edge-internal;dur=12,atl-edge-upstream;dur=305,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="ivx11TwO94fQdzlT7Qk-7_L5YkWyj8JtX7LDYxJdNDq6o3x7T719wA==",cdn-downstream-fbl;dur=323
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=206,atl-edge;dur=183,atl-edge-internal;dur=14,atl-edge-upstream;dur=169,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="f__DbRG0LODuP2tJJSrexmLyiL9icuKOaHIXhuwUagAPzfrqqQj0Tg==",cdn-downstream-fbl;dur=210
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5110,19 +8162,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b862c6b18a44c823dd40d8d760097ee2.cloudfront.net (CloudFront)
+ - 1.1 3dc4c80cd959e984309833cac8f5a630.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ivx11TwO94fQdzlT7Qk-7_L5YkWyj8JtX7LDYxJdNDq6o3x7T719wA==
+ - f__DbRG0LODuP2tJJSrexmLyiL9icuKOaHIXhuwUagAPzfrqqQj0Tg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 372e262ecee395ee0d07a209602da129
+ - be7295daffa11a86d7e967791378ae2d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '346'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5142,30 +8198,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21309
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24925
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21309","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309","key":"NTEST-3130","fields":{"statuscategorychangedate":"2025-07-25T21:12:18.947+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24925","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925","key":"NTEST-3210","fields":{"statuscategorychangedate":"2026-01-16T22:01:25.772+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3130/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:18.662+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012i7:","updated":"2025-07-25T21:12:18.726+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3210/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:25.479+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kn:","updated":"2026-01-16T22:01:25.574+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/36]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/105]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/333]\n*Defect
- Dojo link:* http://localhost:8080/finding/333 (333)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/347]\n*Defect
+ Dojo link:* http://localhost:8080/finding/347 (347)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -5174,12 +8230,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21309/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24925/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 0e450251-f60a-444d-a469-57e0e6056b7c
+ - 9ab7bf91-fcdf-4f49-901d-563be03683a8
Atl-Traceid:
- - 0e450251f60a444da46957e0e6056b7c
+ - 9ab7bf91fcdf4f49901d563be03683a8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5189,9 +8245,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:06 GMT
+ - Fri, 16 Jan 2026 21:01:50 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5199,7 +8255,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=410,atl-edge;dur=408,atl-edge-internal;dur=16,atl-edge-upstream;dur=392,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="lgizusNkPjo7IcIgYyeRLezW4ZXFI1gt_JQGxYA3S1xy70whPdRnvw==",cdn-downstream-fbl;dur=414
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=315,atl-edge;dur=292,atl-edge-internal;dur=13,atl-edge-upstream;dur=278,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="vNO7X9n-dAPjXFyFu2oVjOwN-JE4_154rnck0v9KNplKMhD1Skq_gA==",cdn-downstream-fbl;dur=319
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5209,19 +8265,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 900141041f08038f9452e4f1a092ecd2.cloudfront.net (CloudFront)
+ - 1.1 a2d53e5681632128f329f3657122d00e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - lgizusNkPjo7IcIgYyeRLezW4ZXFI1gt_JQGxYA3S1xy70whPdRnvw==
+ - vNO7X9n-dAPjXFyFu2oVjOwN-JE4_154rnck0v9KNplKMhD1Skq_gA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 630c53c8ab8d037689e8ffcc244170a2
+ - 0220e7b52fc332f8db8dac11a63e56a4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '395'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5241,17 +8301,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:07.825+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:51.238+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 1a5877aa-c451-429e-a5e5-fb28191048e7
+ - aa795038-aace-4e24-954d-f8c642b694f1
Atl-Traceid:
- - 1a5877aac451429ea5e5fb28191048e7
+ - aa795038aace4e24954df8c642b694f1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5261,9 +8321,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:07 GMT
+ - Fri, 16 Jan 2026 21:01:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5271,7 +8331,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=324,atl-edge;dur=321,atl-edge-internal;dur=15,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="G_2ZYEt29-67qYSA1_qaUWMAzP5ssnqJVB5eZpTCCuIUhXhuP8r7uw==",cdn-downstream-fbl;dur=328
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=296,atl-edge;dur=205,atl-edge-internal;dur=18,atl-edge-upstream;dur=185,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="zafxXeDvzHumf1l-gEYYWsDmzHxYYM45EG4aTKMPj8fkNkqMlC1ahA==",cdn-downstream-fbl;dur=301
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5281,19 +8341,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 adb4605fb7528573053aec50d6f562c8.cloudfront.net (CloudFront)
+ - 1.1 0d46192046615c37e895cbabe89b2382.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - G_2ZYEt29-67qYSA1_qaUWMAzP5ssnqJVB5eZpTCCuIUhXhuP8r7uw==
+ - zafxXeDvzHumf1l-gEYYWsDmzHxYYM45EG4aTKMPj8fkNkqMlC1ahA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P2
X-Arequestid:
- - 9cf4f82f960bf2e1c8840d34387c394f
+ - 76931450508b01354ac2fe4c9a4401d4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '345'
X-Xss-Protection:
- 1; mode=block
status:
@@ -5313,32 +8377,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21307
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24923
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21307","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307","key":"NTEST-3128","fields":{"statuscategorychangedate":"2025-07-25T21:12:05.083+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24923","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923","key":"NTEST-3208","fields":{"statuscategorychangedate":"2026-01-16T22:01:19.834+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3128/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:12:04.857+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012hr:","updated":"2025-07-25T21:12:04.941+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3208/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:19.416+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014k7:","updated":"2026-01-16T22:01:19.550+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/34]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/103]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/119]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/331]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/345]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/331]\n*Defect Dojo link:* http://localhost:8080/finding/331
- (331)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/345]\n*Defect Dojo link:* http://localhost:8080/finding/345
+ (345)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5348,9 +8412,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/330]\n*Defect
- Dojo link:* http://localhost:8080/finding/330 (330)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/344]\n*Defect
+ Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -5360,12 +8424,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21307/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24923/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 7133150d-8af5-46e5-be8d-85022ec2d526
+ - fb3aa0b5-1b07-488d-8d8a-8d4df0e46247
Atl-Traceid:
- - 7133150d8af546e5be8d85022ec2d526
+ - fb3aa0b51b07488d8d8a8d4df0e46247
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -5375,9 +8439,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:09 GMT
+ - Fri, 16 Jan 2026 21:01:51 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -5385,7 +8449,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=410,atl-edge;dur=408,atl-edge-internal;dur=15,atl-edge-upstream;dur=393,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="YcNd3eVZaVM2qk-HWajUsMfFwP4gXeeuYVoRMNMhIWx4pZMYZgvpRA==",cdn-downstream-fbl;dur=414
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=362,atl-edge;dur=339,atl-edge-internal;dur=19,atl-edge-upstream;dur=319,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="QQku1WeWRWAov9eiNxW5sThqaU36epE2uTn6aWbdqp8pEqBdbePVtg==",cdn-downstream-fbl;dur=365
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -5395,19 +8459,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1646a7b70ef690faac638f9c1dd2364.cloudfront.net (CloudFront)
+ - 1.1 ce431f517854de6a993633b3607e3d06.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - YcNd3eVZaVM2qk-HWajUsMfFwP4gXeeuYVoRMNMhIWx4pZMYZgvpRA==
+ - QQku1WeWRWAov9eiNxW5sThqaU36epE2uTn6aWbdqp8pEqBdbePVtg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - 9699683b3168352d0cf376d374ab4d9d
+ - 976d173e19f8cf690c297218283ff2c4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '394'
X-Xss-Protection:
- 1; mode=block
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_with_push_to_jira.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_with_push_to_jira.yaml
index 534b73e70a5..54e9d301a51 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_with_push_to_jira.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_no_push_to_jira_reimport_with_push_to_jira.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/120", "url_api": "http://localhost:8080/api/v2/tests/120/",
+ "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 120, "url_ui": "http://localhost:8080/test/120", "url_api": "http://localhost:8080/api/v2/tests/120/"}}'
+ 125, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/"}}'
headers:
Accept:
- application/json
@@ -24,7 +24,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -38,22 +38,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/120\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/120/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/125/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 120, \\\"url_ui\\\": \\\"http://localhost:8080/test/120\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/120/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 125, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 120,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/120/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/120\"\n },\n \"title\":
+ 125,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/125\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/120/\",\n \"url_ui\":
- \"http://localhost:8080/test/120\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n \"url_ui\":
+ \"http://localhost:8080/test/125\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:09 GMT
+ - Fri, 16 Jan 2026 21:01:51 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/120", "url_api": "http://localhost:8080/api/v2/tests/120/",
+ null, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 120, "url_ui": "http://localhost:8080/test/120", "url_api": "http://localhost:8080/api/v2/tests/120/"},
- "finding_count": 5, "findings": {"new": [{"id": 336, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/336",
- "url_api": "http://localhost:8080/api/v2/findings/336/"}, {"id": 337, "title":
+ 125, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/"},
+ "finding_count": 5, "findings": {"new": [{"id": 350, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/350",
+ "url_api": "http://localhost:8080/api/v2/findings/350/"}, {"id": 351, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/337", "url_api":
- "http://localhost:8080/api/v2/findings/337/"}, {"id": 335, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/351", "url_api":
+ "http://localhost:8080/api/v2/findings/351/"}, {"id": 349, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/335", "url_api": "http://localhost:8080/api/v2/findings/335/"},
- {"id": 338, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/338", "url_api":
- "http://localhost:8080/api/v2/findings/338/"}, {"id": 339, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/349", "url_api": "http://localhost:8080/api/v2/findings/349/"},
+ {"id": 352, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/352", "url_api":
+ "http://localhost:8080/api/v2/findings/352/"}, {"id": 353, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/339", "url_api":
- "http://localhost:8080/api/v2/findings/339/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/353", "url_api":
+ "http://localhost:8080/api/v2/findings/353/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -126,7 +126,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -140,82 +140,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/120\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/120/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 120, \\\"url_ui\\\": \\\"http://localhost:8080/test/120\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/120/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 336, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 125, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 350, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/336\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/336/\\\"}, {\\\"id\\\": 337, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/350\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/350/\\\"}, {\\\"id\\\": 351, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/337\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/337/\\\"},
- {\\\"id\\\": 335, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/351\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/351/\\\"},
+ {\\\"id\\\": 349, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/335\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/335/\\\"},
- {\\\"id\\\": 338, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/349\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/349/\\\"},
+ {\\\"id\\\": 352, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/338\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/338/\\\"},
- {\\\"id\\\": 339, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/352\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/352/\\\"},
+ {\\\"id\\\": 353, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/339\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/339/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/353\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/353/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 336,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 350,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/336/\",\n \"url_ui\": \"http://localhost:8080/finding/336\"\n
- \ },\n {\n \"id\": 337,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/350/\",\n \"url_ui\": \"http://localhost:8080/finding/350\"\n
+ \ },\n {\n \"id\": 351,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/337/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/337\"\n },\n
- \ {\n \"id\": 335,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/351/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/351\"\n },\n
+ \ {\n \"id\": 349,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/335/\",\n \"url_ui\": \"http://localhost:8080/finding/335\"\n
- \ },\n {\n \"id\": 338,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/349/\",\n \"url_ui\": \"http://localhost:8080/finding/349\"\n
+ \ },\n {\n \"id\": 352,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/338/\",\n \"url_ui\":
- \"http://localhost:8080/finding/338\"\n },\n {\n \"id\":
- 339,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/352/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/352\"\n },\n {\n \"id\":
+ 353,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/339/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/339\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/353/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/353\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 120,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/120/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/120\"\n },\n \"title\":
+ 125,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/125\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/120/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/120\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/125\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -225,7 +225,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:09 GMT
+ - Fri, 16 Jan 2026 21:01:51 GMT
Transfer-Encoding:
- chunked
status:
@@ -245,17 +245,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:11.022+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:52.220+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 9f397399-509e-4579-945a-27164c6ac2cb
+ - 59be8f46-149b-4468-994f-57749f7013fe
Atl-Traceid:
- - 9f397399509e4579945a27164c6ac2cb
+ - 59be8f46149b4468994f57749f7013fe
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -265,9 +265,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:11 GMT
+ - Fri, 16 Jan 2026 21:01:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -275,7 +275,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=364,atl-edge;dur=359,atl-edge-internal;dur=13,atl-edge-upstream;dur=346,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="sJroFTbD-oAbGD5nmO9BC-8mkxU-dKo14XS-AT6pfUQr7-qVCdeMHQ==",cdn-downstream-fbl;dur=367
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=228,atl-edge;dur=205,atl-edge-internal;dur=14,atl-edge-upstream;dur=191,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="4hBGVWkhBHRGoI9gECx-TzN-QF96sSNuVVkvhaJx3y6VbNGh_KdvOg==",cdn-downstream-fbl;dur=232
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -285,19 +285,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 bafb3fcfb450000b354db6fbbd3d2828.cloudfront.net (CloudFront)
+ - 1.1 cf7db6af8b8a86ebeb9fc938221e81da.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sJroFTbD-oAbGD5nmO9BC-8mkxU-dKo14XS-AT6pfUQr7-qVCdeMHQ==
+ - 4hBGVWkhBHRGoI9gECx-TzN-QF96sSNuVVkvhaJx3y6VbNGh_KdvOg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - a831e9b473c84499221e65eaf6a5e227
+ - 1c18c28735cc447c4647e04c6e429348
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '344'
X-Xss-Protection:
- 1; mode=block
status:
@@ -317,7 +321,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -331,9 +335,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - d3855f35-6124-438a-86f3-963d8bb6dde8
+ - 73d0e424-f9ef-43dc-8fdb-fa824294b1b5
Atl-Traceid:
- - d3855f356124438a86f3963d8bb6dde8
+ - 73d0e424f9ef43dc8fdbfa824294b1b5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -343,9 +347,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:12 GMT
+ - Fri, 16 Jan 2026 21:01:52 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -353,7 +357,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=469,atl-edge;dur=467,atl-edge-internal;dur=17,atl-edge-upstream;dur=450,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="-QnrCnfMTCUBvZm9izgAghv25NXWJclJb519Q-BGbAuSxG23jsAj8A==",cdn-downstream-fbl;dur=473
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=489,atl-edge;dur=466,atl-edge-internal;dur=19,atl-edge-upstream;dur=446,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="WfHjCfdxzODF7gzKCbYPec4Zs7ewYFE85h60k2w55-icCWHMuSA8eA==",cdn-downstream-fbl;dur=493
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -363,22 +367,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f10eedb52fc0d82204e85d20112deafa.cloudfront.net (CloudFront)
+ - 1.1 6d3c3e0af3263a7b3c6878f2fa9bbff6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - -QnrCnfMTCUBvZm9izgAghv25NXWJclJb519Q-BGbAuSxG23jsAj8A==
+ - WfHjCfdxzODF7gzKCbYPec4Zs7ewYFE85h60k2w55-icCWHMuSA8eA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - 67ded8a6028c8bce0e3f462bb40f235d
+ - b68fa934a8ba988d842e896c9f0c68ad
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -388,20 +396,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/336]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/336]\n*Defect Dojo link:* http://localhost:8080/finding/336
- (336)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -411,9 +419,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]\n*Defect
- Dojo link:* http://localhost:8080/finding/335 (335)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -433,21 +441,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21310","key":"NTEST-3131","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21310"}'
+ string: '{"id":"24926","key":"NTEST-3211","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926"}'
headers:
Atl-Request-Id:
- - 39d8a38e-263c-4714-8812-a35168e4a2f0
+ - b88e836b-0eb6-45b1-83e0-918196411d96
Atl-Traceid:
- - 39d8a38e263c47148812a35168e4a2f0
+ - b88e836b0eb645b183e0918196411d96
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -455,9 +463,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:14 GMT
+ - Fri, 16 Jan 2026 21:01:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -465,7 +473,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=907,atl-edge;dur=905,atl-edge-internal;dur=13,atl-edge-upstream;dur=892,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="aL6HkoNowyCRYAnpODM8EQHxTlKKXDybGHp-kUMWyoil-E2NllYUOg==",cdn-downstream-fbl;dur=910
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1100,atl-edge;dur=1075,atl-edge-internal;dur=20,atl-edge-upstream;dur=1055,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="S4EY-7_8A-Mj-K3ekruUfEI9_08H7VxztQnuiZeUuHxT2Ch_pZ-4_Q==",cdn-downstream-fbl;dur=1105
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -475,19 +483,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 af9df879c48ca18a8b67eda7edecc4a4.cloudfront.net (CloudFront)
+ - 1.1 93a2323067b2c60f3b86c822765cf3d2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - aL6HkoNowyCRYAnpODM8EQHxTlKKXDybGHp-kUMWyoil-E2NllYUOg==
+ - S4EY-7_8A-Mj-K3ekruUfEI9_08H7VxztQnuiZeUuHxT2Ch_pZ-4_Q==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 8f2aad3ef28f5f306e756c9179114959
+ - 289c27fc01a05cef10c185f3fea0c130
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -507,32 +519,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3131
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21310","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21310","key":"NTEST-3131","fields":{"statuscategorychangedate":"2025-07-25T21:13:14.067+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3131/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3131/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:13.861+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012if:","updated":"2025-07-25T21:13:13.946+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/336]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/336]\n*Defect Dojo link:* http://localhost:8080/finding/336
- (336)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -542,9 +554,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]\n*Defect
- Dojo link:* http://localhost:8080/finding/335 (335)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -554,12 +566,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21310/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 7f86af73-ea0a-49f0-a15c-6f27ae73666d
+ - 205a6265-a760-4c3f-a871-4a95c4140a83
Atl-Traceid:
- - 7f86af73ea0a49f0a15c6f27ae73666d
+ - 205a6265a7604c3fa8714a95c4140a83
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -569,9 +581,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:15 GMT
+ - Fri, 16 Jan 2026 21:01:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -579,7 +591,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=405,atl-edge;dur=404,atl-edge-internal;dur=15,atl-edge-upstream;dur=388,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="ZvEiT325ImL9AcDFddpIZIqCqfxaMtC9IIJqDY5jKR8KDh3ij7bzQw==",cdn-downstream-fbl;dur=408
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=290,atl-edge;dur=259,atl-edge-internal;dur=22,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="6QRnDq2_UPnLfSGhlo1xyfNQDfh1zCsQysRMicicJurxPUlaP-zMVQ==",cdn-downstream-fbl;dur=294
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -589,19 +601,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3d94c83b729a96791b0c271c930b1b6e.cloudfront.net (CloudFront)
+ - 1.1 939f768b06599c7357e62de464fd9a12.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - ZvEiT325ImL9AcDFddpIZIqCqfxaMtC9IIJqDY5jKR8KDh3ij7bzQw==
+ - 6QRnDq2_UPnLfSGhlo1xyfNQDfh1zCsQysRMicicJurxPUlaP-zMVQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 64d0e0f8d57c2cd87e0339bc915d0ff4
+ - c049fef597bc7c3417b970e12bd549c5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -621,32 +637,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21310
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21310","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21310","key":"NTEST-3131","fields":{"statuscategorychangedate":"2025-07-25T21:13:14.067+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3131/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3131/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:13.861+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012if:","updated":"2025-07-25T21:13:13.946+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/37]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/336]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/336]\n*Defect Dojo link:* http://localhost:8080/finding/336
- (336)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -656,9 +672,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/335]\n*Defect
- Dojo link:* http://localhost:8080/finding/335 (335)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -668,12 +684,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21310/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - bce7ef45-5752-47a2-bb4b-41842063c534
+ - 51c07a71-a5ab-443b-9c6c-53270b6e48d7
Atl-Traceid:
- - bce7ef45575247a2bb4b41842063c534
+ - 51c07a71a5ab443b9c6c53270b6e48d7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -683,9 +699,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:16 GMT
+ - Fri, 16 Jan 2026 21:01:54 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -693,7 +709,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=463,atl-edge;dur=458,atl-edge-internal;dur=15,atl-edge-upstream;dur=442,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="k6IFt0lxnxGFWXt1fqRlU_uluNOKOruByFm9kE9qQe5XYQiYlR2asg==",cdn-downstream-fbl;dur=467
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=299,atl-edge;dur=276,atl-edge-internal;dur=18,atl-edge-upstream;dur=258,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="BOS_ms4CGFDBlRhz8xat_xWqlhygQLFSaGyQrJoYsx0OuKOD2U_WDg==",cdn-downstream-fbl;dur=303
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -703,19 +719,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3f515cf2b40cd90e36f3532dbd8a5ae.cloudfront.net (CloudFront)
+ - 1.1 730d0b7e5f5de3b777d629325ecdb89c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - k6IFt0lxnxGFWXt1fqRlU_uluNOKOruByFm9kE9qQe5XYQiYlR2asg==
+ - BOS_ms4CGFDBlRhz8xat_xWqlhygQLFSaGyQrJoYsx0OuKOD2U_WDg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - e4f06c5027e2f5700cbcd1b66efea5c9
+ - b1c9b917e9eccd294eafdca45d033378
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -735,17 +755,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:18.011+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:55.037+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 964334c5-dc53-4688-a6cc-603229a7caba
+ - 4a217ce6-3032-49d5-a537-45ccd5ed6cf4
Atl-Traceid:
- - 964334c5dc534688a6cc603229a7caba
+ - 4a217ce6303249d5a53745ccd5ed6cf4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -755,9 +775,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:18 GMT
+ - Fri, 16 Jan 2026 21:01:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -765,7 +785,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=321,atl-edge-internal;dur=15,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="46pmUIgZnJgr98UdI0h0oSKagc_rHh7p7HZTULimY-g8e1BN3kL8ZQ==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=258,atl-edge;dur=166,atl-edge-internal;dur=14,atl-edge-upstream;dur=151,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="I81WcZ_-H_qC6CQTmC9mvBNDObiB5yMgDfOQ1MGszHQyVp8OXk-JcA==",cdn-downstream-fbl;dur=261
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -775,19 +795,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e3b6a2cc8a3456f4a2dc3bfd506c4344.cloudfront.net (CloudFront)
+ - 1.1 56a79b3a2ac1e2942686c2337f96fb72.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 46pmUIgZnJgr98UdI0h0oSKagc_rHh7p7HZTULimY-g8e1BN3kL8ZQ==
+ - I81WcZ_-H_qC6CQTmC9mvBNDObiB5yMgDfOQ1MGszHQyVp8OXk-JcA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P3
X-Arequestid:
- - dfaa42f09fb62294344dad5b501141d9
+ - 84c419887d4ea70973d0176a39cf66bb
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -807,7 +831,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -821,9 +845,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 97aa0c30-bf63-492d-a8c7-2e70b8caa7c1
+ - b80bdde5-4f31-4b3f-a0c2-caf367ffe20c
Atl-Traceid:
- - 97aa0c30bf63492da8c72e70b8caa7c1
+ - b80bdde54f314b3fa0c2caf367ffe20c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -833,9 +857,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:19 GMT
+ - Fri, 16 Jan 2026 21:01:55 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -843,7 +867,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=469,atl-edge;dur=465,atl-edge-internal;dur=16,atl-edge-upstream;dur=449,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="oSW_dYh61-BiY7hWt5HNfwzzIwJ-JRA1UWQ_SfpW8kZmsoveoxztXA==",cdn-downstream-fbl;dur=472
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=368,atl-edge;dur=345,atl-edge-internal;dur=16,atl-edge-upstream;dur=328,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="VyiV3deVUfSL-ki-6fzyKsd3rrsU41sv-0aXfwF0649YKs35a5Z4rA==",cdn-downstream-fbl;dur=372
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -853,22 +877,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 c2fff340a6d5f4b9c17041a88b37f0f4.cloudfront.net (CloudFront)
+ - 1.1 6cfbd23a7e1585cc0c7d3fcf624f0b2a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - oSW_dYh61-BiY7hWt5HNfwzzIwJ-JRA1UWQ_SfpW8kZmsoveoxztXA==
+ - VyiV3deVUfSL-ki-6fzyKsd3rrsU41sv-0aXfwF0649YKs35a5Z4rA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - a855dd7f96db44e8925b432f24621cdf
+ - 7e30755282c7b1f654815f3cd00cdf66
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -878,29 +906,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]\n*Defect
- Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -930,8 +958,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]\n*Defect Dojo link:* http://localhost:8080/finding/339
- (339)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect Dojo link:* http://localhost:8080/finding/353
+ (353)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -968,21 +996,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21311","key":"NTEST-3132","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21311"}'
+ string: '{"id":"24927","key":"NTEST-3212","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927"}'
headers:
Atl-Request-Id:
- - 05c48886-d2e5-4efe-96cd-f5b17f7dd85b
+ - 5d600bbe-4920-4988-9d83-f9e8680bd988
Atl-Traceid:
- - 05c48886d2e54efe96cdf5b17f7dd85b
+ - 5d600bbe492049889d83f9e8680bd988
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -990,9 +1018,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:21 GMT
+ - Fri, 16 Jan 2026 21:01:56 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1000,7 +1028,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=879,atl-edge;dur=877,atl-edge-internal;dur=14,atl-edge-upstream;dur=864,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="tDkSMTahTdjoJdFoc9G-FkH6Wyk_ynWiNMuUju7i403JXKuilVqpMQ==",cdn-downstream-fbl;dur=883
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=940,atl-edge;dur=917,atl-edge-internal;dur=16,atl-edge-upstream;dur=901,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="cwcMmP-fC8zFG1R1g9GETjHJNJ-rd8SkH8JDBCcwyU9ThHlpBJijyQ==",cdn-downstream-fbl;dur=947
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1010,19 +1038,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f993a09ee51fef62e3d92f6802c130d4.cloudfront.net (CloudFront)
+ - 1.1 1d841c80bfe083de03dcc909a7c5fa9c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - tDkSMTahTdjoJdFoc9G-FkH6Wyk_ynWiNMuUju7i403JXKuilVqpMQ==
+ - cwcMmP-fC8zFG1R1g9GETjHJNJ-rd8SkH8JDBCcwyU9ThHlpBJijyQ==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P1
X-Arequestid:
- - 90f8f1f70121d4e00844d2d27c9dd1f3
+ - b8ef40c93226b31529d59d8b99a7cad4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1042,41 +1074,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3132
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21311","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21311","key":"NTEST-3132","fields":{"statuscategorychangedate":"2025-07-25T21:13:21.084+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3132/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3132/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:20.805+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012in:","updated":"2025-07-25T21:13:20.890+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]\n*Defect
- Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1106,9 +1138,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]\n*Defect
- Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1135,12 +1167,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21311/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e81bc493-5177-4fa6-b7f2-17235b9f034a
+ - e7befda4-9c2d-488e-b0c7-6edace6219a2
Atl-Traceid:
- - e81bc49351774fa6b7f217235b9f034a
+ - e7befda49c2d488eb0c76edace6219a2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1182,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:23 GMT
+ - Fri, 16 Jan 2026 21:01:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1192,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=925,atl-edge;dur=923,atl-edge-internal;dur=17,atl-edge-upstream;dur=905,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="n8oVsH0rZ0tb8BeE8cTVjl8mTNaW_vrVtYQz81sCM8unmdpeNQQZcA==",cdn-downstream-fbl;dur=929
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=338,atl-edge;dur=249,atl-edge-internal;dur=16,atl-edge-upstream;dur=233,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="3PuJFzXNXySnFRc2S3ieXFSkcfV96Id3viq_myQlXvtQZzEq3TyQrA==",cdn-downstream-fbl;dur=343
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1202,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 bc177ce25ddc555a7d303bc4d290a6ec.cloudfront.net (CloudFront)
+ - 1.1 f6327093dd59f54131617ea3ab04bd94.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - n8oVsH0rZ0tb8BeE8cTVjl8mTNaW_vrVtYQz81sCM8unmdpeNQQZcA==
+ - 3PuJFzXNXySnFRc2S3ieXFSkcfV96Id3viq_myQlXvtQZzEq3TyQrA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - 98266d9c297f5a3e7426670d064c076f
+ - ced7c56b1f7ae7c0eb793dcf0cb61dc1
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,41 +1238,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21311
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21311","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21311","key":"NTEST-3132","fields":{"statuscategorychangedate":"2025-07-25T21:13:21.084+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3132/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3132/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:20.805+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012in:","updated":"2025-07-25T21:13:20.890+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/38]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/337]\n*Defect
- Dojo link:* http://localhost:8080/finding/337 (337)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1266,9 +1302,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/339]\n*Defect
- Dojo link:* http://localhost:8080/finding/339 (339)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1295,12 +1331,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21311/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - b966937a-6780-4524-9574-562f74703be1
+ - 6c6ae5c3-1b2b-4fa4-8dab-d7659f059284
Atl-Traceid:
- - b966937a678045249574562f74703be1
+ - 6c6ae5c31b2b4fa48dabd7659f059284
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1310,9 +1346,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:24 GMT
+ - Fri, 16 Jan 2026 21:01:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1320,7 +1356,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=412,atl-edge-internal;dur=14,atl-edge-upstream;dur=399,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="Rh8b1QnlJnbwyNBt54TyWV4HZev1lt2qggx3xWFNKgfXJXVKNMWnxw==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=273,atl-edge;dur=250,atl-edge-internal;dur=15,atl-edge-upstream;dur=235,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="kNMtf288pyVLrffREit2nPef4GpXo-WPx9UvTK9ON-Dln7ynAcggEA==",cdn-downstream-fbl;dur=277
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1330,19 +1366,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4ab519b4cd27a1b8a4b258d7f39bbc7e.cloudfront.net (CloudFront)
+ - 1.1 b5a2e617d7392a245dec0250ae9c6002.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Rh8b1QnlJnbwyNBt54TyWV4HZev1lt2qggx3xWFNKgfXJXVKNMWnxw==
+ - kNMtf288pyVLrffREit2nPef4GpXo-WPx9UvTK9ON-Dln7ynAcggEA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 2b7f4eafef35e0ab47991ac7279d2805
+ - 17847213c9a696198c3170173c17e387
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1362,17 +1402,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:25.408+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:01:57.668+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 767f6f6a-8dea-4ebb-86ac-f5d3d2d857c7
+ - 6de8acfb-7f75-4cb9-8616-5c34585e1ab3
Atl-Traceid:
- - 767f6f6a8dea4ebb86acf5d3d2d857c7
+ - 6de8acfb7f754cb986165c34585e1ab3
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1382,9 +1422,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:25 GMT
+ - Fri, 16 Jan 2026 21:01:57 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1392,7 +1432,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=324,atl-edge;dur=321,atl-edge-internal;dur=15,atl-edge-upstream;dur=305,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="EYSzcPNhOqmbrgongDImBzHTqWvfDeimTdQ-rn-jymHqBBdz86wVBg==",cdn-downstream-fbl;dur=327
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=195,atl-edge;dur=171,atl-edge-internal;dur=14,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="w-M709-cQC4W9AGd7XofWV26EgkdtuCq61FnanBms0XOY_qSakop8A==",cdn-downstream-fbl;dur=200
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1402,19 +1442,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 35e7be28d84a15b9277bceb653af4b4c.cloudfront.net (CloudFront)
+ - 1.1 c3ec3fa9c5962899febb10c3fdc31872.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - EYSzcPNhOqmbrgongDImBzHTqWvfDeimTdQ-rn-jymHqBBdz86wVBg==
+ - w-M709-cQC4W9AGd7XofWV26EgkdtuCq61FnanBms0XOY_qSakop8A==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - 35db7a5dcfd947f5a916bb34a80e6f07
+ - cc3e7a17fbde4647501f2c2d0ee4cbd3
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1434,7 +1478,2297 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 12a5e7e5-aef0-447b-aed9-3207d0659c3e
+ Atl-Traceid:
+ - 12a5e7e5aef0447baed93207d0659c3e
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:58 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=422,atl-edge;dur=331,atl-edge-internal;dur=18,atl-edge-upstream;dur=312,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="AzcEcnhUYHCK9B5VJPyEU6_99aMOHIFHaGG-IBdj-8Bvl5Gc9e0zwQ==",cdn-downstream-fbl;dur=426
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 1d841c80bfe083de03dcc909a7c5fa9c.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - AzcEcnhUYHCK9B5VJPyEU6_99aMOHIFHaGG-IBdj-8Bvl5Gc9e0zwQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 34ebcae4c6e719e3fdefaf25358ad0c8
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - ed706b50-b81c-4432-8a19-b91d625bc4ee
+ Atl-Traceid:
+ - ed706b50b81c44328a19b91d625bc4ee
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:58 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="EBW-gNGZnhCyldaN4zX4osqgZ_Kfepy9j1q6exzLlel2UZQUe85q7w==",cdn-downstream-fbl;dur=471,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=468,atl-edge;dur=378,atl-edge-internal;dur=18,atl-edge-upstream;dur=360,atl-edge-pop;desc="aws-us-west-2"
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 08d2ad2df7ae14c356e73a61afe3347c.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - EBW-gNGZnhCyldaN4zX4osqgZ_Kfepy9j1q6exzLlel2UZQUe85q7w==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 89315758c864cd18edb2b0a56023bb73
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect Dojo link:* http://localhost:8080/finding/353
+ (353)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - ce68272c-44dc-48a1-b268-01e9d41ee5b0
+ Atl-Traceid:
+ - ce68272c44dc48a1b26801e9d41ee5b0
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:59 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=397,atl-edge-internal;dur=16,atl-edge-upstream;dur=381,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="soMBQXrcWmaUgYPnzp9sbHDNKaOcWarVN-HTC9bkFaQFCi-SUve-NQ==",cdn-downstream-fbl;dur=428
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 61ff1927788a811372346b5470412a78.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - soMBQXrcWmaUgYPnzp9sbHDNKaOcWarVN-HTC9bkFaQFCi-SUve-NQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 2e7e2590c915c6cc6099a910e113ea24
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - d0a2126c-2444-47e1-bffc-f37f5e7a4d05
+ Atl-Traceid:
+ - d0a2126c244447e1bffcf37f5e7a4d05
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:01:59 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=279,atl-edge;dur=256,atl-edge-internal;dur=14,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="pZihxIAkIkfNlVdRDgu-Dnq6QSFC0TpURIoNZQqCwjebDKHQSC2K3g==",cdn-downstream-fbl;dur=283
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 b35c566c5c237e7090b19170d36f7ad2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - pZihxIAkIkfNlVdRDgu-Dnq6QSFC0TpURIoNZQqCwjebDKHQSC2K3g==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 1edf3e84a2cb4b5af81e98b0dfac1e32
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:00.121+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - d893add3-c0e5-4745-a443-b6b7359373e2
+ Atl-Traceid:
+ - d893add3c0e54745a443b6b7359373e2
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:00 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=211,atl-edge;dur=189,atl-edge-internal;dur=16,atl-edge-upstream;dur=173,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="W4qE12QSbSoYTHze3j2SPU_yTD3j3fKBX4QeHCheKycXuo_UASS2mw==",cdn-downstream-fbl;dur=216
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 08d2ad2df7ae14c356e73a61afe3347c.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - W4qE12QSbSoYTHze3j2SPU_yTD3j3fKBX4QeHCheKycXuo_UASS2mw==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 07177d6d02cfb5c28823c9c8c7907a93
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 2f222312-5b24-462b-ba1f-1435f3271762
+ Atl-Traceid:
+ - 2f2223125b24462bba1f1435f3271762
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:00 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=380,atl-edge;dur=357,atl-edge-internal;dur=18,atl-edge-upstream;dur=339,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="l62ztVRPjYuCJKU4ioR-RGKOD8EQ3hqGNDO0aNonV03CU9Pkiog8xw==",cdn-downstream-fbl;dur=385
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 a42ce842e0f60814700ead82353e9f08.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - l62ztVRPjYuCJKU4ioR-RGKOD8EQ3hqGNDO0aNonV03CU9Pkiog8xw==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - ba1a035e181f3b9cd70b16214ed12a96
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '2167'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: POST
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue
+ response:
+ body:
+ string: '{"id":"24928","key":"NTEST-3213","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928"}'
+ headers:
+ Atl-Request-Id:
+ - 5d704c10-ca33-4d6f-a9d8-956bb37b4cf4
+ Atl-Traceid:
+ - 5d704c10ca334d6fa9d8956bb37b4cf4
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:01 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=779,atl-edge;dur=756,atl-edge-internal;dur=16,atl-edge-upstream;dur=739,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="9eagKFcjAP8qRqU37GfjjGfv_Te28xqHTh6DDVLtTATpb5W67dD8Gw==",cdn-downstream-fbl;dur=783
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 73ad00d68a5eb9671b517ae19c83ae52.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 9eagKFcjAP8qRqU37GfjjGfv_Te28xqHTh6DDVLtTATpb5W67dD8Gw==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - 0e58a5c0ece0bfc24cea677a84f8c3c4
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 201
+ message: Created
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24928","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928","key":"NTEST-3213","fields":{"statuscategorychangedate":"2026-01-16T22:02:01.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:01.037+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lb:","updated":"2026-01-16T22:02:01.122+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 09b3f3b0-f5f3-4946-9bfe-e2ce96f43e7c
+ Atl-Traceid:
+ - 09b3f3b0f5f349469bfee2ce96f43e7c
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:01 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=281,atl-edge;dur=257,atl-edge-internal;dur=18,atl-edge-upstream;dur=239,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="PEuG26Ucgdzl0GYhf0WPkJk3HAwSLWEsEZWIPpqQzEVrH0UMAPJAeg==",cdn-downstream-fbl;dur=285
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 89657e9ba87ccb5f5b96de064bf6d496.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - PEuG26Ucgdzl0GYhf0WPkJk3HAwSLWEsEZWIPpqQzEVrH0UMAPJAeg==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 821c20968cdd2f9467c2b36cd99e302b
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24928
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24928","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928","key":"NTEST-3213","fields":{"statuscategorychangedate":"2026-01-16T22:02:01.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:01.037+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lb:","updated":"2026-01-16T22:02:01.122+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service
+ when parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 333681e8-8ba6-41bb-a041-d7cc970d3d13
+ Atl-Traceid:
+ - 333681e88ba641bba041d7cc970d3d13
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:02 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=285,atl-edge;dur=261,atl-edge-internal;dur=17,atl-edge-upstream;dur=245,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="uQt4psDa2nq27UVA42YqyF2nD1qNn_wqcqxPRccWBtJsm6dFh7Z8UA==",cdn-downstream-fbl;dur=288
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 939f768b06599c7357e62de464fd9a12.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - uQt4psDa2nq27UVA42YqyF2nD1qNn_wqcqxPRccWBtJsm6dFh7Z8UA==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 81dd28bbab2d7f7b38fb891fd0f73032
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:02.493+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 12492306-c30b-4b9f-8326-bdd22d18f7ce
+ Atl-Traceid:
+ - 12492306c30b4b9f8326bdd22d18f7ce
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:02 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=199,atl-edge;dur=177,atl-edge-internal;dur=13,atl-edge-upstream;dur=163,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="WGAJ810JXnXzw1GFIrvdKM58QF0-4hvK4gM5s_SjG8yqmwd9wxWPEQ==",cdn-downstream-fbl;dur=203
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 fb583d18c6b0f24d4447146b294e4f68.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - WGAJ810JXnXzw1GFIrvdKM58QF0-4hvK4gM5s_SjG8yqmwd9wxWPEQ==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - d8c4ff3a51270d7a224d4af7f9bc21d2
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 04bc9dd8-4dfb-4c0c-b17f-aba58c97f643
+ Atl-Traceid:
+ - 04bc9dd84dfb4c0cb17faba58c97f643
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:02 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=259,atl-edge;dur=235,atl-edge-internal;dur=17,atl-edge-upstream;dur=218,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="jweLKXI9m5hoI4pMQXm0PGlVux3cPI1SCEqVGVLl-zzc-bJSlAqN8g==",cdn-downstream-fbl;dur=263
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 b8620ad7aedba28451ef92dbe52bd094.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - jweLKXI9m5hoI4pMQXm0PGlVux3cPI1SCEqVGVLl-zzc-bJSlAqN8g==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 6bf9be2edb2e40d28f69349dc49b6936
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '397'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 6289e9a7-27ed-4494-929b-3777815b18df
+ Atl-Traceid:
+ - 6289e9a727ed4494929b3777815b18df
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:03 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=418,atl-edge;dur=329,atl-edge-internal;dur=16,atl-edge-upstream;dur=313,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="FvcTGri_AeeLmJ00iJ-V_DWprB-FG9lh8qXBa9pbZNnjfX_ss7Sx8Q==",cdn-downstream-fbl;dur=422
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 4727c17386dca598865fa547bcafadfa.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - FvcTGri_AeeLmJ00iJ-V_DWprB-FG9lh8qXBa9pbZNnjfX_ss7Sx8Q==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 48c1bfac88a6023deeb2430b58746fcb
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '3558'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 50fc5b88-6cd3-4bdb-9aee-c6a9cf33a21e
+ Atl-Traceid:
+ - 50fc5b886cd34bdb9aeec6a9cf33a21e
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:04 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=452,atl-edge;dur=360,atl-edge-internal;dur=16,atl-edge-upstream;dur=344,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="NaQnN0GoJZGboStfwlfdXMkR8XwoOVXP9xpFarmaGKPM3nEWfPCegA==",cdn-downstream-fbl;dur=457
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 9367844cfa8aaebd6a8f032ea2e7d4ec.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - NaQnN0GoJZGboStfwlfdXMkR8XwoOVXP9xpFarmaGKPM3nEWfPCegA==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - c4a052e887c55b5e189ec1af1dfe6474
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 96e6c253-16dc-47c0-8dae-8e8fac3357bf
+ Atl-Traceid:
+ - 96e6c25316dc47c08dae8e8fac3357bf
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:04 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=250,atl-edge;dur=227,atl-edge-internal;dur=18,atl-edge-upstream;dur=209,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="pn_qld2mfukyG3qoEBVsC6UVSQOKi9RgzpaafTpk4RJfTtgxTEHn_Q==",cdn-downstream-fbl;dur=254
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 b4700b9a7dfcbdb388dd2a5d94e86ffc.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - pn_qld2mfukyG3qoEBVsC6UVSQOKi9RgzpaafTpk4RJfTtgxTEHn_Q==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 6b7452a212daeb5cbded4cd5998133d1
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:04.605+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 383b51b8-60a1-4c04-96cb-cc0bc8a385bd
+ Atl-Traceid:
+ - 383b51b860a14c0496cbcc0bc8a385bd
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:04 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,atl-edge;dur=170,atl-edge-internal;dur=14,atl-edge-upstream;dur=156,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="JKf11hKAeW8KvVElADr2UsW68d3_M0aZxtMnVFkrmGpPemM4P1AkBg==",cdn-downstream-fbl;dur=196
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 153b67ebb1db442b5cea7f360e7f8cb6.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - JKf11hKAeW8KvVElADr2UsW68d3_M0aZxtMnVFkrmGpPemM4P1AkBg==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 5f34cbeddcd7e730a3108720aacbc123
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - b85d01b5-b80a-457d-9994-113b9d3a3f8d
+ Atl-Traceid:
+ - b85d01b5b80a457d9994113b9d3a3f8d
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:05 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=289,atl-edge;dur=266,atl-edge-internal;dur=18,atl-edge-upstream;dur=248,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="vYvd_HfZXxqBCUXZcN04Beab4039BheOlLEzZ-uRUayYYp9i0EPPvA==",cdn-downstream-fbl;dur=293
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 4bb08411ba89edb53d3520e2681c55f2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - vYvd_HfZXxqBCUXZcN04Beab4039BheOlLEzZ-uRUayYYp9i0EPPvA==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 3672c7cf2c232ef1b8088d74f2c8defb
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
+ headers:
+ Atl-Request-Id:
+ - 1a3c600a-d677-4aa3-a123-4260f0d0cb25
+ Atl-Traceid:
+ - 1a3c600ad6774aa3a1234260f0d0cb25
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:05 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=303,atl-edge;dur=280,atl-edge-internal;dur=16,atl-edge-upstream;dur=264,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="OuNMPcIozHZVeMWn1KxoPV0Gn8p2VFcWsba-hYTeHNNlzN95QkQhYw==",cdn-downstream-fbl;dur=306
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 61ea521c913b8f6dbadaa96ecbb825ec.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - OuNMPcIozHZVeMWn1KxoPV0Gn8p2VFcWsba-hYTeHNNlzN95QkQhYw==
+ X-Amz-Cf-Pop:
+ - DEN52-P3
+ X-Arequestid:
+ - 5888ef8d246754e439c7018928f5b44a
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language` header
+ value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <= 0.6.0\n
+ Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '3558'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - e1ca39a6-0a15-4573-9dab-ead1c7e9acc5
+ Atl-Traceid:
+ - e1ca39a60a1545739dabead1c7e9acc5
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:06 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=381,atl-edge;dur=357,atl-edge-internal;dur=14,atl-edge-upstream;dur=343,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="KhKTMMtJxaR8xY-I4ya0BVI7W3IX7GEWS22C9qSODHIQG03PbaUADA==",cdn-downstream-fbl;dur=386
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 b35c566c5c237e7090b19170d36f7ad2.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - KhKTMMtJxaR8xY-I4ya0BVI7W3IX7GEWS22C9qSODHIQG03PbaUADA==
+ X-Amz-Cf-Pop:
+ - DEN53-P3
+ X-Arequestid:
+ - a0fbfad8246d961161ab9f1912f7080b
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24926
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24926","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926","key":"NTEST-3211","fields":{"statuscategorychangedate":"2026-01-16T22:01:53.792+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3211/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:53.444+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014kv:","updated":"2026-01-16T22:01:53.565+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/106]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
+ 0.6.0)|http://localhost:8080/finding/350]\n*Defect Dojo link:* http://localhost:8080/finding/350
+ (350)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ \n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/349]\n*Defect
+ Dojo link:* http://localhost:8080/finding/349 (349)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
+ File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
+ versions of `negotiator` are vulnerable to regular expression denial of service
+ attacks, which trigger upon parsing a specially crafted `Accept-Language`
+ header value.\n\n\n Vulnerable Module: negotiator\n Vulnerable Versions: <=
+ 0.6.0\n Patched Version: >= 0.6.1\n Vulnerable Paths: \n - 0.5.3:express>accepts>negotiator\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
+ or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24926/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 33907c15-3049-44a3-a733-0be23f940bc0
+ Atl-Traceid:
+ - 33907c15304944a3a7330be23f940bc0
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:06 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=286,atl-edge;dur=262,atl-edge-internal;dur=16,atl-edge-upstream;dur=245,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="fy8t3DQ0epeMZbeTX-OccHSX-HeCtBLPrf0NCbRzcnNfHqFgbZkG2A==",cdn-downstream-fbl;dur=289
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 e9664d7d75a13744c43a201578701e56.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - fy8t3DQ0epeMZbeTX-OccHSX-HeCtBLPrf0NCbRzcnNfHqFgbZkG2A==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - d91ed59fae1ff25113e1f586c6ce03cd
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
+ response:
+ body:
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:06.771+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ headers:
+ Atl-Request-Id:
+ - 29e521c7-90bf-4f72-836d-3912edd6fc99
+ Atl-Traceid:
+ - 29e521c790bf4f72836d3912edd6fc99
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:06 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=291,atl-edge;dur=200,atl-edge-internal;dur=17,atl-edge-upstream;dur=184,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="qhGfpIEUXBhBsisEdP84HtGK0SdfztJfX9I8n1wRbYX6TSg1E6PgSg==",cdn-downstream-fbl;dur=295
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - qhGfpIEUXBhBsisEdP84HtGK0SdfztJfX9I8n1wRbYX6TSg1E6PgSg==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 53efb6ccd0bcf06417b82520b2aaf0d8
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - f06faa25-d749-47bc-a633-b25f3433b9b0
+ Atl-Traceid:
+ - f06faa25d74947bca633b25f3433b9b0
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:07 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=468,atl-edge;dur=445,atl-edge-internal;dur=17,atl-edge-upstream;dur=427,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="cjSzoKVmpV1T-2u1gclS2bxHjAunClFGWNGfBk8j8iDNd8tgds58Kw==",cdn-downstream-fbl;dur=472
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 e9664d7d75a13744c43a201578701e56.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - cjSzoKVmpV1T-2u1gclS2bxHjAunClFGWNGfBk8j8iDNd8tgds58Kw==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - 3fc84f89cb60b93c085851b8d51b4aca
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1448,9 +3782,332 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 8c7dc14b-2957-44b7-8f00-006e0510dd74
+ - 808f6dea-743f-4729-8623-0866b0e80c42
+ Atl-Traceid:
+ - 808f6dea743f472986230866b0e80c42
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:07 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=408,atl-edge;dur=385,atl-edge-internal;dur=18,atl-edge-upstream;dur=366,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="jscMsTrQj-tdN63Hz2v3gf7N-D-wMiRoO_JvKwa-sICZ45CL73XVZw==",cdn-downstream-fbl;dur=412
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 d7b3fa0ef559ab3ac226fc78e47d311a.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - jscMsTrQj-tdN63Hz2v3gf7N-D-wMiRoO_JvKwa-sICZ45CL73XVZw==
+ X-Amz-Cf-Pop:
+ - DEN52-P1
+ X-Arequestid:
+ - 8cb238fb707c4fdc160e5d74ada1602a
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
+ Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
+ || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution -
+ (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
+ < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
+ 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect Dojo link:* http://localhost:8080/finding/353
+ (353)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs when
+ the remote database or query specifies a crafted column name. \n\nThere are
+ two specific scenarios in which it is likely for an application to be vulnerable:\n1.
+ The application executes unsafe, user-supplied sql which contains malicious
+ column names.\n2. The application connects to an untrusted database and executes
+ a query returning results which contain a malicious column name.\n\n## Proof
+ of Concept\n```\nconst { Client } = require(''pg'')\nconst client = new Client()\nclient.connect()\n\nconst
+ sql = `SELECT 1 AS \"\\\\''/*\", 2 AS \"\\\\''*/\\n + console.log(process.env)]
+ = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```\n
+ Vulnerable Module: pg\n Vulnerable Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >=
+ 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 ||
+ >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2\n Patched Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0
+ || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 <
+ 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2
+ < 7.1.0 || >= 7.1.2\n Vulnerable Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n
+ Access: public\n\n\n*Mitigation*:\n* Version 2.x.x: Update to version 2.11.2
+ or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x:
+ Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1
+ or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions
+ 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version
+ 7.1.2 or later. ( Note that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo
+ impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "High"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '7028'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 3578b955-a32a-4021-b67d-e25b5c21ffd3
+ Atl-Traceid:
+ - 3578b955a32a4021b67de25b5c21ffd3
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:08 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=391,atl-edge-internal;dur=18,atl-edge-upstream;dur=373,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="QTQIW0DIob0iqjiI92qy1yK44faOGmzZYUde6BFxASZTsnHisdYJ5A==",cdn-downstream-fbl;dur=421
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 6b1026dc8b63f06fce4b4aec8b9a03d6.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - QTQIW0DIob0iqjiI92qy1yK44faOGmzZYUde6BFxASZTsnHisdYJ5A==
+ X-Amz-Cf-Pop:
+ - DEN52-P2
+ X-Arequestid:
+ - 6d072eccd0e765f575eb57b559d67950
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24927
+ response:
+ body:
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24927","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927","key":"NTEST-3212","fields":{"statuscategorychangedate":"2026-01-16T22:01:56.354+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3212/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:01:56.068+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014l3:","updated":"2026-01-16T22:01:56.170+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/107]
+ in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
+ || Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]|Active,
+ Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
+ Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
+ 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
+ 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
+ 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
+ 6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/351]\n*Defect
+ Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/521\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [2222Remote Code Execution
+ - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
+ 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
+ < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/353]\n*Defect
+ Dojo link:* http://localhost:8080/finding/353 (353)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ \n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
+ File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
+ versions of `pg` contain a remote code execution vulnerability that occurs
+ when the remote database or query specifies a crafted column name. \n\nThere
+ are two specific scenarios in which it is likely for an application to be
+ vulnerable:\n1. The application executes unsafe, user-supplied sql which contains
+ malicious column names.\n2. The application connects to an untrusted database
+ and executes a query returning results which contain a malicious column name.\n\n##
+ Proof of Concept\n```\nconst { Client } = require(''pg'')\nconst client =
+ new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\''/*\", 2
+ AS \"\\\\''*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql,
+ (err, res) => {\n client.end()\n})\n```\n Vulnerable Module: pg\n Vulnerable
+ Versions: < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 <
+ 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0
+ < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2\n Patched
+ Version: >= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1
+ < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >=
+ 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2\n Vulnerable
+ Paths: \n - 5.1.0:pg-promise>pg\n CWE: CWE-94\n Access: public\n\n\n*Mitigation*:\n*
+ Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update
+ to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n*
+ Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update
+ to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are
+ also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
+ that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24927/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - 5f6c0979-20ba-4b6b-a926-b5fa6847064b
Atl-Traceid:
- - 8c7dc14b295744b78f00006e0510dd74
+ - 5f6c097920ba4b6ba926b5fa6847064b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1460,9 +4117,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:26 GMT
+ - Fri, 16 Jan 2026 21:02:08 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1470,7 +4127,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=505,atl-edge;dur=503,atl-edge-internal;dur=16,atl-edge-upstream;dur=488,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="gFfxZX-RlSr7LSZyeJO2yW71UagK5oDEZ4nDkhK0jQV1LfA62GQS6w==",cdn-downstream-fbl;dur=509
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=584,atl-edge;dur=494,atl-edge-internal;dur=15,atl-edge-upstream;dur=479,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="4c37cNNs7bSyAbwfpXqrn--j64vHp6aSTuLQBzB6QkB1FTOMo5q3Pw==",cdn-downstream-fbl;dur=587
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1480,51 +4137,30 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0462a83c1b4a9fa5a2554db6feb3a19c.cloudfront.net (CloudFront)
- Warning:
- - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
- June 03, 2024)'
+ - 1.1 b86386058101394cf48b049b58f8d788.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - gFfxZX-RlSr7LSZyeJO2yW71UagK5oDEZ4nDkhK0jQV1LfA62GQS6w==
+ - 4c37cNNs7bSyAbwfpXqrn--j64vHp6aSTuLQBzB6QkB1FTOMo5q3Pw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 9c6264fef0eaeff9dae724405a74e88f
+ - 89a6e26413a7642703536eff26fe6ddb
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
code: 200
message: OK
- request:
- body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
- "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
- of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/39] in [Security
- How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
- and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
- Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]|Active,
- Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
- Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]\n*Defect
- Dojo link:* http://localhost:8080/finding/338 (338)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
- \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
- File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
- versions of `fresh` are vulnerable to regular expression denial of service when
- parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
- Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
- CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
- later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
- [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}}'
+ body: null
headers:
Accept:
- application/json,*/*;q=0.9
@@ -1534,32 +4170,32 @@ interactions:
- no-cache
Connection:
- keep-alive
- Content-Length:
- - '2164'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
- method: POST
- uri: https://defectdojo.atlassian.net/rest/api/2/issue
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"id":"21312","key":"NTEST-3133","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21312"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:09.341+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 98581a38-8c94-4c22-aaf8-4f635fe653ce
+ - 322e5f1a-6411-4454-a80d-6035030f168c
Atl-Traceid:
- - 98581a388c944c22aaf84f635fe653ce
+ - 322e5f1a64114454a80d6035030f168c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
- keep-alive
+ Content-Encoding:
+ - gzip
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:28 GMT
+ - Fri, 16 Jan 2026 21:02:09 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1567,7 +4203,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=789,atl-edge;dur=786,atl-edge-internal;dur=14,atl-edge-upstream;dur=772,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="_GqCIdAsbdF-FZfmEeHvG9gkOzmdIc88wANLWzJs-YgGDozCnDDB5Q==",cdn-downstream-fbl;dur=792
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=220,atl-edge;dur=196,atl-edge-internal;dur=13,atl-edge-upstream;dur=183,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="z0gcKO5jCdBDaybEHRoZNtyhdey3qGynsDdCCk1dHxXx-fRo9mSYXg==",cdn-downstream-fbl;dur=223
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1577,24 +4213,28 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3e4f9c0400441c93ce3468dd26ef9ee4.cloudfront.net (CloudFront)
+ - 1.1 e9b2affad5fcea678c9381d59c2d8e5c.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - _GqCIdAsbdF-FZfmEeHvG9gkOzmdIc88wANLWzJs-YgGDozCnDDB5Q==
+ - z0gcKO5jCdBDaybEHRoZNtyhdey3qGynsDdCCk1dHxXx-fRo9mSYXg==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - bfcd778e3358eefb715104ca457360f1
+ - f47d4281f755a4946916b5be7ce4ba32
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
- code: 201
- message: Created
+ code: 200
+ message: OK
- request:
body: null
headers:
@@ -1609,30 +4249,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3133
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24928
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21312","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21312","key":"NTEST-3133","fields":{"statuscategorychangedate":"2025-07-25T21:13:28.423+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24928","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928","key":"NTEST-3213","fields":{"statuscategorychangedate":"2026-01-16T22:02:01.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3133/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3133/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:28.244+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012iv:","updated":"2025-07-25T21:13:28.305+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:01.037+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lb:","updated":"2026-01-16T22:02:01.122+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/39]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]\n*Defect
- Dojo link:* http://localhost:8080/finding/338 (338)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1641,12 +4281,94 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21312/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928/comment","maxResults":0,"total":0,"startAt":0}}}'
+ headers:
+ Atl-Request-Id:
+ - f8ec23be-caa4-4b9f-b589-353e8c61ccc6
+ Atl-Traceid:
+ - f8ec23becaa44b9fb589353e8c61ccc6
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Encoding:
+ - gzip
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:09 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=304,atl-edge;dur=280,atl-edge-internal;dur=16,atl-edge-upstream;dur=265,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="1Qx5Mr6JMdBoI88XlH7XxX1fda1BZ_0w4KUqik77ZS2wsK8a3ThVUw==",cdn-downstream-fbl;dur=308
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Transfer-Encoding:
+ - chunked
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 92deee8348203aa783cce35d78bd0efe.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - 1Qx5Mr6JMdBoI88XlH7XxX1fda1BZ_0w4KUqik77ZS2wsK8a3ThVUw==
+ X-Amz-Cf-Pop:
+ - DEN53-P2
+ X-Arequestid:
+ - d838618b036220d9685eb8dce8d33cb3
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 200
+ message: OK
+- request:
+ body: null
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: GET
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
+ response:
+ body:
+ string: '{"expand":"projects","projects":[{"expand":"issuetypes","self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"},"issuetypes":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","untranslatedName":"Task","subtask":false,"hierarchyLevel":0,"expand":"fields","fields":{"summary":{"required":true,"schema":{"type":"string","system":"summary"},"name":"Summary","key":"summary","hasDefaultValue":false,"operations":["set"]},"issuetype":{"required":true,"schema":{"type":"issuetype","system":"issuetype"},"name":"Issue
+ Type","key":"issuetype","hasDefaultValue":false,"operations":[],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0}]},"parent":{"required":false,"schema":{"type":"issuelink","system":"parent"},"name":"Parent","key":"parent","hasDefaultValue":false,"operations":["set"]},"components":{"required":false,"schema":{"type":"array","items":"component","system":"components"},"name":"Components","key":"components","hasDefaultValue":false,"operations":["add","set","remove"],"allowedValues":[]},"description":{"required":false,"schema":{"type":"string","system":"description"},"name":"Description","key":"description","hasDefaultValue":false,"operations":["set"]},"project":{"required":true,"schema":{"type":"project","system":"project"},"name":"Project","key":"project","hasDefaultValue":false,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}}]},"fixVersions":{"required":false,"schema":{"type":"array","items":"version","system":"fixVersions"},"name":"Fix
+ versions","key":"fixVersions","hasDefaultValue":false,"operations":["set","add","remove"],"allowedValues":[]},"priority":{"required":false,"schema":{"type":"priority","system":"priority"},"name":"Priority","key":"priority","hasDefaultValue":true,"operations":["set"],"allowedValues":[{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/1","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/highest_new.svg","name":"Highest","id":"1"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/4","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/low_new.svg","name":"Low","id":"4"},{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/5","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/lowest_new.svg","name":"Lowest","id":"5"}],"defaultValue":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"}},"customfield_10014":{"required":false,"schema":{"type":"any","custom":"com.pyxis.greenhopper.jira:gh-epic-link","customId":10014},"name":"Epic
+ Link","key":"customfield_10014","hasDefaultValue":false,"operations":["set"]},"labels":{"required":false,"schema":{"type":"array","items":"string","system":"labels"},"name":"Labels","key":"labels","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/1.0/labels/suggest?query=","hasDefaultValue":false,"operations":["add","set","remove"]},"attachment":{"required":false,"schema":{"type":"array","items":"attachment","system":"attachment"},"name":"Attachment","key":"attachment","hasDefaultValue":false,"operations":["set","copy"]},"issuelinks":{"required":false,"schema":{"type":"array","items":"issuelinks","system":"issuelinks"},"name":"Linked
+ Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - f5e24e54-f7f4-4a1f-9390-98f064ca403e
+ - 45b6c71c-82fe-44b5-a8df-407085d7622b
Atl-Traceid:
- - f5e24e54f7f44a1f939098f064ca403e
+ - 45b6c71c82fe44b5a8df407085d7622b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1656,9 +4378,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:29 GMT
+ - Fri, 16 Jan 2026 21:02:10 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1666,7 +4388,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=454,atl-edge;dur=452,atl-edge-internal;dur=14,atl-edge-upstream;dur=438,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="g3giObmmn1sVCNRK_dygcXF9Xutt-BOWrn9oGUxkf6dZSfK2rbiECQ==",cdn-downstream-fbl;dur=458
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=332,atl-edge;dur=309,atl-edge-internal;dur=16,atl-edge-upstream;dur=293,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="4M_N5Zlh-7hc6QW1aCsJrdcWfeIuEORXN8EodYixvNU7006E2rQFmQ==",cdn-downstream-fbl;dur=336
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1676,24 +4398,127 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 08a9275888c86859e545bc29de28a412.cloudfront.net (CloudFront)
+ - 1.1 ebee7985d4830e80d4035a7dc7425a68.cloudfront.net (CloudFront)
+ Warning:
+ - 'The issue create meta endpoint has been deprecated. (Deprecation start date:
+ June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - g3giObmmn1sVCNRK_dygcXF9Xutt-BOWrn9oGUxkf6dZSfK2rbiECQ==
+ - 4M_N5Zlh-7hc6QW1aCsJrdcWfeIuEORXN8EodYixvNU7006E2rQFmQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P1
X-Arequestid:
- - 20488eef5678b696ca455da78d15cd2d
+ - a9c25e716676e3a6b8a352317ff05245
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
code: 200
message: OK
+- request:
+ body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
+ "summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
+ of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108] in [Security
+ How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
+ and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
+ Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
+ Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
+ Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ \n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
+ File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
+ versions of `fresh` are vulnerable to regular expression denial of service when
+ parsing specially crafted user input.\n Vulnerable Module: fresh\n Vulnerable
+ Versions: < 0.5.2\n Patched Version: >= 0.5.2\n Vulnerable Paths: \n - 0.3.0:express>fresh,express>send>fresh,express>serve-static>send>fresh,serve-favicon>fresh\n
+ CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2 or
+ later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
+ [(admin) ()|mailto:]\n", "priority": {"name": "Medium"}}, "update": {}}'
+ headers:
+ Accept:
+ - application/json,*/*;q=0.9
+ Accept-Encoding:
+ - gzip, deflate
+ Cache-Control:
+ - no-cache
+ Connection:
+ - keep-alive
+ Content-Length:
+ - '2181'
+ Content-Type:
+ - application/json
+ User-Agent:
+ - python-requests/2.32.5
+ method: PUT
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24928
+ response:
+ body:
+ string: ''
+ headers:
+ Atl-Request-Id:
+ - 2d1c6fb4-fdd4-449e-a1ba-283bba891413
+ Atl-Traceid:
+ - 2d1c6fb4fdd4449ea1ba283bba891413
+ Cache-Control:
+ - no-cache, no-store, no-transform
+ Connection:
+ - keep-alive
+ Content-Type:
+ - application/json;charset=UTF-8
+ Date:
+ - Fri, 16 Jan 2026 21:02:10 GMT
+ Nel:
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
+ "endpoint-1"}'
+ Report-To:
+ - '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
+ "endpoint-1", "include_subdomains": true, "max_age": 600}'
+ Server:
+ - AtlassianEdge
+ Server-Timing:
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=489,atl-edge;dur=465,atl-edge-internal;dur=17,atl-edge-upstream;dur=449,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="AKMJcwtYFyUN6gHvxFqEw8nOvG6h0P--N2nT7kM9rUwnPNTRnyhBbg==",cdn-downstream-fbl;dur=493
+ Strict-Transport-Security:
+ - max-age=63072000; includeSubDomains; preload
+ Timing-Allow-Origin:
+ - '*'
+ Vary:
+ - Accept-Encoding
+ Via:
+ - 1.1 afe2a1120748a37da1066bf9f260ec02.cloudfront.net (CloudFront)
+ X-Aaccountid:
+ - 5d3878b170e3c90c952f91f6
+ X-Amz-Cf-Id:
+ - AKMJcwtYFyUN6gHvxFqEw8nOvG6h0P--N2nT7kM9rUwnPNTRnyhBbg==
+ X-Amz-Cf-Pop:
+ - DEN53-P1
+ X-Arequestid:
+ - 415f4861719ed360bc58c4330887526c
+ X-Cache:
+ - Miss from cloudfront
+ X-Content-Type-Options:
+ - nosniff
+ X-Ratelimit-Limit:
+ - '300'
+ X-Ratelimit-Remaining:
+ - '299'
+ X-Xss-Protection:
+ - 1; mode=block
+ status:
+ code: 204
+ message: No Content
- request:
body: null
headers:
@@ -1708,30 +4533,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21312
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24928
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21312","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21312","key":"NTEST-3133","fields":{"statuscategorychangedate":"2025-07-25T21:13:28.423+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24928","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928","key":"NTEST-3213","fields":{"statuscategorychangedate":"2026-01-16T22:02:01.299+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3133/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3133/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:28.244+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012iv:","updated":"2025-07-25T21:13:28.305+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3213/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:01.037+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lb:","updated":"2026-01-16T22:02:01.122+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/39]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/108]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/120]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/125]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/338]\n*Defect
- Dojo link:* http://localhost:8080/finding/338 (338)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/352]\n*Defect
+ Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1740,12 +4565,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21312/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24928/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 96ba0c30-5ca6-47c5-a6e4-f92143d742b2
+ - e03de3cb-049a-489c-ba89-4d4a8c00ebce
Atl-Traceid:
- - 96ba0c305ca647c5a6e4f92143d742b2
+ - e03de3cb049a489cba894d4a8c00ebce
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1755,9 +4580,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:31 GMT
+ - Fri, 16 Jan 2026 21:02:11 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1765,7 +4590,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=437,atl-edge;dur=435,atl-edge-internal;dur=14,atl-edge-upstream;dur=421,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="iZpdYqIH0R1RqhGRBRgjYv8gGqYOeHhFs0iPI5pm958agA_2Oq3ZfQ==",cdn-downstream-fbl;dur=441
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=288,atl-edge;dur=265,atl-edge-internal;dur=16,atl-edge-upstream;dur=249,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="7eychPq1ByKHV7BwHQxuas4NDPyDpeyEbzN0_9JC2ukimLXF5XaHrA==",cdn-downstream-fbl;dur=293
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1775,26 +4600,57 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7f1eebb2ab7fd9ddd5ae296bfe0194d2.cloudfront.net (CloudFront)
+ - 1.1 a827400055d7bbab6e387896737d4e50.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - iZpdYqIH0R1RqhGRBRgjYv8gGqYOeHhFs0iPI5pm958agA_2Oq3ZfQ==
+ - 7eychPq1ByKHV7BwHQxuas4NDPyDpeyEbzN0_9JC2ukimLXF5XaHrA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - df322884c3a7bfe201ce5622046a461a
+ - af68ddaba32d294f92be28fbf72c37e5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
code: 200
message: OK
- request:
- body: '"scan_added.tpl"'
+ body: '{"description": "Event scan_added_empty has occurred.", "title": "Created/Updated
+ 0 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
+ null, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/",
+ "product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
+ "url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
+ "Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
+ "http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
+ Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
+ "http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
+ 125, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/"},
+ "finding_count": 0, "findings": {"new": [], "reactivated": [], "mitigated":
+ [], "untouched": [{"id": 350, "title": "2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/350",
+ "url_api": "http://localhost:8080/api/v2/findings/350/"}, {"id": 351, "title":
+ "Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
+ || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
+ || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
+ "severity": "High", "url_ui": "http://localhost:8080/finding/351", "url_api":
+ "http://localhost:8080/api/v2/findings/351/"}, {"id": 352, "title": "Regular
+ Expression Denial of Service - (Fresh, < 0.5.2)", "severity": "Medium", "url_ui":
+ "http://localhost:8080/finding/352", "url_api": "http://localhost:8080/api/v2/findings/352/"},
+ {"id": 353, "title": "2222Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0
+ < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
+ < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0
+ < 7.0.2 || >= 7.1.0 < 7.1.2)", "severity": "Medium", "url_ui": "http://localhost:8080/finding/353",
+ "url_api": "http://localhost:8080/api/v2/findings/353/"}, {"id": 349, "title":
+ "Regular Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity":
+ "Medium", "url_ui": "http://localhost:8080/finding/349", "url_api": "http://localhost:8080/api/v2/findings/349/"}]}}'
headers:
Accept:
- application/json
@@ -1805,11 +4661,11 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '16'
+ - '2384'
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added_empty
X-DefectDojo-Instance:
@@ -1821,25 +4677,95 @@ interactions:
string: "{\n \"args\": {},\n \"headers\": {\n \"Accept\": [\n \"application/json\"\n
\ ],\n \"Accept-Encoding\": [\n \"gzip, deflate\"\n ],\n \"Auth\":
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
- \ ],\n \"Content-Length\": [\n \"16\"\n ],\n \"Content-Type\":
+ \ ],\n \"Content-Length\": [\n \"2384\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added_empty\"\n ],\n \"X-Defectdojo-Instance\": [\n
\ \"http://localhost:8080\"\n ]\n },\n \"method\": \"POST\",\n \"origin\":
- \"10.250.1.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
- \"\\\"scan_added.tpl\\\"\",\n \"files\": {},\n \"form\": {},\n \"json\":
- \"scan_added.tpl\"\n}\n"
+ \"172.19.0.7\",\n \"url\": \"http://webhook.endpoint:8080/post\",\n \"data\":
+ \"{\\\"description\\\": \\\"Event scan_added_empty has occurred.\\\", \\\"title\\\":
+ \\\"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\\\", \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\", \\\"product_type\\\":
+ {\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
+ {\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
+ {\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
+ \\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 125, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\"}, \\\"finding_count\\\":
+ 0, \\\"findings\\\": {\\\"new\\\": [], \\\"reactivated\\\": [], \\\"mitigated\\\":
+ [], \\\"untouched\\\": [{\\\"id\\\": 350, \\\"title\\\": \\\"2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"High\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/350\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/350/\\\"}, {\\\"id\\\": 351, \\\"title\\\":
+ \\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
+ < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
+ 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
+ || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/351\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/351/\\\"},
+ {\\\"id\\\": 352, \\\"title\\\": \\\"Regular Expression Denial of Service
+ - (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
+ \\\"http://localhost:8080/finding/352\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/352/\\\"},
+ {\\\"id\\\": 353, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
+ 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
+ < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/353\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/353/\\\"}, {\\\"id\\\": 349, \\\"title\\\":
+ \\\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
+ \\\"Medium\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/349\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/349/\\\"}]}}\",\n
+ \ \"files\": {},\n \"form\": {},\n \"json\": {\n \"description\": \"Event
+ scan_added_empty has occurred.\",\n \"engagement\": {\n \"id\": 1,\n
+ \ \"name\": \"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
+ \ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
+ 0,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [],\n \"reactivated\":
+ [],\n \"untouched\": [\n {\n \"id\": 350,\n \"severity\":
+ \"High\",\n \"title\": \"2222Regular Expression Denial of Service
+ - (Negotiator, <= 0.6.0)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/350/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/350\"\n },\n
+ \ {\n \"id\": 351,\n \"severity\": \"High\",\n \"title\":
+ \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 <
+ 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0
+ < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >=
+ 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/351/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/351\"\n },\n
+ \ {\n \"id\": 352,\n \"severity\": \"Medium\",\n \"title\":
+ \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/findings/352/\",\n \"url_ui\": \"http://localhost:8080/finding/352\"\n
+ \ },\n {\n \"id\": 353,\n \"severity\": \"Medium\",\n
+ \ \"title\": \"2222Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0
+ < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >=
+ 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2
+ || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/353/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/353\"\n },\n
+ \ {\n \"id\": 349,\n \"severity\": \"Medium\",\n \"title\":
+ \"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
+ \"http://localhost:8080/api/v2/findings/349/\",\n \"url_ui\": \"http://localhost:8080/finding/349\"\n
+ \ }\n ]\n },\n \"product\": {\n \"id\": 2,\n \"name\":
+ \"Security How-to\",\n \"url_api\": \"http://localhost:8080/api/v2/products/2/\",\n
+ \ \"url_ui\": \"http://localhost:8080/product/2\"\n },\n \"product_type\":
+ {\n \"id\": 2,\n \"name\": \"ebooks\",\n \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n
+ \ \"url_ui\": \"http://localhost:8080/product/type/2\"\n },\n \"test\":
+ {\n \"id\": 125,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/125\"\n },\n \"title\":
+ \"Created/Updated 0 findings for Security How-to: 1st Quarter Engagement:
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/125\",\n \"user\": null\n
+ \ }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
Access-Control-Allow-Origin:
- '*'
- Content-Length:
- - '732'
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:31 GMT
+ - Fri, 16 Jan 2026 21:02:11 GMT
+ Transfer-Encoding:
+ - chunked
status:
code: 200
message: OK
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira.yaml
index 506624e78fa..c8d589c2f18 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:32.711+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:11.684+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - b7d70780-3fb5-4748-a056-edd145364886
+ - 8ba68176-9b28-4aa3-9258-f5bad716b19f
Atl-Traceid:
- - b7d707803fb54748a056edd145364886
+ - 8ba681769b284aa39258f5bad716b19f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:32 GMT
+ - Fri, 16 Jan 2026 21:02:11 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=320,atl-edge;dur=317,atl-edge-internal;dur=14,atl-edge-upstream;dur=304,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="89Ti-e0zg1BcLC_L6cDaIkgRvyHeEBIQxYbNJuLH56DQAYesbpEg4g==",cdn-downstream-fbl;dur=324
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=265,atl-edge;dur=176,atl-edge-internal;dur=16,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="praqT0Dv4Fyn3frs15CsmWSHhPSvcTJmdNwNcAWnmX2-MzyYmVvcig==",cdn-downstream-fbl;dur=268
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1d79c793a8ae16fbcc3957bd18e4b392.cloudfront.net (CloudFront)
+ - 1.1 1023ce3fdfbe06146e0996714c07ebcc.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 89Ti-e0zg1BcLC_L6cDaIkgRvyHeEBIQxYbNJuLH56DQAYesbpEg4g==
+ - praqT0Dv4Fyn3frs15CsmWSHhPSvcTJmdNwNcAWnmX2-MzyYmVvcig==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 97082c771f6bbb6af069f991e9c2b179
+ - fe58ea67fd9499784635f0e4fcf4c6cd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 945b17fd-9476-42d5-8424-5006892346c7
+ - 7f80499d-4638-473a-b2d5-875728e9a011
Atl-Traceid:
- - 945b17fd947642d584245006892346c7
+ - 7f80499d4638473ab2d5875728e9a011
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:34 GMT
+ - Fri, 16 Jan 2026 21:02:12 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=475,atl-edge;dur=473,atl-edge-internal;dur=14,atl-edge-upstream;dur=459,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="Y2WeaHwFuz6vldty_joasoz5cefIrXoTiWXgg_M4MgmXnTpbXv-1Dw==",cdn-downstream-fbl;dur=479
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=368,atl-edge;dur=345,atl-edge-internal;dur=16,atl-edge-upstream;dur=329,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="WV45qwCZ7vfCoy3L9QGWF_AHSWbnNIeDwPRKAjxpkO0cmPag2iEnEg==",cdn-downstream-fbl;dur=372
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 db987b94354bedc3a16788229c0e652c.cloudfront.net (CloudFront)
+ - 1.1 185338419e21d148fae1747402a58e8a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Y2WeaHwFuz6vldty_joasoz5cefIrXoTiWXgg_M4MgmXnTpbXv-1Dw==
+ - WV45qwCZ7vfCoy3L9QGWF_AHSWbnNIeDwPRKAjxpkO0cmPag2iEnEg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 519337604b62d001a02c630eda0f4f6b
+ - c20d1a21c042a5319698a7fe7a6e6887
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/40]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/109]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/341]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/341]\n*Defect Dojo link:* http://localhost:8080/finding/341
- (341)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/355]\n*Defect Dojo link:* http://localhost:8080/finding/355
+ (355)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]\n*Defect
- Dojo link:* http://localhost:8080/finding/340 (340)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]\n*Defect
+ Dojo link:* http://localhost:8080/finding/354 (354)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21313","key":"NTEST-3134","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21313"}'
+ string: '{"id":"24929","key":"NTEST-3214","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24929"}'
headers:
Atl-Request-Id:
- - d2324cdc-99b9-4c7c-a0d8-c256db2b6c0d
+ - af063a65-709d-49a5-ad19-c2929c636fa5
Atl-Traceid:
- - d2324cdc99b94c7ca0d8c256db2b6c0d
+ - af063a65709d49a5ad19c2929c636fa5
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:36 GMT
+ - Fri, 16 Jan 2026 21:02:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=881,atl-edge;dur=879,atl-edge-internal;dur=15,atl-edge-upstream;dur=863,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="KpUDDoMDDxHhYiOLU-Uz1M89iIW1tPSbJspJw8aK6lVLrgMG0tv6ZA==",cdn-downstream-fbl;dur=885
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1011,atl-edge;dur=988,atl-edge-internal;dur=15,atl-edge-upstream;dur=972,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="E6U4_RnQkDfMnqyiofg622uJS10uJhd741tzn3wnAmmpTOeHPZtLZw==",cdn-downstream-fbl;dur=1015
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9d6e86f5b232838ca6f2f480892525b2.cloudfront.net (CloudFront)
+ - 1.1 20c46424adb033d4de178e11a807b304.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - KpUDDoMDDxHhYiOLU-Uz1M89iIW1tPSbJspJw8aK6lVLrgMG0tv6ZA==
+ - E6U4_RnQkDfMnqyiofg622uJS10uJhd741tzn3wnAmmpTOeHPZtLZw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 7cb8535f640cf648b37888b4f9c5d14a
+ - b4e7e5b3ff20fb9d6d5c76915d40ad92
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3134
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3214
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21313","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21313","key":"NTEST-3134","fields":{"statuscategorychangedate":"2025-07-25T21:13:35.807+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24929","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24929","key":"NTEST-3214","fields":{"statuscategorychangedate":"2026-01-16T22:02:13.126+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3134/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3134/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:35.543+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012j3:","updated":"2025-07-25T21:13:35.613+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3214/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3214/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:12.737+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lj:","updated":"2026-01-16T22:02:12.895+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/40]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/109]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/341]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/341]\n*Defect Dojo link:* http://localhost:8080/finding/341
- (341)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/355]\n*Defect Dojo link:* http://localhost:8080/finding/355
+ (355)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]\n*Defect
- Dojo link:* http://localhost:8080/finding/340 (340)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]\n*Defect
+ Dojo link:* http://localhost:8080/finding/354 (354)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21313/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24929/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - c8d871f3-be01-411b-b51d-1ebed3abf846
+ - b2a107fe-d21f-49d7-b056-146e3d336eb1
Atl-Traceid:
- - c8d871f3be01411bb51d1ebed3abf846
+ - b2a107fed21f49d7b056146e3d336eb1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:37 GMT
+ - Fri, 16 Jan 2026 21:02:13 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=935,atl-edge;dur=933,atl-edge-internal;dur=20,atl-edge-upstream;dur=913,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="GWK4xxjrCD2Z5UO7TSquBwCMG4VTGFMf1UohM4SvdjKE9ZUi9qDewA==",cdn-downstream-fbl;dur=938
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=65,cdn-upstream-fbl;dur=354,atl-edge;dur=265,atl-edge-internal;dur=15,atl-edge-upstream;dur=249,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="mxidyFHuFziAfPGy2G-8IuFghzEbBQuhmIezOG0dIbCAP3iaZ2z4jQ==",cdn-downstream-fbl;dur=358
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e5b020a801bdf1ad3db7e2da019dad6c.cloudfront.net (CloudFront)
+ - 1.1 4548950ffe5bf7b4d2419a082d770c1a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - GWK4xxjrCD2Z5UO7TSquBwCMG4VTGFMf1UohM4SvdjKE9ZUi9qDewA==
+ - mxidyFHuFziAfPGy2G-8IuFghzEbBQuhmIezOG0dIbCAP3iaZ2z4jQ==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P2
X-Arequestid:
- - 403e04dd69cd5c4ad0758ebb86f807c0
+ - acc981344a46d72a840878e7e9845713
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21313
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24929
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21313","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21313","key":"NTEST-3134","fields":{"statuscategorychangedate":"2025-07-25T21:13:35.807+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24929","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24929","key":"NTEST-3214","fields":{"statuscategorychangedate":"2026-01-16T22:02:13.126+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3134/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3134/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:35.543+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012j3:","updated":"2025-07-25T21:13:35.613+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3214/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3214/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:12.737+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lj:","updated":"2026-01-16T22:02:12.895+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/40]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/109]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/341]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/341]\n*Defect Dojo link:* http://localhost:8080/finding/341
- (341)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/355]\n*Defect Dojo link:* http://localhost:8080/finding/355
+ (355)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/340]\n*Defect
- Dojo link:* http://localhost:8080/finding/340 (340)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/354]\n*Defect
+ Dojo link:* http://localhost:8080/finding/354 (354)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21313/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24929/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - cb8da327-715e-4e5c-bba6-c2d06518d1e0
+ - 26b904c1-bf8d-4219-a1d6-a454db87fbde
Atl-Traceid:
- - cb8da327715e4e5cbba6c2d06518d1e0
+ - 26b904c1bf8d4219a1d6a454db87fbde
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:39 GMT
+ - Fri, 16 Jan 2026 21:02:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=417,atl-edge;dur=415,atl-edge-internal;dur=16,atl-edge-upstream;dur=399,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="wPwD5_3hvv-TShohRVANeM_exXQ1AgnHcwX8wPDULKzxbqR6Ridpbg==",cdn-downstream-fbl;dur=421
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=264,atl-edge;dur=241,atl-edge-internal;dur=19,atl-edge-upstream;dur=219,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="qhtSrByMb5hPUMtvWUxhferAm1A5cchrag1ZAHhd4AW4NSvQeO4Dag==",cdn-downstream-fbl;dur=269
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8902bdfd4bf51d2d735e85d0656d36ae.cloudfront.net (CloudFront)
+ - 1.1 66c3751eb8a2afa1d635a1fd8a58a2ac.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - wPwD5_3hvv-TShohRVANeM_exXQ1AgnHcwX8wPDULKzxbqR6Ridpbg==
+ - qhtSrByMb5hPUMtvWUxhferAm1A5cchrag1ZAHhd4AW4NSvQeO4Dag==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P1
X-Arequestid:
- - 15ed180b24a2b8814ef78ad1f549b863
+ - 698dfd64411c84560c28956fd8ebce71
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:40.195+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:14.544+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 4ae162f2-1ed4-4c8b-91ab-ae9ca873d4c5
+ - 484a19ac-a4c7-47cb-b0d0-77f8f51b8974
Atl-Traceid:
- - 4ae162f21ed44c8b91abae9ca873d4c5
+ - 484a19aca4c747cbb0d077f8f51b8974
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:40 GMT
+ - Fri, 16 Jan 2026 21:02:14 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=346,atl-edge;dur=343,atl-edge-internal;dur=13,atl-edge-upstream;dur=330,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="DHqO8WX9-fifzayAEdXPOgbLe6Yq_P4tCr0LFOREBfQrR1H2xcL3Rw==",cdn-downstream-fbl;dur=349
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=189,atl-edge;dur=166,atl-edge-internal;dur=14,atl-edge-upstream;dur=152,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="upbjHJ2CaMVDrmdrUTgBZuV0nT1Z9MgT_JryZOCTFwcF8gLp77YUpw==",cdn-downstream-fbl;dur=192
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8a987ddeb53d46074ad1f07f669c10c4.cloudfront.net (CloudFront)
+ - 1.1 77cfd797d789c3b8bc1b8f2f8a42a9c6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - DHqO8WX9-fifzayAEdXPOgbLe6Yq_P4tCr0LFOREBfQrR1H2xcL3Rw==
+ - upbjHJ2CaMVDrmdrUTgBZuV0nT1Z9MgT_JryZOCTFwcF8gLp77YUpw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - 6fec032bfb730c32bc16e249ef37ab4c
+ - 56d8385103d904aca2d173259409f45f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - da53b33b-1796-4da5-9ca1-dbb57c1403f2
+ - 15de806a-b609-4d6c-81fb-98135fc02924
Atl-Traceid:
- - da53b33b17964da59ca1dbb57c1403f2
+ - 15de806ab6094d6c81fb98135fc02924
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:41 GMT
+ - Fri, 16 Jan 2026 21:02:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=489,atl-edge;dur=487,atl-edge-internal;dur=17,atl-edge-upstream;dur=470,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="6fKG9RVZlQY77F3MDUEoOmilxloyUtZr4BNEsR5qILk1ZMaTptVWRA==",cdn-downstream-fbl;dur=493
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=359,atl-edge;dur=336,atl-edge-internal;dur=16,atl-edge-upstream;dur=320,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="BC3XIMwl01ISTeJMRTyv1g47Peob9GMMzQEd0yWpN9PZY0d6f_7Rew==",cdn-downstream-fbl;dur=363
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 864ad552768d61fe107467e5c647c77a.cloudfront.net (CloudFront)
+ - 1.1 8e3b59cbfaa682579fb24502d1ad1194.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 6fKG9RVZlQY77F3MDUEoOmilxloyUtZr4BNEsR5qILk1ZMaTptVWRA==
+ - BC3XIMwl01ISTeJMRTyv1g47Peob9GMMzQEd0yWpN9PZY0d6f_7Rew==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 5776987a3deb97d6db9cd4c50451b4d9
+ - 36196ed193799886f6d3926e60611e6e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/41] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/110] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]\n*Defect
- Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]\n*Defect
+ Dojo link:* http://localhost:8080/finding/356 (356)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]\n*Defect Dojo link:* http://localhost:8080/finding/344
- (344)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]\n*Defect Dojo link:* http://localhost:8080/finding/358
+ (358)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21314","key":"NTEST-3135","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21314"}'
+ string: '{"id":"24930","key":"NTEST-3215","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24930"}'
headers:
Atl-Request-Id:
- - 8bde2199-81e6-4c37-ab6e-2b130b992714
+ - fee80330-ad7d-4e74-ab72-95f2c88f81ac
Atl-Traceid:
- - 8bde219981e64c37ab6e2b130b992714
+ - fee80330ad7d4e74ab7295f2c88f81ac
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:43 GMT
+ - Fri, 16 Jan 2026 21:02:15 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=900,atl-edge;dur=898,atl-edge-internal;dur=15,atl-edge-upstream;dur=883,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="DkhutqXuljXxxZdN8JeEJl51urFkSADAMJpMZCm5YBV6egDLrA_AGg==",cdn-downstream-fbl;dur=903
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=783,atl-edge;dur=760,atl-edge-internal;dur=16,atl-edge-upstream;dur=743,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="D5rTuwqg5iGUPR9HZdglurYmRU1zFjGgyIBjAbSNmKpe0qrDo7gIWQ==",cdn-downstream-fbl;dur=788
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1febefb7e39b5395820bafc78730e954.cloudfront.net (CloudFront)
+ - 1.1 9c5f0f2d909551d3aff789d9ac0f878a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - DkhutqXuljXxxZdN8JeEJl51urFkSADAMJpMZCm5YBV6egDLrA_AGg==
+ - D5rTuwqg5iGUPR9HZdglurYmRU1zFjGgyIBjAbSNmKpe0qrDo7gIWQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - 18d0ba2f4056212c0c65304551ec564d
+ - 89be46f090ae689d495ada30a0ae3369
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3135
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3215
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21314","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21314","key":"NTEST-3135","fields":{"statuscategorychangedate":"2025-07-25T21:13:43.335+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24930","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24930","key":"NTEST-3215","fields":{"statuscategorychangedate":"2026-01-16T22:02:15.723+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3135/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3135/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:43.087+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jb:","updated":"2025-07-25T21:13:43.186+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3215/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3215/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:15.474+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lr:","updated":"2026-01-16T22:02:15.568+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/41]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/110]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]\n*Defect
- Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]\n*Defect
+ Dojo link:* http://localhost:8080/finding/356 (356)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]\n*Defect
- Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]\n*Defect
+ Dojo link:* http://localhost:8080/finding/358 (358)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21314/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24930/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 83a6a918-7df9-4a9f-a034-5c14907b45d2
+ - 8f5ce838-8ef6-4beb-93b1-129f545adc0d
Atl-Traceid:
- - 83a6a9187df94a9fa0345c14907b45d2
+ - 8f5ce8388ef64beb93b1129f545adc0d
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:44 GMT
+ - Fri, 16 Jan 2026 21:02:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=408,atl-edge-internal;dur=15,atl-edge-upstream;dur=393,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="-vo3AFSwVDxW-Bmc6no-Zp_CXTCUXIum0g8wRRZ4u1o2xzkw83kSZw==",cdn-downstream-fbl;dur=412
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=308,atl-edge;dur=286,atl-edge-internal;dur=15,atl-edge-upstream;dur=271,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="c4AuN-En98A4qNR2Qn6TqLJUD3pGwDlZ5Icjcp0G1Um7fd0BU_SA_A==",cdn-downstream-fbl;dur=312
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 053b1a4cfd9215b4abb8a58ea35b06aa.cloudfront.net (CloudFront)
+ - 1.1 b86386058101394cf48b049b58f8d788.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - -vo3AFSwVDxW-Bmc6no-Zp_CXTCUXIum0g8wRRZ4u1o2xzkw83kSZw==
+ - c4AuN-En98A4qNR2Qn6TqLJUD3pGwDlZ5Icjcp0G1Um7fd0BU_SA_A==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P1
X-Arequestid:
- - d6ec74f5f261f530c5abd4d89d37c92f
+ - aea43daceafd461785331787cf844174
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21314
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24930
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21314","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21314","key":"NTEST-3135","fields":{"statuscategorychangedate":"2025-07-25T21:13:43.335+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24930","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24930","key":"NTEST-3215","fields":{"statuscategorychangedate":"2026-01-16T22:02:15.723+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3135/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3135/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:43.087+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jb:","updated":"2025-07-25T21:13:43.186+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3215/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3215/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:15.474+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lr:","updated":"2026-01-16T22:02:15.568+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/41]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/110]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/342]\n*Defect
- Dojo link:* http://localhost:8080/finding/342 (342)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/356]\n*Defect
+ Dojo link:* http://localhost:8080/finding/356 (356)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/344]\n*Defect
- Dojo link:* http://localhost:8080/finding/344 (344)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/358]\n*Defect
+ Dojo link:* http://localhost:8080/finding/358 (358)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21314/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24930/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - d8c60092-88de-4b82-9e5b-cdefef448a4f
+ - 3d455467-448e-42fb-a9cf-e4a1ae15a762
Atl-Traceid:
- - d8c6009288de4b829e5bcdefef448a4f
+ - 3d455467448e42fba9cfe4a1ae15a762
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:46 GMT
+ - Fri, 16 Jan 2026 21:02:16 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=389,atl-edge;dur=387,atl-edge-internal;dur=13,atl-edge-upstream;dur=374,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="OozcEn8YQIu46R_BLNxSm-URlPgV6GfGwa_a3-XPo-Q0LSVuzlu94g==",cdn-downstream-fbl;dur=393
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=313,atl-edge;dur=289,atl-edge-internal;dur=19,atl-edge-upstream;dur=268,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="153Wdm1UcencCd5xRxzSa51iM2K5Bt-porB8j4RfQ3jMNCyUYfViHQ==",cdn-downstream-fbl;dur=339
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1d3e75fe2262e8a6f4a318b2bf3e6570.cloudfront.net (CloudFront)
+ - 1.1 98d9402866aa771c6e6bbecb98c200aa.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - OozcEn8YQIu46R_BLNxSm-URlPgV6GfGwa_a3-XPo-Q0LSVuzlu94g==
+ - 153Wdm1UcencCd5xRxzSa51iM2K5Bt-porB8j4RfQ3jMNCyUYfViHQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P1
X-Arequestid:
- - 1f284d1fb0f629b4842ebdcc4671907e
+ - 06311a6666bf23e49a0fcda492e15a51
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:47.144+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:17.014+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - f4ea6957-dfaf-4b7a-b455-e605e2593a2d
+ - b3fcad7e-3066-4b1b-a823-67c0cb64c23b
Atl-Traceid:
- - f4ea6957dfaf4b7ab455e605e2593a2d
+ - b3fcad7e30664b1ba82367c0cb64c23b
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:47 GMT
+ - Fri, 16 Jan 2026 21:02:17 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=325,atl-edge;dur=322,atl-edge-internal;dur=13,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="kZmQwRsDiJ8Z985qyxwcQFt-_Flaz39dTstG-N8TC93DaUz95cBRYA==",cdn-downstream-fbl;dur=329
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=203,atl-edge;dur=180,atl-edge-internal;dur=13,atl-edge-upstream;dur=167,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="VNKqcOLndlAdzN4rXZOYJyl9GkZ70kzpeYLZb0EtHCH8FHCAZfhH3g==",cdn-downstream-fbl;dur=207
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a6b70b5c031397eba9646ba0eedbdb86.cloudfront.net (CloudFront)
+ - 1.1 1c80fe425edf82026702c486fb324fd0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - kZmQwRsDiJ8Z985qyxwcQFt-_Flaz39dTstG-N8TC93DaUz95cBRYA==
+ - VNKqcOLndlAdzN4rXZOYJyl9GkZ70kzpeYLZb0EtHCH8FHCAZfhH3g==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - 0ab03f20dab6b148e305f59d1534146e
+ - 24616b662144d2fd3a09f43be6d090e9
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 484fa426-7f43-472d-a695-4261adafe419
+ - 7e5b3430-288e-48f2-8761-e9bcba14ab1c
Atl-Traceid:
- - 484fa4267f43472da6954261adafe419
+ - 7e5b3430288e48f28761e9bcba14ab1c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:48 GMT
+ - Fri, 16 Jan 2026 21:02:17 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=469,atl-edge;dur=467,atl-edge-internal;dur=16,atl-edge-upstream;dur=450,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="Q9P8WAkl0Rten9VEn7AmgpHd5ogNCl5vKUK261Yxt3163g4Y59wK_g==",cdn-downstream-fbl;dur=473
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=304,atl-edge;dur=281,atl-edge-internal;dur=18,atl-edge-upstream;dur=262,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="wM7Q_MwO_v4IaELcvwrbbDm2vF8qt_r2n0VZw-1ASlt2Frr4h-8-Gg==",cdn-downstream-fbl;dur=308
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 30d965dd3bd4ca28c3aa1ccfc6be7c36.cloudfront.net (CloudFront)
+ - 1.1 aa7c02138e28876292fe4d4b8f22d312.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Q9P8WAkl0Rten9VEn7AmgpHd5ogNCl5vKUK261Yxt3163g4Y59wK_g==
+ - wM7Q_MwO_v4IaELcvwrbbDm2vF8qt_r2n0VZw-1ASlt2Frr4h-8-Gg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 4cd73aeea0954871b11127b6568d37ba
+ - 7ecaf897498e6c45bfda67c1f7881b75
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/42] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/111] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]\n*Defect
- Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]\n*Defect
+ Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2167'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21315","key":"NTEST-3136","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21315"}'
+ string: '{"id":"24931","key":"NTEST-3216","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24931"}'
headers:
Atl-Request-Id:
- - 79ee74dd-629b-43fd-982b-50c6c7be4940
+ - 77b59d18-ca93-467e-8cb8-25da795aeaed
Atl-Traceid:
- - 79ee74dd629b43fd982b50c6c7be4940
+ - 77b59d18ca93467e8cb825da795aeaed
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:50 GMT
+ - Fri, 16 Jan 2026 21:02:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=857,atl-edge;dur=856,atl-edge-internal;dur=15,atl-edge-upstream;dur=840,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="N4zsc8cIWBf-maPc6OnJWqVb-_V7gsE82eeYtKEamd8YLrW98P0hKQ==",cdn-downstream-fbl;dur=860
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=809,atl-edge;dur=787,atl-edge-internal;dur=25,atl-edge-upstream;dur=761,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="8wX0K3-rJMxvxHOd8wMFYmhHkzTcTTbzpm5XeS3JPZ0V2bqcalCp2g==",cdn-downstream-fbl;dur=813
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 59304f445e251c540e46633ed3dd4f64.cloudfront.net (CloudFront)
+ - 1.1 0d46192046615c37e895cbabe89b2382.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - N4zsc8cIWBf-maPc6OnJWqVb-_V7gsE82eeYtKEamd8YLrW98P0hKQ==
+ - 8wX0K3-rJMxvxHOd8wMFYmhHkzTcTTbzpm5XeS3JPZ0V2bqcalCp2g==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - ebb99adb01ba39bf2afc8ed6bcb04cb8
+ - cfd3f9fe49e15daa947e15fb4b03c9fd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3136
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3216
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21315","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21315","key":"NTEST-3136","fields":{"statuscategorychangedate":"2025-07-25T21:13:50.156+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24931","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24931","key":"NTEST-3216","fields":{"statuscategorychangedate":"2026-01-16T22:02:18.135+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3136/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3136/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:49.910+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jj:","updated":"2025-07-25T21:13:50.003+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3216/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3216/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:17.897+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lz:","updated":"2026-01-16T22:02:17.970+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/42]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/111]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]\n*Defect
- Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]\n*Defect
+ Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21315/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24931/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - d23d48c5-76c1-4e6e-accd-f6070cb82d38
+ - e4ecc696-72f3-4895-a9e7-93e2a2d543b7
Atl-Traceid:
- - d23d48c576c14e6eaccdf6070cb82d38
+ - e4ecc69672f34895a9e793e2a2d543b7
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:51 GMT
+ - Fri, 16 Jan 2026 21:02:18 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=416,atl-edge;dur=414,atl-edge-internal;dur=14,atl-edge-upstream;dur=400,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="TQdFm1Ugq7ApC-mlfnq2rrDeF1Wi9EYHRhm_76VyZsXj8HBOAfGvCg==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=333,atl-edge;dur=310,atl-edge-internal;dur=19,atl-edge-upstream;dur=285,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="WN1FboVcA5QeBTsIogdqifb3lZEVD8qItAT5a_mBRaNk8BJVRGhfnw==",cdn-downstream-fbl;dur=338
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 928b9a46c60991369db0a5ad58525eca.cloudfront.net (CloudFront)
+ - 1.1 02fc3cd955ad2ebfd334fd214c58f79a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - TQdFm1Ugq7ApC-mlfnq2rrDeF1Wi9EYHRhm_76VyZsXj8HBOAfGvCg==
+ - WN1FboVcA5QeBTsIogdqifb3lZEVD8qItAT5a_mBRaNk8BJVRGhfnw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - 1cb3056be0a00ac3ecc169525c4d9b12
+ - 1f6cba378802a282bbd9d41abd52c017
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21315
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24931
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21315","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21315","key":"NTEST-3136","fields":{"statuscategorychangedate":"2025-07-25T21:13:50.156+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24931","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24931","key":"NTEST-3216","fields":{"statuscategorychangedate":"2026-01-16T22:02:18.135+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3136/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3136/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:49.910+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jj:","updated":"2025-07-25T21:13:50.003+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3216/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3216/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:17.897+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014lz:","updated":"2026-01-16T22:02:17.970+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/42]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/111]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/121]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/343]\n*Defect
- Dojo link:* http://localhost:8080/finding/343 (343)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/357]\n*Defect
+ Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21315/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24931/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - fb0a52ca-b5b6-4059-aefa-1ad8eec00ceb
+ - 615c9adb-e701-4ddc-bb28-59e07cd65aeb
Atl-Traceid:
- - fb0a52cab5b64059aefa1ad8eec00ceb
+ - 615c9adbe7014ddcbb2859e07cd65aeb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:52 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=409,atl-edge;dur=408,atl-edge-internal;dur=16,atl-edge-upstream;dur=392,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="CO5x3wSkGasw1cOO9_zxb2JhKtcmxjzTyV4JJceraqvPUHWDEYFGag==",cdn-downstream-fbl;dur=413
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=280,atl-edge;dur=257,atl-edge-internal;dur=20,atl-edge-upstream;dur=237,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="WwXAw6SBieW6xUMZ5dGEUQ1M_1aNTP2DxYZK6oRO7EHp9s9lUeyWqA==",cdn-downstream-fbl;dur=285
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 82008a7e089b84e7f0a6d8d139a4e3de.cloudfront.net (CloudFront)
+ - 1.1 fdb71c154448c5637ac452d623bb2ad6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - CO5x3wSkGasw1cOO9_zxb2JhKtcmxjzTyV4JJceraqvPUHWDEYFGag==
+ - WwXAw6SBieW6xUMZ5dGEUQ1M_1aNTP2DxYZK6oRO7EHp9s9lUeyWqA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - c1c844c515337332b4d78cabc97e90fc
+ - a245740dc2827eb6d34283578c3f9b65
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/",
+ "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 121, "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/"}}'
+ 126, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/121/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/126/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 121, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 126, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 121,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/121\"\n },\n \"title\":
+ 126,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/126\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n \"url_ui\":
- \"http://localhost:8080/test/121\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n \"url_ui\":
+ \"http://localhost:8080/test/126\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:53 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/",
+ null, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 121, "url_ui": "http://localhost:8080/test/121", "url_api": "http://localhost:8080/api/v2/tests/121/"},
- "finding_count": 5, "findings": {"new": [{"id": 341, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/341",
- "url_api": "http://localhost:8080/api/v2/findings/341/"}, {"id": 342, "title":
+ 126, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/"},
+ "finding_count": 5, "findings": {"new": [{"id": 355, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/355",
+ "url_api": "http://localhost:8080/api/v2/findings/355/"}, {"id": 356, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/342", "url_api":
- "http://localhost:8080/api/v2/findings/342/"}, {"id": 340, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/356", "url_api":
+ "http://localhost:8080/api/v2/findings/356/"}, {"id": 354, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/340", "url_api": "http://localhost:8080/api/v2/findings/340/"},
- {"id": 343, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/343", "url_api":
- "http://localhost:8080/api/v2/findings/343/"}, {"id": 344, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/354", "url_api": "http://localhost:8080/api/v2/findings/354/"},
+ {"id": 357, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/357", "url_api":
+ "http://localhost:8080/api/v2/findings/357/"}, {"id": 358, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/344", "url_api":
- "http://localhost:8080/api/v2/findings/344/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/358", "url_api":
+ "http://localhost:8080/api/v2/findings/358/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 121, \\\"url_ui\\\": \\\"http://localhost:8080/test/121\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/121/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 341, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 126, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 355, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/341\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/341/\\\"}, {\\\"id\\\": 342, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/355\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/355/\\\"}, {\\\"id\\\": 356, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/342\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/342/\\\"},
- {\\\"id\\\": 340, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/356\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/356/\\\"},
+ {\\\"id\\\": 354, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/340\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/340/\\\"},
- {\\\"id\\\": 343, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/354\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/354/\\\"},
+ {\\\"id\\\": 357, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/343\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/343/\\\"},
- {\\\"id\\\": 344, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/357\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/357/\\\"},
+ {\\\"id\\\": 358, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/344\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/344/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/358\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/358/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 341,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 355,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/341/\",\n \"url_ui\": \"http://localhost:8080/finding/341\"\n
- \ },\n {\n \"id\": 342,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/355/\",\n \"url_ui\": \"http://localhost:8080/finding/355\"\n
+ \ },\n {\n \"id\": 356,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/342/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/342\"\n },\n
- \ {\n \"id\": 340,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/356/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/356\"\n },\n
+ \ {\n \"id\": 354,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/340/\",\n \"url_ui\": \"http://localhost:8080/finding/340\"\n
- \ },\n {\n \"id\": 343,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/354/\",\n \"url_ui\": \"http://localhost:8080/finding/354\"\n
+ \ },\n {\n \"id\": 357,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/343/\",\n \"url_ui\":
- \"http://localhost:8080/finding/343\"\n },\n {\n \"id\":
- 344,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/357/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/357\"\n },\n {\n \"id\":
+ 358,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/344/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/344\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/358/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/358\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 121,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/121\"\n },\n \"title\":
+ 126,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/126\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/121/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/121\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/126\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:53 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_critical.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_critical.yaml
index b857eca07ec..08cd697c9f7 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_critical.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_critical.yaml
@@ -2,14 +2,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/",
+ "url_ui": "http://localhost:8080/test/127", "url_api": "http://localhost:8080/api/v2/tests/127/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 122, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/"}}'
+ 127, "url_ui": "http://localhost:8080/test/127", "url_api": "http://localhost:8080/api/v2/tests/127/"}}'
headers:
Accept:
- application/json
@@ -24,7 +24,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -38,22 +38,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/122/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/127\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/127/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 122, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 127, \\\"url_ui\\\": \\\"http://localhost:8080/test/127\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/127/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -63,11 +63,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 122,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/122\"\n },\n \"title\":
+ 127,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/127/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/127\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n \"url_ui\":
- \"http://localhost:8080/test/122\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/127/\",\n \"url_ui\":
+ \"http://localhost:8080/test/127\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -76,7 +76,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:53 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Transfer-Encoding:
- chunked
status:
@@ -85,32 +85,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/",
+ null, "url_ui": "http://localhost:8080/test/127", "url_api": "http://localhost:8080/api/v2/tests/127/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 122, "url_ui": "http://localhost:8080/test/122", "url_api": "http://localhost:8080/api/v2/tests/122/"},
- "finding_count": 5, "findings": {"new": [{"id": 346, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/346",
- "url_api": "http://localhost:8080/api/v2/findings/346/"}, {"id": 347, "title":
+ 127, "url_ui": "http://localhost:8080/test/127", "url_api": "http://localhost:8080/api/v2/tests/127/"},
+ "finding_count": 5, "findings": {"new": [{"id": 360, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/360",
+ "url_api": "http://localhost:8080/api/v2/findings/360/"}, {"id": 361, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/347", "url_api":
- "http://localhost:8080/api/v2/findings/347/"}, {"id": 345, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/361", "url_api":
+ "http://localhost:8080/api/v2/findings/361/"}, {"id": 359, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/345", "url_api": "http://localhost:8080/api/v2/findings/345/"},
- {"id": 348, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/348", "url_api":
- "http://localhost:8080/api/v2/findings/348/"}, {"id": 349, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/359", "url_api": "http://localhost:8080/api/v2/findings/359/"},
+ {"id": 362, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/362", "url_api":
+ "http://localhost:8080/api/v2/findings/362/"}, {"id": 363, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/349", "url_api":
- "http://localhost:8080/api/v2/findings/349/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/363", "url_api":
+ "http://localhost:8080/api/v2/findings/363/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -126,7 +126,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -140,82 +140,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/127\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/127/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 122, \\\"url_ui\\\": \\\"http://localhost:8080/test/122\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/122/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 346, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 127, \\\"url_ui\\\": \\\"http://localhost:8080/test/127\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/127/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 360, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/346\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/346/\\\"}, {\\\"id\\\": 347, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/360\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/360/\\\"}, {\\\"id\\\": 361, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/347\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/347/\\\"},
- {\\\"id\\\": 345, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/361\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/361/\\\"},
+ {\\\"id\\\": 359, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/345\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/345/\\\"},
- {\\\"id\\\": 348, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/359\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/359/\\\"},
+ {\\\"id\\\": 362, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/348\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/348/\\\"},
- {\\\"id\\\": 349, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/362\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/362/\\\"},
+ {\\\"id\\\": 363, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/349\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/349/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/363\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/363/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 346,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 360,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/346/\",\n \"url_ui\": \"http://localhost:8080/finding/346\"\n
- \ },\n {\n \"id\": 347,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/360/\",\n \"url_ui\": \"http://localhost:8080/finding/360\"\n
+ \ },\n {\n \"id\": 361,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/347/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/347\"\n },\n
- \ {\n \"id\": 345,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/361/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/361\"\n },\n
+ \ {\n \"id\": 359,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/345/\",\n \"url_ui\": \"http://localhost:8080/finding/345\"\n
- \ },\n {\n \"id\": 348,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/359/\",\n \"url_ui\": \"http://localhost:8080/finding/359\"\n
+ \ },\n {\n \"id\": 362,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/348/\",\n \"url_ui\":
- \"http://localhost:8080/finding/348\"\n },\n {\n \"id\":
- 349,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/362/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/362\"\n },\n {\n \"id\":
+ 363,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/349/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/349\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/363/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/363\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 122,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/122\"\n },\n \"title\":
+ 127,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/127/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/127\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/122/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/122\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/127/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/127\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -225,7 +225,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:13:53 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_high.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_high.yaml
index 48ac289a545..8e31a7cf4ed 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_high.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_push_to_jira_minimum_high.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:13:54.788+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:19.844+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 1bdeb244-36e2-4fb2-8ae9-045ab1ca1f83
+ - 0b541351-12ec-41a1-8c54-bbe5eda5b428
Atl-Traceid:
- - 1bdeb24436e24fb28ae9045ab1ca1f83
+ - 0b54135112ec41a18c54bbe5eda5b428
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:54 GMT
+ - Fri, 16 Jan 2026 21:02:19 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=317,atl-edge;dur=315,atl-edge-internal;dur=14,atl-edge-upstream;dur=302,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="sO-3ny0CrwROgdw7865Ws0m9lldAUqXwkNmoscZq4AtPN7x8WiXAlw==",cdn-downstream-fbl;dur=320
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,atl-edge;dur=170,atl-edge-internal;dur=14,atl-edge-upstream;dur=155,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="5O9GGdp_8Ef4dHBcfgpRLrFm6yGtGzQaYSOo8BT7DX6Rm8QOhJ83Mw==",cdn-downstream-fbl;dur=196
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 af9df879c48ca18a8b67eda7edecc4a4.cloudfront.net (CloudFront)
+ - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - sO-3ny0CrwROgdw7865Ws0m9lldAUqXwkNmoscZq4AtPN7x8WiXAlw==
+ - 5O9GGdp_8Ef4dHBcfgpRLrFm6yGtGzQaYSOo8BT7DX6Rm8QOhJ83Mw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - 2e8523a64db25643c69b28747789d846
+ - 71931ec37ef961cd90dbbf9cf333e8ba
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - c6f642f5-6f4b-43bd-8fac-4041e8fdbe3a
+ - c21ca062-1d75-4080-b38f-b7eb79458716
Atl-Traceid:
- - c6f642f56f4b43bd8fac4041e8fdbe3a
+ - c21ca0621d754080b38fb7eb79458716
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:56 GMT
+ - Fri, 16 Jan 2026 21:02:20 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=500,atl-edge;dur=498,atl-edge-internal;dur=15,atl-edge-upstream;dur=483,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="X4ig0RuR3wMZto7E6dJqi2_U2L0tmKUOmWhgpCv-bgy0w6kjzU1rAQ==",cdn-downstream-fbl;dur=504
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=342,atl-edge;dur=319,atl-edge-internal;dur=16,atl-edge-upstream;dur=303,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Tj7uLDnnJBh8rX_rcseg3qLuRttu5wPKSUmW9__CaXX-qwivt9goJw==",cdn-downstream-fbl;dur=345
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 19f48f8a678ef4e5c0ca07e0cf91cbc6.cloudfront.net (CloudFront)
+ - 1.1 76f2e1e449c547c66904d58101f10ea6.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - X4ig0RuR3wMZto7E6dJqi2_U2L0tmKUOmWhgpCv-bgy0w6kjzU1rAQ==
+ - Tj7uLDnnJBh8rX_rcseg3qLuRttu5wPKSUmW9__CaXX-qwivt9goJw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P2
X-Arequestid:
- - 82e8f52b5db83ccbbd0ff4c5cfcd32ae
+ - 269e87a87f40e349f1bca817dcb77542
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/46]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/115]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]\n*Defect
- Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
+ Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]\n*Defect
- Dojo link:* http://localhost:8080/finding/350 (350)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]\n*Defect
+ Dojo link:* http://localhost:8080/finding/364 (364)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21316","key":"NTEST-3137","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21316"}'
+ string: '{"id":"24932","key":"NTEST-3217","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24932"}'
headers:
Atl-Request-Id:
- - 92f15711-5ef3-4b08-b22a-ac0c0bffd3a3
+ - bc318f65-317e-4248-8c43-3129dc66f4d8
Atl-Traceid:
- - 92f157115ef34b08b22aac0c0bffd3a3
+ - bc318f65317e42488c433129dc66f4d8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:58 GMT
+ - Fri, 16 Jan 2026 21:02:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=886,atl-edge;dur=885,atl-edge-internal;dur=15,atl-edge-upstream;dur=870,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="vLAxJZEomnML-6F6dZDb_HgtE0Ot40wzbWSdUYkg7r8DHU2uFORZfg==",cdn-downstream-fbl;dur=890
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=776,atl-edge;dur=753,atl-edge-internal;dur=18,atl-edge-upstream;dur=734,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="45lnWXjefkp7f0d3bNnKSas4Hej9ua5bZusL7-wV3IdPofb5ZHgtQQ==",cdn-downstream-fbl;dur=780
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 8dadf490fcfee4214b49a3509dc76616.cloudfront.net (CloudFront)
+ - 1.1 f0a2a95cb4d25b2414a9c1a7a754943e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - vLAxJZEomnML-6F6dZDb_HgtE0Ot40wzbWSdUYkg7r8DHU2uFORZfg==
+ - 45lnWXjefkp7f0d3bNnKSas4Hej9ua5bZusL7-wV3IdPofb5ZHgtQQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - bd2060fbb51c55967f962840de466b41
+ - 524860626fc93ce90df169d311b45771
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3137
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3217
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21316","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21316","key":"NTEST-3137","fields":{"statuscategorychangedate":"2025-07-25T21:13:57.877+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24932","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24932","key":"NTEST-3217","fields":{"statuscategorychangedate":"2026-01-16T22:02:21.038+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3137/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3137/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:57.601+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jr:","updated":"2025-07-25T21:13:57.679+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3217/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3217/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:20.759+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014m7:","updated":"2026-01-16T22:02:20.865+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/46]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/115]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]\n*Defect
- Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
+ Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]\n*Defect
- Dojo link:* http://localhost:8080/finding/350 (350)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]\n*Defect
+ Dojo link:* http://localhost:8080/finding/364 (364)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21316/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24932/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 06a9bb22-d047-4f00-b215-eb2ec17c610e
+ - 113d1ee5-8da2-4cd7-8508-89aae7fcf288
Atl-Traceid:
- - 06a9bb22d0474f00b215eb2ec17c610e
+ - 113d1ee58da24cd7850889aae7fcf288
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:13:59 GMT
+ - Fri, 16 Jan 2026 21:02:21 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=969,atl-edge;dur=967,atl-edge-internal;dur=14,atl-edge-upstream;dur=952,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="I2ZgprPgPxReqG6zV0EoRoaFeGPOdWFHVGLuDprZYe6PglizjAbzQw==",cdn-downstream-fbl;dur=973
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=295,atl-edge;dur=271,atl-edge-internal;dur=15,atl-edge-upstream;dur=254,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="U0j11_zcrbbY8PIPS2SCWTOf4hGblvA03qpIb9un73BZrNS6QXhkLA==",cdn-downstream-fbl;dur=299
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 e80732d7ef726bed77c3f67a8339cc96.cloudfront.net (CloudFront)
+ - 1.1 44e92eddc431cc09e1e2c5b24edc90f8.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - I2ZgprPgPxReqG6zV0EoRoaFeGPOdWFHVGLuDprZYe6PglizjAbzQw==
+ - U0j11_zcrbbY8PIPS2SCWTOf4hGblvA03qpIb9un73BZrNS6QXhkLA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - 0db41b9eb09724200b7e1bd4b0bb48ba
+ - bc516055a8a8485b547f085f197eb2d6
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21316
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24932
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21316","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21316","key":"NTEST-3137","fields":{"statuscategorychangedate":"2025-07-25T21:13:57.877+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24932","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24932","key":"NTEST-3217","fields":{"statuscategorychangedate":"2026-01-16T22:02:21.038+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3137/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3137/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:13:57.601+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jr:","updated":"2025-07-25T21:13:57.679+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3217/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3217/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:20.759+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014m7:","updated":"2026-01-16T22:02:20.865+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/46]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/115]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/351]\n*Defect
- Dojo link:* http://localhost:8080/finding/351 (351)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
+ Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/350]\n*Defect
- Dojo link:* http://localhost:8080/finding/350 (350)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/364]\n*Defect
+ Dojo link:* http://localhost:8080/finding/364 (364)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21316/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24932/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - d17646a0-1d17-4055-9a9c-75c037ee7b03
+ - fe0d98fe-66aa-4502-a057-914fd588ddeb
Atl-Traceid:
- - d17646a01d1740559a9c75c037ee7b03
+ - fe0d98fe66aa4502a057914fd588ddeb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:01 GMT
+ - Fri, 16 Jan 2026 21:02:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=444,atl-edge;dur=442,atl-edge-internal;dur=15,atl-edge-upstream;dur=427,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="GRA8jbOORq1fHYD_WBYTzS17U5BITDNv-WdvVXCJ-_1enwu4lc9pZg==",cdn-downstream-fbl;dur=447
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=283,atl-edge;dur=259,atl-edge-internal;dur=16,atl-edge-upstream;dur=243,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="NAejLT5yNbBaZ1TvDNks5LtXox4BkymdcwsAJPUGaZN3psZ21m8qZA==",cdn-downstream-fbl;dur=287
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 03b68196a4924b2e14289edfecca0cae.cloudfront.net (CloudFront)
+ - 1.1 56a79b3a2ac1e2942686c2337f96fb72.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - GRA8jbOORq1fHYD_WBYTzS17U5BITDNv-WdvVXCJ-_1enwu4lc9pZg==
+ - NAejLT5yNbBaZ1TvDNks5LtXox4BkymdcwsAJPUGaZN3psZ21m8qZA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P3
X-Arequestid:
- - adeaa3699ee815bf776c339e01343c24
+ - f25cad3373b02febc185c4797e0ed5f4
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:02.346+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:22.495+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 2c942c7c-27dc-4cb5-b2df-e8ae398acaa7
+ - b494eafe-268a-49cd-9509-6bf5fba01bd2
Atl-Traceid:
- - 2c942c7c27dc4cb5b2dfe8ae398acaa7
+ - b494eafe268a49cd95096bf5fba01bd2
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:02 GMT
+ - Fri, 16 Jan 2026 21:02:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=313,atl-edge;dur=311,atl-edge-internal;dur=15,atl-edge-upstream;dur=296,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="gwxBdPLr7aFU8ks1P6Lhrj51o0zAOKfk8AG8Ygi-dNHq-_YZYsuncw==",cdn-downstream-fbl;dur=317
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=188,atl-edge;dur=164,atl-edge-internal;dur=13,atl-edge-upstream;dur=151,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="MlDEMLcVV0CQovc6MTGKqG1_V-wDcHsJ6aSPRQhlLaCa28xNJ8l19Q==",cdn-downstream-fbl;dur=192
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 332185989ef2da97d1a56bdaee204b78.cloudfront.net (CloudFront)
+ - 1.1 153b67ebb1db442b5cea7f360e7f8cb6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - gwxBdPLr7aFU8ks1P6Lhrj51o0zAOKfk8AG8Ygi-dNHq-_YZYsuncw==
+ - MlDEMLcVV0CQovc6MTGKqG1_V-wDcHsJ6aSPRQhlLaCa28xNJ8l19Q==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - 74b24ba0397045d42ee41b6b67b6f315
+ - 7ab49e56db381933c02c9722049aa44e
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - e2d1b80d-84a1-4bff-903a-10fd5ce7b5ac
+ - 0a4c5f95-e007-4f47-8a13-cadd8fc85890
Atl-Traceid:
- - e2d1b80d84a14bff903a10fd5ce7b5ac
+ - 0a4c5f95e0074f478a13cadd8fc85890
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:03 GMT
+ - Fri, 16 Jan 2026 21:02:22 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=541,atl-edge;dur=539,atl-edge-internal;dur=20,atl-edge-upstream;dur=520,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="l5XLdxuszGab_WqHjOz-eRIcea-2H8-3WINI7u0oG3_lOCk827aaFQ==",cdn-downstream-fbl;dur=545
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=342,atl-edge;dur=319,atl-edge-internal;dur=18,atl-edge-upstream;dur=301,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="qRMs_NaY59e-HEsGMgDNeRPX5jhIhA63LhSquyZDb8lPNFGhvAfVEQ==",cdn-downstream-fbl;dur=345
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 cf3f6fdeca566994c58f318f9ac55680.cloudfront.net (CloudFront)
+ - 1.1 4665a13a9a7d99c0536b8829f2bef2e8.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - l5XLdxuszGab_WqHjOz-eRIcea-2H8-3WINI7u0oG3_lOCk827aaFQ==
+ - qRMs_NaY59e-HEsGMgDNeRPX5jhIhA63LhSquyZDb8lPNFGhvAfVEQ==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - 473abb5bf24d2f0fdc4ee88bed30e20a
+ - 485bf071d65169ab30d596742594629b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,28 +674,28 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/47] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/116] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Remote Code Execution -
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]\n*Defect Dojo link:* http://localhost:8080/finding/352
- (352)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]\n*Defect Dojo link:* http://localhost:8080/finding/366
+ (366)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -697,8 +725,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]\n*Defect Dojo link:* http://localhost:8080/finding/354
- (354)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]\n*Defect Dojo link:* http://localhost:8080/finding/368
+ (368)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -735,21 +763,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21317","key":"NTEST-3138","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21317"}'
+ string: '{"id":"24933","key":"NTEST-3218","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24933"}'
headers:
Atl-Request-Id:
- - 053b0069-2d31-48b4-a415-3bd6922c07d6
+ - f5427c50-e0d6-46a2-8766-1840676d01d1
Atl-Traceid:
- - 053b00692d3148b4a4153bd6922c07d6
+ - f5427c50e0d646a287661840676d01d1
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -757,9 +785,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:05 GMT
+ - Fri, 16 Jan 2026 21:02:23 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -767,7 +795,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=960,atl-edge;dur=957,atl-edge-internal;dur=14,atl-edge-upstream;dur=943,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="imEKnKJRZoRR91LslONQrJMSYRJFaK88HCkrbPeJiw7Xc6AmvVKrtA==",cdn-downstream-fbl;dur=963
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=908,atl-edge;dur=883,atl-edge-internal;dur=15,atl-edge-upstream;dur=868,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="cu2JxVKZA75vkPKqwvlDFrjyYXBrA5ZDcNZbL-QpvuQ_xBObI5UmuA==",cdn-downstream-fbl;dur=914
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -777,19 +805,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 9478009849c2f6b9551c4c5c23842910.cloudfront.net (CloudFront)
+ - 1.1 badefad2d1fb92bb4620df1ce11d8c92.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - imEKnKJRZoRR91LslONQrJMSYRJFaK88HCkrbPeJiw7Xc6AmvVKrtA==
+ - cu2JxVKZA75vkPKqwvlDFrjyYXBrA5ZDcNZbL-QpvuQ_xBObI5UmuA==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P2
X-Arequestid:
- - b8e606d4036be496cc11ade75902923d
+ - 5068f463eabbe8fb1abc61cddf6eda6a
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -809,41 +841,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3138
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3218
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21317","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21317","key":"NTEST-3138","fields":{"statuscategorychangedate":"2025-07-25T21:14:05.551+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24933","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24933","key":"NTEST-3218","fields":{"statuscategorychangedate":"2026-01-16T22:02:23.823+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3138/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3138/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:05.264+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jz:","updated":"2025-07-25T21:14:05.357+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3218/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3218/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:23.518+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mf:","updated":"2026-01-16T22:02:23.641+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/47]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/116]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Remote Code Execution
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]\n*Defect
- Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]\n*Defect
+ Dojo link:* http://localhost:8080/finding/366 (366)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -873,9 +905,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]\n*Defect
- Dojo link:* http://localhost:8080/finding/354 (354)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]\n*Defect
+ Dojo link:* http://localhost:8080/finding/368 (368)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -902,12 +934,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21317/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24933/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 64b09ff0-c55f-4215-a5d0-f6ef9a7fbb26
+ - c3ee500d-a273-4a0e-98ed-93b4cd8177bf
Atl-Traceid:
- - 64b09ff0c55f4215a5d0f6ef9a7fbb26
+ - c3ee500da2734a0e98ed93b4cd8177bf
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -917,9 +949,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:07 GMT
+ - Fri, 16 Jan 2026 21:02:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -927,7 +959,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=401,atl-edge;dur=399,atl-edge-internal;dur=14,atl-edge-upstream;dur=384,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="IMbPmev_LhJztPyDYNr9j3Gkl6TlKpAFj1QAiqMU9JOg4WOSr9f-kQ==",cdn-downstream-fbl;dur=405
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=342,atl-edge;dur=319,atl-edge-internal;dur=33,atl-edge-upstream;dur=285,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="Lyf5-BF0Nux-uR8IA8XDXQFYMqt6Gqn3JtD3kwoseLcvQpRGs6QWbA==",cdn-downstream-fbl;dur=345
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -937,19 +969,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 adb4605fb7528573053aec50d6f562c8.cloudfront.net (CloudFront)
+ - 1.1 cb4937748c19bcccb40a5a5875f01552.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - IMbPmev_LhJztPyDYNr9j3Gkl6TlKpAFj1QAiqMU9JOg4WOSr9f-kQ==
+ - Lyf5-BF0Nux-uR8IA8XDXQFYMqt6Gqn3JtD3kwoseLcvQpRGs6QWbA==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - 0a101c8caf8bfa9dcc77056327dbcf81
+ - 11edfad47fbc083440e639f63cd91108
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -969,41 +1005,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21317
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24933
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21317","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21317","key":"NTEST-3138","fields":{"statuscategorychangedate":"2025-07-25T21:14:05.551+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24933","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24933","key":"NTEST-3218","fields":{"statuscategorychangedate":"2026-01-16T22:02:23.823+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3138/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3138/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:05.264+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012jz:","updated":"2025-07-25T21:14:05.357+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3218/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3218/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:23.518+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mf:","updated":"2026-01-16T22:02:23.641+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/47]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/116]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/123]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/128]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]|Active,
Verified|\n\n\n\n\n\n\n\n\n\n\nh1. Findings\n\nh3. [Remote Code Execution
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/352]\n*Defect
- Dojo link:* http://localhost:8080/finding/352 (352)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/366]\n*Defect
+ Dojo link:* http://localhost:8080/finding/366 (366)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1033,9 +1069,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/354]\n*Defect
- Dojo link:* http://localhost:8080/finding/354 (354)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/368]\n*Defect
+ Dojo link:* http://localhost:8080/finding/368 (368)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1062,12 +1098,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21317/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24933/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 59f0d42e-6b6b-426e-9be3-c0ea5dbd885b
+ - 9bf3fa82-74f2-4377-be76-37cc03b51193
Atl-Traceid:
- - 59f0d42e6b6b426e9be3c0ea5dbd885b
+ - 9bf3fa8274f24377be7637cc03b51193
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1077,9 +1113,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:08 GMT
+ - Fri, 16 Jan 2026 21:02:24 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1087,7 +1123,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=414,atl-edge;dur=412,atl-edge-internal;dur=14,atl-edge-upstream;dur=398,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="FDp3HTw2vho-3mbSVwGK28dF4lasfTQ6c7CirERCkLH9ANsim6aJCw==",cdn-downstream-fbl;dur=417
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=333,atl-edge;dur=309,atl-edge-internal;dur=19,atl-edge-upstream;dur=291,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="CLSN3Bi90l3ZxSkyRhzgVa0SB4Pj_WZCt5B0A9V3HQF1wTqsBWKrnA==",cdn-downstream-fbl;dur=336
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1097,19 +1133,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 901fdc9beff7ff35478f18c7b70da04e.cloudfront.net (CloudFront)
+ - 1.1 5ca5d4f769888ca013d817040942ebf2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - FDp3HTw2vho-3mbSVwGK28dF4lasfTQ6c7CirERCkLH9ANsim6aJCw==
+ - CLSN3Bi90l3ZxSkyRhzgVa0SB4Pj_WZCt5B0A9V3HQF1wTqsBWKrnA==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - 2357ad9acc692b2c7929a4348a57c613
+ - 9df2068a87606566bfa3dcfa92257b41
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1118,14 +1158,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/",
+ "url_ui": "http://localhost:8080/test/128", "url_api": "http://localhost:8080/api/v2/tests/128/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 123, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/"}}'
+ 128, "url_ui": "http://localhost:8080/test/128", "url_api": "http://localhost:8080/api/v2/tests/128/"}}'
headers:
Accept:
- application/json
@@ -1140,7 +1180,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1154,22 +1194,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/123/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/128\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/128/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 123, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 128, \\\"url_ui\\\": \\\"http://localhost:8080/test/128\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/128/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1179,11 +1219,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 123,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/123\"\n },\n \"title\":
+ 128,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/128/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/128\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n \"url_ui\":
- \"http://localhost:8080/test/123\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/128/\",\n \"url_ui\":
+ \"http://localhost:8080/test/128\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1192,7 +1232,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:08 GMT
+ - Fri, 16 Jan 2026 21:02:24 GMT
Transfer-Encoding:
- chunked
status:
@@ -1201,32 +1241,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/",
+ null, "url_ui": "http://localhost:8080/test/128", "url_api": "http://localhost:8080/api/v2/tests/128/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 123, "url_ui": "http://localhost:8080/test/123", "url_api": "http://localhost:8080/api/v2/tests/123/"},
- "finding_count": 5, "findings": {"new": [{"id": 351, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/351",
- "url_api": "http://localhost:8080/api/v2/findings/351/"}, {"id": 352, "title":
+ 128, "url_ui": "http://localhost:8080/test/128", "url_api": "http://localhost:8080/api/v2/tests/128/"},
+ "finding_count": 5, "findings": {"new": [{"id": 365, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/365",
+ "url_api": "http://localhost:8080/api/v2/findings/365/"}, {"id": 366, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/352", "url_api":
- "http://localhost:8080/api/v2/findings/352/"}, {"id": 350, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/366", "url_api":
+ "http://localhost:8080/api/v2/findings/366/"}, {"id": 364, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/350", "url_api": "http://localhost:8080/api/v2/findings/350/"},
- {"id": 353, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/353", "url_api":
- "http://localhost:8080/api/v2/findings/353/"}, {"id": 354, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/364", "url_api": "http://localhost:8080/api/v2/findings/364/"},
+ {"id": 367, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/367", "url_api":
+ "http://localhost:8080/api/v2/findings/367/"}, {"id": 368, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/354", "url_api":
- "http://localhost:8080/api/v2/findings/354/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/368", "url_api":
+ "http://localhost:8080/api/v2/findings/368/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1242,7 +1282,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1256,82 +1296,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/128\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/128/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 123, \\\"url_ui\\\": \\\"http://localhost:8080/test/123\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/123/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 351, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 128, \\\"url_ui\\\": \\\"http://localhost:8080/test/128\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/128/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 365, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/351\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/351/\\\"}, {\\\"id\\\": 352, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/365\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/365/\\\"}, {\\\"id\\\": 366, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/352\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/352/\\\"},
- {\\\"id\\\": 350, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/366\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/366/\\\"},
+ {\\\"id\\\": 364, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/350\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/350/\\\"},
- {\\\"id\\\": 353, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/364\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/364/\\\"},
+ {\\\"id\\\": 367, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/353\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/353/\\\"},
- {\\\"id\\\": 354, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/367\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/367/\\\"},
+ {\\\"id\\\": 368, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/354\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/354/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/368\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/368/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 351,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 365,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/351/\",\n \"url_ui\": \"http://localhost:8080/finding/351\"\n
- \ },\n {\n \"id\": 352,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/365/\",\n \"url_ui\": \"http://localhost:8080/finding/365\"\n
+ \ },\n {\n \"id\": 366,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/352/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/352\"\n },\n
- \ {\n \"id\": 350,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/366/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/366\"\n },\n
+ \ {\n \"id\": 364,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/350/\",\n \"url_ui\": \"http://localhost:8080/finding/350\"\n
- \ },\n {\n \"id\": 353,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/364/\",\n \"url_ui\": \"http://localhost:8080/finding/364\"\n
+ \ },\n {\n \"id\": 367,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/353/\",\n \"url_ui\":
- \"http://localhost:8080/finding/353\"\n },\n {\n \"id\":
- 354,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/367/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/367\"\n },\n {\n \"id\":
+ 368,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/354/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/354\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/368/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/368\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 123,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/123\"\n },\n \"title\":
+ 128,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/128/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/128\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/123/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/123\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/128/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/128\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1341,7 +1381,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:08 GMT
+ - Fri, 16 Jan 2026 21:02:24 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_twice_push_to_jira.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_twice_push_to_jira.yaml
index 408f7adc6b0..132d68d5ea0 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_twice_push_to_jira.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_twice_push_to_jira.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:09.809+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:25.248+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - c51c9387-2093-4dbd-b97f-3aaf00307d3e
+ - 1b36dba0-0ba1-4c0e-8d10-123e9b736d8f
Atl-Traceid:
- - c51c938720934dbdb97f3aaf00307d3e
+ - 1b36dba00ba14c0e8d10123e9b736d8f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:09 GMT
+ - Fri, 16 Jan 2026 21:02:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=331,atl-edge;dur=324,atl-edge-internal;dur=13,atl-edge-upstream;dur=310,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="Db6tV41wUifG4AqFUFwvkR_Tz6maFxgfP-yEaeCBHvaSJFx3KqKgqg==",cdn-downstream-fbl;dur=334
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=206,atl-edge;dur=183,atl-edge-internal;dur=14,atl-edge-upstream;dur=169,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="5h905Szd1o-5EdnBDxNOgfXve_Z8WkgrqTQk21Z4g8KtiIDUwBqRKA==",cdn-downstream-fbl;dur=210
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 dc7f2062b70b5b710c1b09d21b43f900.cloudfront.net (CloudFront)
+ - 1.1 43eacc46a8d7338068c3e681a16f62be.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Db6tV41wUifG4AqFUFwvkR_Tz6maFxgfP-yEaeCBHvaSJFx3KqKgqg==
+ - 5h905Szd1o-5EdnBDxNOgfXve_Z8WkgrqTQk21Z4g8KtiIDUwBqRKA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 3249559d7c96ab28ab8333e88ad658e5
+ - 920ae37f4f23b89e7fb5bfb499fb3523
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - d54c177e-21d2-4416-b618-1607cc53b6df
+ - 774bab74-10c5-444f-97c8-53c0b361f81c
Atl-Traceid:
- - d54c177e21d24416b6181607cc53b6df
+ - 774bab7410c5444f97c853c0b361f81c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:11 GMT
+ - Fri, 16 Jan 2026 21:02:25 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=484,atl-edge;dur=479,atl-edge-internal;dur=16,atl-edge-upstream;dur=463,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="FYpPAK-nw3QWD0MM-uB30cy7dOHjf_JccA4J5VH_V2_b_NDyQBI3pg==",cdn-downstream-fbl;dur=488
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=378,atl-edge;dur=356,atl-edge-internal;dur=19,atl-edge-upstream;dur=337,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="Zlsl__zLykJFboizEkijMxH75t041cC8-Np9TRnHjTW8kHqKacGh6w==",cdn-downstream-fbl;dur=383
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1061288c3b70629c909a1e67ad3bde84.cloudfront.net (CloudFront)
+ - 1.1 66b4cf5fe1131d403a242f2f9f334158.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - FYpPAK-nw3QWD0MM-uB30cy7dOHjf_JccA4J5VH_V2_b_NDyQBI3pg==
+ - Zlsl__zLykJFboizEkijMxH75t041cC8-Np9TRnHjTW8kHqKacGh6w==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P3
X-Arequestid:
- - 9e75fbe7321322adb000ea1bbb7e0ef1
+ - d21d1d1f27f9ae85e5597faea0b185bd
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/49]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/118]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/356]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/370]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/356]\n*Defect Dojo link:* http://localhost:8080/finding/356
- (356)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/370]\n*Defect Dojo link:* http://localhost:8080/finding/370
+ (370)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]\n*Defect
- Dojo link:* http://localhost:8080/finding/355 (355)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]\n*Defect
+ Dojo link:* http://localhost:8080/finding/369 (369)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21318","key":"NTEST-3139","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21318"}'
+ string: '{"id":"24934","key":"NTEST-3219","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24934"}'
headers:
Atl-Request-Id:
- - 8f80ec97-a55e-46ed-9508-346a55d6dc34
+ - cf773af4-e373-44f8-abfb-40e1ab3e9661
Atl-Traceid:
- - 8f80ec97a55e46ed9508346a55d6dc34
+ - cf773af4e37344f8abfb40e1ab3e9661
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:13 GMT
+ - Fri, 16 Jan 2026 21:02:26 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=856,atl-edge;dur=854,atl-edge-internal;dur=15,atl-edge-upstream;dur=839,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="xcV6VuOGqeEgfe-JVizGfrjwdIAcAQX-FSAUL3A0cCXFp58kqgfwXw==",cdn-downstream-fbl;dur=859
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=771,atl-edge;dur=749,atl-edge-internal;dur=22,atl-edge-upstream;dur=726,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="52o6T5Jj9Q7nXCa4fC9k0ywDv4c_fGgunuc-j05wwf1qT0oy4O8A_A==",cdn-downstream-fbl;dur=779
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 6eb4925a459e5104745cfd7f77596766.cloudfront.net (CloudFront)
+ - 1.1 47bd30b1233fcd4bea962db4946b0ff2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - xcV6VuOGqeEgfe-JVizGfrjwdIAcAQX-FSAUL3A0cCXFp58kqgfwXw==
+ - 52o6T5Jj9Q7nXCa4fC9k0ywDv4c_fGgunuc-j05wwf1qT0oy4O8A_A==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 5a0c4fbb9aa18379afb1dff6a424c5d6
+ - ab027842de57d878cd8f9e7e2ea2c887
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3139
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3219
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21318","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21318","key":"NTEST-3139","fields":{"statuscategorychangedate":"2025-07-25T21:14:12.859+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24934","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24934","key":"NTEST-3219","fields":{"statuscategorychangedate":"2026-01-16T22:02:26.492+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3139/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3139/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:12.637+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012k7:","updated":"2025-07-25T21:14:12.724+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3219/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3219/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:26.239+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mn:","updated":"2026-01-16T22:02:26.322+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/49]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/118]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/356]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/370]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/356]\n*Defect Dojo link:* http://localhost:8080/finding/356
- (356)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/370]\n*Defect Dojo link:* http://localhost:8080/finding/370
+ (370)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]\n*Defect
- Dojo link:* http://localhost:8080/finding/355 (355)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]\n*Defect
+ Dojo link:* http://localhost:8080/finding/369 (369)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21318/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24934/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4a335653-b47b-478a-bce2-393ca5dd8b65
+ - b557288e-456d-442b-9e72-55b923fada47
Atl-Traceid:
- - 4a335653b47b478abce2393ca5dd8b65
+ - b557288e456d442b9e7255b923fada47
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:14 GMT
+ - Fri, 16 Jan 2026 21:02:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=428,atl-edge;dur=425,atl-edge-internal;dur=17,atl-edge-upstream;dur=408,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="hYoMjHE_ko3t_pmy_Bcmx50A28ChxGXPL_zTR_HLKHEYuAPB-1Htlg==",cdn-downstream-fbl;dur=431
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=279,atl-edge;dur=256,atl-edge-internal;dur=16,atl-edge-upstream;dur=241,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="IhIcJn3-66q5S4dGLOTG3GGw2lCEY57hMciI1pB4V21a7G-vlutMGQ==",cdn-downstream-fbl;dur=282
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 16481a07c9d54ca0e038ad1d2aec824a.cloudfront.net (CloudFront)
+ - 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hYoMjHE_ko3t_pmy_Bcmx50A28ChxGXPL_zTR_HLKHEYuAPB-1Htlg==
+ - IhIcJn3-66q5S4dGLOTG3GGw2lCEY57hMciI1pB4V21a7G-vlutMGQ==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - dae6ab1c577a1025ed002b8062a685b7
+ - 9e96e1da5818593c47d5b94b00bff9a7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21318
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24934
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21318","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21318","key":"NTEST-3139","fields":{"statuscategorychangedate":"2025-07-25T21:14:12.859+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24934","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24934","key":"NTEST-3219","fields":{"statuscategorychangedate":"2026-01-16T22:02:26.492+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3139/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3139/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:12.637+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012k7:","updated":"2025-07-25T21:14:12.724+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3219/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3219/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:26.239+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mn:","updated":"2026-01-16T22:02:26.322+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/49]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/118]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/356]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/370]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/356]\n*Defect Dojo link:* http://localhost:8080/finding/356
- (356)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/370]\n*Defect Dojo link:* http://localhost:8080/finding/370
+ (370)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/355]\n*Defect
- Dojo link:* http://localhost:8080/finding/355 (355)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/369]\n*Defect
+ Dojo link:* http://localhost:8080/finding/369 (369)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21318/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24934/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - f2da779e-fc02-40be-b654-052059998bfd
+ - df7e23e8-9d31-478d-ab82-db3051e5accb
Atl-Traceid:
- - f2da779efc0240beb654052059998bfd
+ - df7e23e89d31478dab82db3051e5accb
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:15 GMT
+ - Fri, 16 Jan 2026 21:02:27 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=399,atl-edge;dur=397,atl-edge-internal;dur=15,atl-edge-upstream;dur=382,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="iCSV9F-1oY66cTid-z1YBXC2OKWIgJfVd3CVgYlJ4-GWYsELdZQltw==",cdn-downstream-fbl;dur=403
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=333,atl-edge;dur=310,atl-edge-internal;dur=17,atl-edge-upstream;dur=293,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="KjWTr4IPh8kYjcGku1I8f_LQ-PzzFv3R4Rd_TFFLBe4thY5IhFYj3Q==",cdn-downstream-fbl;dur=337
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4279a60193243ca3cf62feedc7fe581e.cloudfront.net (CloudFront)
+ - 1.1 93a2323067b2c60f3b86c822765cf3d2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - iCSV9F-1oY66cTid-z1YBXC2OKWIgJfVd3CVgYlJ4-GWYsELdZQltw==
+ - KjWTr4IPh8kYjcGku1I8f_LQ-PzzFv3R4Rd_TFFLBe4thY5IhFYj3Q==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 9f06933af69d2fa1cee37ae5cbcbddfa
+ - 3484b936be9f87022e2e59d516e3e345
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:16.719+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:27.973+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 6a70ef12-c773-4948-b25e-787f5d786580
+ - 504d80cf-b79e-47c6-ac33-97f04158ef13
Atl-Traceid:
- - 6a70ef12c7734948b25e787f5d786580
+ - 504d80cfb79e47c6ac3397f04158ef13
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:16 GMT
+ - Fri, 16 Jan 2026 21:02:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=323,atl-edge;dur=321,atl-edge-internal;dur=15,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="1Xi7Ziewh9POnHUTstKV_vwmnsq6i9tTkk0UmWAIGTtDNPQXz6I0Xg==",cdn-downstream-fbl;dur=327
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=426,atl-edge;dur=403,atl-edge-internal;dur=13,atl-edge-upstream;dur=390,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="ulxNRUZeNEzMnvYwKnqfvovp8nlpa3Xl22ApcKUmaesFPmInpO7YUw==",cdn-downstream-fbl;dur=430
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f389f0cc2d20402394e642dd05b6a284.cloudfront.net (CloudFront)
+ - 1.1 dfb119739413f1d03dd274d99dda4dae.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 1Xi7Ziewh9POnHUTstKV_vwmnsq6i9tTkk0UmWAIGTtDNPQXz6I0Xg==
+ - ulxNRUZeNEzMnvYwKnqfvovp8nlpa3Xl22ApcKUmaesFPmInpO7YUw==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 2c4cc411e1dbdad5ba7e4043d4fa303d
+ - c54e02dc80566d6d588c8a6689bdd43b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 2fcaf752-69f9-45a7-9e37-0db6e1909215
+ - 9ab7ad6f-56d4-41f2-abed-df487677ccf8
Atl-Traceid:
- - 2fcaf75269f945a79e370db6e1909215
+ - 9ab7ad6f56d441f2abeddf487677ccf8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:18 GMT
+ - Fri, 16 Jan 2026 21:02:28 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=502,atl-edge;dur=500,atl-edge-internal;dur=15,atl-edge-upstream;dur=485,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="Vu8ntLSZ8xXQX1TaCDzZLzyOq_woxDt6xOFhkwNnVEPYsW8Frs9FOQ==",cdn-downstream-fbl;dur=505
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=363,atl-edge;dur=338,atl-edge-internal;dur=19,atl-edge-upstream;dur=320,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="NFaWKzdVbp72KO8i6hlGdkaYi4Bpsxnftlsc3RfOnckWUTopQjjRWw==",cdn-downstream-fbl;dur=367
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1635e40dd33e4abcdd79d3670805a7a.cloudfront.net (CloudFront)
+ - 1.1 9062d4391fad2aec3a7d6f3edcebc662.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - Vu8ntLSZ8xXQX1TaCDzZLzyOq_woxDt6xOFhkwNnVEPYsW8Frs9FOQ==
+ - NFaWKzdVbp72KO8i6hlGdkaYi4Bpsxnftlsc3RfOnckWUTopQjjRWw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 5751b9da4b2d66fff92d40f9b3ca9e30
+ - 6d3c02e6f96bde1475b711c406a0ada7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/50] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/119] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]\n*Defect
- Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]\n*Defect
+ Dojo link:* http://localhost:8080/finding/371 (371)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]\n*Defect Dojo link:* http://localhost:8080/finding/359
- (359)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]\n*Defect Dojo link:* http://localhost:8080/finding/373
+ (373)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21319","key":"NTEST-3140","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21319"}'
+ string: '{"id":"24935","key":"NTEST-3220","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24935"}'
headers:
Atl-Request-Id:
- - 08742be3-a9f7-450e-9f41-c300c204099f
+ - 66f9d851-ba56-42ba-b04e-4f5b82a9a276
Atl-Traceid:
- - 08742be3a9f7450e9f41c300c204099f
+ - 66f9d851ba5642bab04e4f5b82a9a276
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:19 GMT
+ - Fri, 16 Jan 2026 21:02:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=855,atl-edge;dur=853,atl-edge-internal;dur=17,atl-edge-upstream;dur=836,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="pIRLAWIVX8tmTvyUW37OFLo1RuBgjr3zX698yDbU6x6BHTRb4-k-9A==",cdn-downstream-fbl;dur=859
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=744,atl-edge;dur=720,atl-edge-internal;dur=14,atl-edge-upstream;dur=705,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="ffzvN49uSUBndun433Udfs-kYuWcMRgjkPvUknhZ7bQ4ekAvb-NAjw==",cdn-downstream-fbl;dur=749
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3aea472dcaab0d179b019b33b044a9be.cloudfront.net (CloudFront)
+ - 1.1 eff74a7ae5e8f882896afa9f99bfa6e6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - pIRLAWIVX8tmTvyUW37OFLo1RuBgjr3zX698yDbU6x6BHTRb4-k-9A==
+ - ffzvN49uSUBndun433Udfs-kYuWcMRgjkPvUknhZ7bQ4ekAvb-NAjw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - 3b8f704061d2970a3326279774eb38cc
+ - 51628660c09a938c73de40cd98b4db89
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3140
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3220
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21319","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21319","key":"NTEST-3140","fields":{"statuscategorychangedate":"2025-07-25T21:14:19.732+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24935","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24935","key":"NTEST-3220","fields":{"statuscategorychangedate":"2026-01-16T22:02:29.177+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3140/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3140/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:19.546+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kf:","updated":"2025-07-25T21:14:19.628+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3220/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3220/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:28.880+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mv:","updated":"2026-01-16T22:02:28.990+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/50]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/119]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]\n*Defect
- Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]\n*Defect
+ Dojo link:* http://localhost:8080/finding/371 (371)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]\n*Defect
- Dojo link:* http://localhost:8080/finding/359 (359)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]\n*Defect
+ Dojo link:* http://localhost:8080/finding/373 (373)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21319/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24935/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - bba57795-ca04-4f75-bf8a-f680e613a75a
+ - 74ece7d9-1020-4fbc-bbf8-520a093bbcdd
Atl-Traceid:
- - bba57795ca044f75bf8af680e613a75a
+ - 74ece7d910204fbcbbf8520a093bbcdd
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:21 GMT
+ - Fri, 16 Jan 2026 21:02:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=924,atl-edge;dur=923,atl-edge-internal;dur=17,atl-edge-upstream;dur=905,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="e_HXRO5JKXGso2IZOPoboaJRFQgprR4LMd_vNH9LwGAi3LCeoRpnYQ==",cdn-downstream-fbl;dur=928
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=286,atl-edge;dur=263,atl-edge-internal;dur=34,atl-edge-upstream;dur=227,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="Nw8icmil9NscQxRPtEL57btdDD9aAQIWlkpz0KRJh-Y3sktUF7mY9w==",cdn-downstream-fbl;dur=289
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 14d2e33ccccdcd865bebd3f59cd47112.cloudfront.net (CloudFront)
+ - 1.1 4548950ffe5bf7b4d2419a082d770c1a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - e_HXRO5JKXGso2IZOPoboaJRFQgprR4LMd_vNH9LwGAi3LCeoRpnYQ==
+ - Nw8icmil9NscQxRPtEL57btdDD9aAQIWlkpz0KRJh-Y3sktUF7mY9w==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 693ced805845e28df9604c9fbbe7a986
+ - 8590f39a6c18c7c6bedc2b8f67a5f2fb
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21319
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24935
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21319","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21319","key":"NTEST-3140","fields":{"statuscategorychangedate":"2025-07-25T21:14:19.732+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24935","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24935","key":"NTEST-3220","fields":{"statuscategorychangedate":"2026-01-16T22:02:29.177+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3140/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3140/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:19.546+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kf:","updated":"2025-07-25T21:14:19.628+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3220/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3220/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:28.880+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014mv:","updated":"2026-01-16T22:02:28.990+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/50]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/119]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/357]\n*Defect
- Dojo link:* http://localhost:8080/finding/357 (357)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/371]\n*Defect
+ Dojo link:* http://localhost:8080/finding/371 (371)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/359]\n*Defect
- Dojo link:* http://localhost:8080/finding/359 (359)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/373]\n*Defect
+ Dojo link:* http://localhost:8080/finding/373 (373)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21319/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24935/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - ad6cc3a6-42cd-4cb7-9571-0a447af9d18f
+ - 011b8bca-be57-4576-bc8b-dab36ea3e979
Atl-Traceid:
- - ad6cc3a642cd4cb795710a447af9d18f
+ - 011b8bcabe574576bc8bdab36ea3e979
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:23 GMT
+ - Fri, 16 Jan 2026 21:02:29 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=420,atl-edge;dur=417,atl-edge-internal;dur=15,atl-edge-upstream;dur=403,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="hI7VR0wPJmdLhzEnaCGLSnM7AdrWLFKPxMO81jHpNBEc4gIqNItSIw==",cdn-downstream-fbl;dur=424
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=258,atl-edge;dur=235,atl-edge-internal;dur=18,atl-edge-upstream;dur=216,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="uZR2AgrrlTohRezU8-HPsN0wz-0JIM8hgTHUdwplU1G1TOY5HddEkw==",cdn-downstream-fbl;dur=261
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a63f63c0130cd2db055700cdbe2c6c88.cloudfront.net (CloudFront)
+ - 1.1 99c24ff7a4f9141fb603a870f066e056.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - hI7VR0wPJmdLhzEnaCGLSnM7AdrWLFKPxMO81jHpNBEc4gIqNItSIw==
+ - uZR2AgrrlTohRezU8-HPsN0wz-0JIM8hgTHUdwplU1G1TOY5HddEkw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P3
X-Arequestid:
- - cf914797f1c65435a29bd7abec35d1c5
+ - ed0707a9741f9ca3b79e25875f6faeb5
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:24.138+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:30.202+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 2250c616-8278-46c1-87f4-099322a518c7
+ - 520e123a-35e8-4dda-a838-220c347a0f7e
Atl-Traceid:
- - 2250c616827846c187f4099322a518c7
+ - 520e123a35e84ddaa838220c347a0f7e
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:24 GMT
+ - Fri, 16 Jan 2026 21:02:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=325,atl-edge;dur=323,atl-edge-internal;dur=15,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="35vZ2KlxZF43Gb7y2Go-Rl89W6nG8gruQtzh0-23Nby8qjhJts_00Q==",cdn-downstream-fbl;dur=329
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=183,atl-edge;dur=160,atl-edge-internal;dur=13,atl-edge-upstream;dur=148,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="HMSOoKN0LOA2VqBRtCyX3b5VHzU0fTPFrF5sKerEhmswhyY1wbXt-g==",cdn-downstream-fbl;dur=186
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f10eedb52fc0d82204e85d20112deafa.cloudfront.net (CloudFront)
+ - 1.1 81c07f42f70c1aec766dc553e24f3864.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 35vZ2KlxZF43Gb7y2Go-Rl89W6nG8gruQtzh0-23Nby8qjhJts_00Q==
+ - HMSOoKN0LOA2VqBRtCyX3b5VHzU0fTPFrF5sKerEhmswhyY1wbXt-g==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P1
X-Arequestid:
- - 238da446c358090348645a6611292ef2
+ - 938c615fb4f1fabdbff721f1fcf6de9f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 1ac609aa-9ebb-4534-89ae-f1ce8396d218
+ - ab517047-b3b7-4a64-a849-5b97f7a5ad2a
Atl-Traceid:
- - 1ac609aa9ebb453489aef1ce8396d218
+ - ab517047b3b74a64a8495b97f7a5ad2a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:25 GMT
+ - Fri, 16 Jan 2026 21:02:30 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=474,atl-edge;dur=472,atl-edge-internal;dur=16,atl-edge-upstream;dur=456,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="c84sqQd2HvChGrlxf7fQS2dvE6CZQX22DazLPZaAp6hryNkN-4D57Q==",cdn-downstream-fbl;dur=478
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=433,atl-edge;dur=343,atl-edge-internal;dur=19,atl-edge-upstream;dur=324,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="yCelFGGwbszejqkp372Th9AUagnxPWDpDus0Ly7LdKJcD89diaPE4w==",cdn-downstream-fbl;dur=436
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b39f0409e845bde1b97cd11f1d544d4e.cloudfront.net (CloudFront)
+ - 1.1 1d841c80bfe083de03dcc909a7c5fa9c.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - c84sqQd2HvChGrlxf7fQS2dvE6CZQX22DazLPZaAp6hryNkN-4D57Q==
+ - yCelFGGwbszejqkp372Th9AUagnxPWDpDus0Ly7LdKJcD89diaPE4w==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - 6ebde0efdcf59b16f0c5294a1a5fc30c
+ - 3c5e3dfbbb4459df740a0167a529f809
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/51] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/120] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]\n*Defect
- Dojo link:* http://localhost:8080/finding/358 (358)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]\n*Defect
+ Dojo link:* http://localhost:8080/finding/372 (372)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2167'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21320","key":"NTEST-3141","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21320"}'
+ string: '{"id":"24936","key":"NTEST-3221","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24936"}'
headers:
Atl-Request-Id:
- - bbc6f796-7e03-4d7f-b3fa-c88bce76a88d
+ - eeb6136d-17c6-41f1-a6da-397528b4d50c
Atl-Traceid:
- - bbc6f7967e034d7fb3fac88bce76a88d
+ - eeb6136d17c641f1a6da397528b4d50c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:27 GMT
+ - Fri, 16 Jan 2026 21:02:31 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=871,atl-edge;dur=869,atl-edge-internal;dur=13,atl-edge-upstream;dur=856,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="VjD8pQ3_mEUk8vOkONaVLcYz6_2xB_gZs4GwmpB0yndjlKfb6YhVZw==",cdn-downstream-fbl;dur=875
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=976,atl-edge;dur=953,atl-edge-internal;dur=14,atl-edge-upstream;dur=939,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="7aqB2jx09Jm4MPMtTjm1qUZS3HdraiPSPulPfgvcfKnc5Zw5iLQubQ==",cdn-downstream-fbl;dur=980
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 505047c0efc37a1900f1288c6f749f90.cloudfront.net (CloudFront)
+ - 1.1 371ed2ced863124442eb4fa765ae2a96.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - VjD8pQ3_mEUk8vOkONaVLcYz6_2xB_gZs4GwmpB0yndjlKfb6YhVZw==
+ - 7aqB2jx09Jm4MPMtTjm1qUZS3HdraiPSPulPfgvcfKnc5Zw5iLQubQ==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - aaca71619e6dd0e345d83d3596561d0e
+ - e9e92108e183c6aa2c732d3c2003c703
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3141
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3221
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21320","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21320","key":"NTEST-3141","fields":{"statuscategorychangedate":"2025-07-25T21:14:27.170+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24936","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24936","key":"NTEST-3221","fields":{"statuscategorychangedate":"2026-01-16T22:02:31.682+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3141/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3141/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:26.957+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kn:","updated":"2025-07-25T21:14:27.046+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3221/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3221/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:31.417+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014n3:","updated":"2026-01-16T22:02:31.505+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/51]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/120]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]\n*Defect
- Dojo link:* http://localhost:8080/finding/358 (358)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]\n*Defect
+ Dojo link:* http://localhost:8080/finding/372 (372)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21320/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24936/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - f8b143f1-449f-48a4-8755-1bbc9d4989bc
+ - 0e953d4f-c5ae-491a-8750-09febfddf130
Atl-Traceid:
- - f8b143f1449f48a487551bbc9d4989bc
+ - 0e953d4fc5ae491a875009febfddf130
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:28 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=420,atl-edge;dur=414,atl-edge-internal;dur=14,atl-edge-upstream;dur=401,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="OA8Rf5TolOVbE1FFEcDK9rCoiRIlmw5UUEXK6ADIU9gMGT6YALIrhw==",cdn-downstream-fbl;dur=424
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=296,atl-edge;dur=273,atl-edge-internal;dur=18,atl-edge-upstream;dur=255,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="Rj1KQE-O269NYvp-RZ1gxbqH5ehMr5__H9qgJiP0pBxX7kFrMDd_Ow==",cdn-downstream-fbl;dur=300
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a97b28e298ec5907aa1d86d22bc232a0.cloudfront.net (CloudFront)
+ - 1.1 22cbebcbe97dd961cd3fddb13b91b816.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - OA8Rf5TolOVbE1FFEcDK9rCoiRIlmw5UUEXK6ADIU9gMGT6YALIrhw==
+ - Rj1KQE-O269NYvp-RZ1gxbqH5ehMr5__H9qgJiP0pBxX7kFrMDd_Ow==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P3
X-Arequestid:
- - f548deea7a292381138f87295900683b
+ - 2bbf85fec18f9a6da734e111cd0c6392
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21320
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24936
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21320","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21320","key":"NTEST-3141","fields":{"statuscategorychangedate":"2025-07-25T21:14:27.170+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24936","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24936","key":"NTEST-3221","fields":{"statuscategorychangedate":"2026-01-16T22:02:31.682+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3141/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3141/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:26.957+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kn:","updated":"2025-07-25T21:14:27.046+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3221/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3221/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:31.417+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014n3:","updated":"2026-01-16T22:02:31.505+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/51]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/120]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/124]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/129]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/358]\n*Defect
- Dojo link:* http://localhost:8080/finding/358 (358)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/372]\n*Defect
+ Dojo link:* http://localhost:8080/finding/372 (372)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21320/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24936/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 89e2e063-fa0b-429a-ada9-a305519c6fd7
+ - c8275ede-dd40-4a06-b0f5-a7a3c1de61e4
Atl-Traceid:
- - 89e2e063fa0b429aada9a305519c6fd7
+ - c8275ededd404a06b0f5a7a3c1de61e4
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:29 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=394,atl-edge;dur=392,atl-edge-internal;dur=15,atl-edge-upstream;dur=377,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="mF8OuKavIJ4u1aMKAQg4AJQUrs1aNoyuL6ObHwjz9uHVvts2yG5oAg==",cdn-downstream-fbl;dur=398
+ - cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="eeWSMig5jFS0iKjrIvF6LNwkHU-Xw6AgVSZWO8zzZJ8w9m9EW8G4kw==",cdn-downstream-fbl;dur=353,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=67,cdn-upstream-fbl;dur=351,atl-edge;dur=261,atl-edge-internal;dur=16,atl-edge-upstream;dur=245,atl-edge-pop;desc="aws-us-west-2"
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 48e2dac80dc53d66fef4721e63ea9f44.cloudfront.net (CloudFront)
+ - 1.1 422414d66021e4e123bcb2b5087f7042.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - mF8OuKavIJ4u1aMKAQg4AJQUrs1aNoyuL6ObHwjz9uHVvts2yG5oAg==
+ - eeWSMig5jFS0iKjrIvF6LNwkHU-Xw6AgVSZWO8zzZJ8w9m9EW8G4kw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P2
X-Arequestid:
- - d8cd7e71172639b4104a4fdb5c62b382
+ - 606411fbc50a9ef24f7ade57fce064d0
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/",
+ "url_ui": "http://localhost:8080/test/129", "url_api": "http://localhost:8080/api/v2/tests/129/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 124, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/"}}'
+ 129, "url_ui": "http://localhost:8080/test/129", "url_api": "http://localhost:8080/api/v2/tests/129/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/124/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/129\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/129/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 124, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 129, \\\"url_ui\\\": \\\"http://localhost:8080/test/129\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/129/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 124,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/124\"\n },\n \"title\":
+ 129,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/129/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/129\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n \"url_ui\":
- \"http://localhost:8080/test/124\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/129/\",\n \"url_ui\":
+ \"http://localhost:8080/test/129\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:30 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/",
+ null, "url_ui": "http://localhost:8080/test/129", "url_api": "http://localhost:8080/api/v2/tests/129/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 124, "url_ui": "http://localhost:8080/test/124", "url_api": "http://localhost:8080/api/v2/tests/124/"},
- "finding_count": 5, "findings": {"new": [{"id": 356, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/356",
- "url_api": "http://localhost:8080/api/v2/findings/356/"}, {"id": 357, "title":
+ 129, "url_ui": "http://localhost:8080/test/129", "url_api": "http://localhost:8080/api/v2/tests/129/"},
+ "finding_count": 5, "findings": {"new": [{"id": 370, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/370",
+ "url_api": "http://localhost:8080/api/v2/findings/370/"}, {"id": 371, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/357", "url_api":
- "http://localhost:8080/api/v2/findings/357/"}, {"id": 355, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/371", "url_api":
+ "http://localhost:8080/api/v2/findings/371/"}, {"id": 369, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/355", "url_api": "http://localhost:8080/api/v2/findings/355/"},
- {"id": 358, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/358", "url_api":
- "http://localhost:8080/api/v2/findings/358/"}, {"id": 359, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/369", "url_api": "http://localhost:8080/api/v2/findings/369/"},
+ {"id": 372, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/372", "url_api":
+ "http://localhost:8080/api/v2/findings/372/"}, {"id": 373, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/359", "url_api":
- "http://localhost:8080/api/v2/findings/359/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/373", "url_api":
+ "http://localhost:8080/api/v2/findings/373/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/129\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/129/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 124, \\\"url_ui\\\": \\\"http://localhost:8080/test/124\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/124/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 356, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 129, \\\"url_ui\\\": \\\"http://localhost:8080/test/129\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/129/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 370, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/356\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/356/\\\"}, {\\\"id\\\": 357, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/370\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/370/\\\"}, {\\\"id\\\": 371, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/357\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/357/\\\"},
- {\\\"id\\\": 355, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/371\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/371/\\\"},
+ {\\\"id\\\": 369, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/355\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/355/\\\"},
- {\\\"id\\\": 358, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/369\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/369/\\\"},
+ {\\\"id\\\": 372, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/358\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/358/\\\"},
- {\\\"id\\\": 359, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/372\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/372/\\\"},
+ {\\\"id\\\": 373, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/359\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/359/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/373\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/373/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 356,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 370,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/356/\",\n \"url_ui\": \"http://localhost:8080/finding/356\"\n
- \ },\n {\n \"id\": 357,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/370/\",\n \"url_ui\": \"http://localhost:8080/finding/370\"\n
+ \ },\n {\n \"id\": 371,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/357/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/357\"\n },\n
- \ {\n \"id\": 355,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/371/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/371\"\n },\n
+ \ {\n \"id\": 369,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/355/\",\n \"url_ui\": \"http://localhost:8080/finding/355\"\n
- \ },\n {\n \"id\": 358,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/369/\",\n \"url_ui\": \"http://localhost:8080/finding/369\"\n
+ \ },\n {\n \"id\": 372,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/358/\",\n \"url_ui\":
- \"http://localhost:8080/finding/358\"\n },\n {\n \"id\":
- 359,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/372/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/372\"\n },\n {\n \"id\":
+ 373,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/359/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/359\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/373/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/373\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 124,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/124\"\n },\n \"title\":
+ 129,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/129/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/129\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/124/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/124\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/129/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/129\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:30 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Transfer-Encoding:
- chunked
status:
@@ -1796,14 +1856,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/",
+ "url_ui": "http://localhost:8080/test/130", "url_api": "http://localhost:8080/api/v2/tests/130/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 125, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/"}}'
+ 130, "url_ui": "http://localhost:8080/test/130", "url_api": "http://localhost:8080/api/v2/tests/130/"}}'
headers:
Accept:
- application/json
@@ -1818,7 +1878,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1832,22 +1892,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/125/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/130\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/130/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 125, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 130, \\\"url_ui\\\": \\\"http://localhost:8080/test/130\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/130/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1857,11 +1917,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 125,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/125\"\n },\n \"title\":
+ 130,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/130/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/130\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n \"url_ui\":
- \"http://localhost:8080/test/125\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/130/\",\n \"url_ui\":
+ \"http://localhost:8080/test/130\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1870,7 +1930,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:30 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Transfer-Encoding:
- chunked
status:
@@ -1879,32 +1939,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/",
+ null, "url_ui": "http://localhost:8080/test/130", "url_api": "http://localhost:8080/api/v2/tests/130/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 125, "url_ui": "http://localhost:8080/test/125", "url_api": "http://localhost:8080/api/v2/tests/125/"},
- "finding_count": 5, "findings": {"new": [{"id": 361, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/361",
- "url_api": "http://localhost:8080/api/v2/findings/361/"}, {"id": 362, "title":
+ 130, "url_ui": "http://localhost:8080/test/130", "url_api": "http://localhost:8080/api/v2/tests/130/"},
+ "finding_count": 5, "findings": {"new": [{"id": 375, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/375",
+ "url_api": "http://localhost:8080/api/v2/findings/375/"}, {"id": 376, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/362", "url_api":
- "http://localhost:8080/api/v2/findings/362/"}, {"id": 360, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/376", "url_api":
+ "http://localhost:8080/api/v2/findings/376/"}, {"id": 374, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/360", "url_api": "http://localhost:8080/api/v2/findings/360/"},
- {"id": 363, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/363", "url_api":
- "http://localhost:8080/api/v2/findings/363/"}, {"id": 364, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/374", "url_api": "http://localhost:8080/api/v2/findings/374/"},
+ {"id": 377, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/377", "url_api":
+ "http://localhost:8080/api/v2/findings/377/"}, {"id": 378, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/364", "url_api":
- "http://localhost:8080/api/v2/findings/364/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/378", "url_api":
+ "http://localhost:8080/api/v2/findings/378/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1920,7 +1980,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1934,82 +1994,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/130\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/130/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 125, \\\"url_ui\\\": \\\"http://localhost:8080/test/125\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/125/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 361, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 130, \\\"url_ui\\\": \\\"http://localhost:8080/test/130\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/130/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 375, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/361\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/361/\\\"}, {\\\"id\\\": 362, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/375\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/375/\\\"}, {\\\"id\\\": 376, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/362\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/362/\\\"},
- {\\\"id\\\": 360, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/376\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/376/\\\"},
+ {\\\"id\\\": 374, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/360\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/360/\\\"},
- {\\\"id\\\": 363, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/374\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/374/\\\"},
+ {\\\"id\\\": 377, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/363\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/363/\\\"},
- {\\\"id\\\": 364, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/377\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/377/\\\"},
+ {\\\"id\\\": 378, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/364\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/364/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/378\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/378/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 361,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 375,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/361/\",\n \"url_ui\": \"http://localhost:8080/finding/361\"\n
- \ },\n {\n \"id\": 362,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/375/\",\n \"url_ui\": \"http://localhost:8080/finding/375\"\n
+ \ },\n {\n \"id\": 376,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/362/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/362\"\n },\n
- \ {\n \"id\": 360,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/376/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/376\"\n },\n
+ \ {\n \"id\": 374,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/360/\",\n \"url_ui\": \"http://localhost:8080/finding/360\"\n
- \ },\n {\n \"id\": 363,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/374/\",\n \"url_ui\": \"http://localhost:8080/finding/374\"\n
+ \ },\n {\n \"id\": 377,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/363/\",\n \"url_ui\":
- \"http://localhost:8080/finding/363\"\n },\n {\n \"id\":
- 364,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/377/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/377\"\n },\n {\n \"id\":
+ 378,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/364/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/364\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/378/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/378\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 125,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/125\"\n },\n \"title\":
+ 130,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/130/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/130\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/125/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/125\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/130/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/130\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -2019,7 +2079,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:30 GMT
+ - Fri, 16 Jan 2026 21:02:32 GMT
Transfer-Encoding:
- chunked
status:
diff --git a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_with_push_to_jira_is_false_but_push_all.yaml b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_with_push_to_jira_is_false_but_push_all.yaml
index b7edd292405..6922923857c 100644
--- a/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_with_push_to_jira_is_false_but_push_all.yaml
+++ b/unittests/vcr/jira/JIRAImportAndPushTestApi.test_import_with_groups_with_push_to_jira_is_false_but_push_all.yaml
@@ -13,17 +13,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:32.425+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:33.308+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 7e4bffe8-f9fa-4a2e-abcd-ea35d0205a25
+ - 28549271-6217-4ac0-81b8-d7c8c9efbc9c
Atl-Traceid:
- - 7e4bffe8f9fa4a2eabcdea35d0205a25
+ - 2854927162174ac081b8d7c8c9efbc9c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -33,9 +33,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:32 GMT
+ - Fri, 16 Jan 2026 21:02:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -43,7 +43,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=825,atl-edge;dur=823,atl-edge-internal;dur=13,atl-edge-upstream;dur=809,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="TDH4hmF34oVM3aNM97Roe9W3vmsytjrxNe8rWVhzJBx1yMsGpoA0LQ==",cdn-downstream-fbl;dur=828
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=188,atl-edge;dur=165,atl-edge-internal;dur=15,atl-edge-upstream;dur=149,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="OvyqGAqfmxfz5PlVTUpARYKYo958XgES7iGGsXrP5QGbYDqqvnCeVA==",cdn-downstream-fbl;dur=192
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -53,19 +53,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 0f7044eb4e8b35c09d88dd64a3263794.cloudfront.net (CloudFront)
+ - 1.1 25c0c572fef0588285c0d89bc75071be.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - TDH4hmF34oVM3aNM97Roe9W3vmsytjrxNe8rWVhzJBx1yMsGpoA0LQ==
+ - OvyqGAqfmxfz5PlVTUpARYKYo958XgES7iGGsXrP5QGbYDqqvnCeVA==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN53-P2
X-Arequestid:
- - c54c380b68b5dd9e90636ad075fa9473
+ - 1e3fe97d3bb7442f39352fa651a8accc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -85,7 +89,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -99,9 +103,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - d32f533e-ca6e-4f3f-ac30-b03d9663fb78
+ - a6029202-3467-4e95-97d1-06d9c243cca8
Atl-Traceid:
- - d32f533eca6e4f3fac30b03d9663fb78
+ - a602920234674e9597d106d9c243cca8
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -111,9 +115,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:33 GMT
+ - Fri, 16 Jan 2026 21:02:33 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -121,7 +125,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=471,atl-edge;dur=469,atl-edge-internal;dur=15,atl-edge-upstream;dur=454,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="fBKkh3Moukl4KRnjQlBo1t5RGQoyfgUW2_GMC-OK_34FJNnqaQg0bA==",cdn-downstream-fbl;dur=475
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=413,atl-edge;dur=324,atl-edge-internal;dur=16,atl-edge-upstream;dur=308,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="9o0a4NugELF_ebOqbhSEPq69DeBKT0C2CKdzZjpbGdFdPl2-gn61Rg==",cdn-downstream-fbl;dur=417
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -131,22 +135,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 3437ef72cec711eb0ebed9222a22cf66.cloudfront.net (CloudFront)
+ - 1.1 935c1dbe2a77979e8997ab720ef1b816.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - fBKkh3Moukl4KRnjQlBo1t5RGQoyfgUW2_GMC-OK_34FJNnqaQg0bA==
+ - 9o0a4NugELF_ebOqbhSEPq69DeBKT0C2CKdzZjpbGdFdPl2-gn61Rg==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P1
X-Arequestid:
- - 4389c6a749e062ffcc9d637190a04316
+ - e9542d914cb77fa2021fcad01db3a672
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -156,20 +164,20 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: negotiator:0.5.3", "description": "\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/55]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/124]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/366]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/380]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/366]\n*Defect Dojo link:* http://localhost:8080/finding/366
- (366)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/380]\n*Defect Dojo link:* http://localhost:8080/finding/380
+ (380)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -179,9 +187,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1 or
later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial of
- Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
- Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]\n*Defect
+ Dojo link:* http://localhost:8080/finding/379 (379)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -201,21 +209,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '3542'
+ - '3544'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21321","key":"NTEST-3142","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21321"}'
+ string: '{"id":"24937","key":"NTEST-3222","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24937"}'
headers:
Atl-Request-Id:
- - a9b8cb0e-8e33-4a7c-808b-9c32005a0275
+ - bb6d721e-7007-4ae6-b1b0-0d3b0bc28b6c
Atl-Traceid:
- - a9b8cb0e8e334a7c808b9c32005a0275
+ - bb6d721e70074ae6b1b00d3b0bc28b6c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -223,9 +231,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:36 GMT
+ - Fri, 16 Jan 2026 21:02:34 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -233,7 +241,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1334,atl-edge;dur=1332,atl-edge-internal;dur=14,atl-edge-upstream;dur=1318,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="9i-A3BQziCZEObDien7aMWvVp2MpVAAEFr6yzezTrLYNm6Q4ZemmzA==",cdn-downstream-fbl;dur=1337
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=711,atl-edge;dur=688,atl-edge-internal;dur=16,atl-edge-upstream;dur=672,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="MPXLMNCdXbbYrJcc7fKVuprmn9KJHvBhZxsf6UiNSQZ61RIQHpEKjw==",cdn-downstream-fbl;dur=716
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -243,19 +251,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 59b0eb2f33939f549a18868a652690fe.cloudfront.net (CloudFront)
+ - 1.1 422414d66021e4e123bcb2b5087f7042.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9i-A3BQziCZEObDien7aMWvVp2MpVAAEFr6yzezTrLYNm6Q4ZemmzA==
+ - MPXLMNCdXbbYrJcc7fKVuprmn9KJHvBhZxsf6UiNSQZ61RIQHpEKjw==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN52-P2
X-Arequestid:
- - e6d244765aee5194f4e544b948d56ebb
+ - 475979afec122c8bff235d5b8bd19af7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -275,32 +287,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3142
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3222
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21321","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21321","key":"NTEST-3142","fields":{"statuscategorychangedate":"2025-07-25T21:14:35.948+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24937","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24937","key":"NTEST-3222","fields":{"statuscategorychangedate":"2026-01-16T22:02:34.564+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3142/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3142/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:35.748+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kv:","updated":"2025-07-25T21:14:35.823+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3222/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3222/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:34.322+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nb:","updated":"2026-01-16T22:02:34.402+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/55]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/124]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/366]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/380]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/366]\n*Defect Dojo link:* http://localhost:8080/finding/366
- (366)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/380]\n*Defect Dojo link:* http://localhost:8080/finding/380
+ (380)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -310,9 +322,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
- Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]\n*Defect
+ Dojo link:* http://localhost:8080/finding/379 (379)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -322,12 +334,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21321/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24937/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 58a89c5f-2010-4d66-acf6-9f7332449acd
+ - 99de950b-0a11-47c0-96ab-55b74d654f94
Atl-Traceid:
- - 58a89c5f20104d66acf69f7332449acd
+ - 99de950b0a1147c096ab55b74d654f94
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -337,9 +349,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:37 GMT
+ - Fri, 16 Jan 2026 21:02:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -347,7 +359,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=415,atl-edge;dur=413,atl-edge-internal;dur=16,atl-edge-upstream;dur=397,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="O3zRwueagP7Dg8IiwOGBHNom-cCgvQ-aPLqeCX97ahvReea9fySYMA==",cdn-downstream-fbl;dur=419
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=291,atl-edge;dur=267,atl-edge-internal;dur=16,atl-edge-upstream;dur=251,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="lRr-OT_pRTRDjJqt4mdzw63fQvPvWse_rfasEkBHe1hDVcE66Op3hw==",cdn-downstream-fbl;dur=294
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -357,19 +369,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 7fe70ef74e6a71dc6fcd4b1b62861ffc.cloudfront.net (CloudFront)
+ - 1.1 a70648d67d4a5a7f7eed7b14595ab4fe.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - O3zRwueagP7Dg8IiwOGBHNom-cCgvQ-aPLqeCX97ahvReea9fySYMA==
+ - lRr-OT_pRTRDjJqt4mdzw63fQvPvWse_rfasEkBHe1hDVcE66Op3hw==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN52-P2
X-Arequestid:
- - 9c03ef5e9610fa3195bbac05007cf84b
+ - 47807d1c09e070de0ecf4d830bc3311f
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -389,32 +405,32 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21321
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24937
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21321","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21321","key":"NTEST-3142","fields":{"statuscategorychangedate":"2025-07-25T21:14:35.948+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24937","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24937","key":"NTEST-3222","fields":{"statuscategorychangedate":"2026-01-16T22:02:34.564+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3142/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3142/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:35.748+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012kv:","updated":"2025-07-25T21:14:35.823+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3222/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3222/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:34.322+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nb:","updated":"2026-01-16T22:02:34.402+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/55]
+ Group\n*Group*: [Findings in: negotiator:0.5.3|http://localhost:8080/finding_group/124]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]|[300|https://cwe.mitre.org/data/definitions/300.html]|negotiator|0.5.3|[2222Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/366]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/380]|Active,
Verified|\n|Medium|[CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]|[400|https://cwe.mitre.org/data/definitions/400.html]|negotiator|0.5.3|[Regular
- Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]|Active,
+ Expression Denial of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [2222Regular Expression Denial of Service - (Negotiator, <=
- 0.6.0)|http://localhost:8080/finding/366]\n*Defect Dojo link:* http://localhost:8080/finding/366
- (366)\n*Severity:* High\n *Due Date:* Aug. 24, 2025 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
+ 0.6.0)|http://localhost:8080/finding/380]\n*Defect Dojo link:* http://localhost:8080/finding/380
+ (380)\n*Severity:* High\n *Due Date:* Feb. 15, 2026 \n *CWE:* [CWE-300|https://cwe.mitre.org/data/definitions/300.html]
\n*CVE:* [CVE-2019-10321|https://nvd.nist.gov/vuln/detail/CVE-2019-10321]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/107\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -424,9 +440,9 @@ interactions:
CWE: CWE-300\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/107\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n\n\n\nh1. Findings\n\nh3. [Regular Expression Denial
- of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/365]\n*Defect
- Dojo link:* http://localhost:8080/finding/365 (365)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ of Service - (Negotiator, <= 0.6.0)|http://localhost:8080/finding/379]\n*Defect
+ Dojo link:* http://localhost:8080/finding/379 (379)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2016-10539|https://nvd.nist.gov/vuln/detail/CVE-2016-10539]\n\n\n\n\n\n\n*Source
File*: express>accepts>negotiator\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/106\nAffected
versions of `negotiator` are vulnerable to regular expression denial of service
@@ -436,12 +452,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.6.1
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/106\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21321/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: negotiator:0.5.3","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24937/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 55d6153b-a50d-42d8-bf72-1e654322845b
+ - db20bf8d-7bf4-43fa-84e9-b470ee781880
Atl-Traceid:
- - 55d6153ba50d42d8bf721e654322845b
+ - db20bf8d7bf443fa84e9b470ee781880
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -451,9 +467,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:38 GMT
+ - Fri, 16 Jan 2026 21:02:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -461,7 +477,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=381,atl-edge;dur=380,atl-edge-internal;dur=14,atl-edge-upstream;dur=365,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="q8wieiQWmw4wmdtztyRZgHkmWQklCfwWH0d7ug494DiJ6l3BHzJL7Q==",cdn-downstream-fbl;dur=385
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=292,atl-edge;dur=268,atl-edge-internal;dur=17,atl-edge-upstream;dur=251,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="eJYeAJYOUHKt-yGJfNNfn9yWkivpzZO1qFK42eR0Rr-9Uu8a016rLA==",cdn-downstream-fbl;dur=298
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -471,19 +487,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 d3f1182213e75f053a9e7404f079d540.cloudfront.net (CloudFront)
+ - 1.1 f56ef7e5c4cb094743e3a564f21d47b0.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - q8wieiQWmw4wmdtztyRZgHkmWQklCfwWH0d7ug494DiJ6l3BHzJL7Q==
+ - eJYeAJYOUHKt-yGJfNNfn9yWkivpzZO1qFK42eR0Rr-9Uu8a016rLA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P2
X-Arequestid:
- - f160ab177acdab9ce1e7da4d524fd582
+ - 2d344c78a9396ee30a1ac97512bc4a96
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -503,17 +523,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:39.726+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:35.743+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 1e67b587-a8d2-49c4-99e2-4cff18afb5f8
+ - 90bcce65-57a5-4bfb-a0bf-13839ec3192c
Atl-Traceid:
- - 1e67b587a8d249c499e24cff18afb5f8
+ - 90bcce6557a54bfba0bf13839ec3192c
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -523,9 +543,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:39 GMT
+ - Fri, 16 Jan 2026 21:02:35 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -533,7 +553,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=322,atl-edge;dur=320,atl-edge-internal;dur=14,atl-edge-upstream;dur=306,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="wrWegDSrSuE1Qi2WGT2RLRTqQ5y5N-0jT3jOIKIQrx_BN0qtklxYzg==",cdn-downstream-fbl;dur=326
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=197,atl-edge;dur=174,atl-edge-internal;dur=13,atl-edge-upstream;dur=160,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="y-9RqkWmgZ0GAA61LpnL4dTM0g9AfZ-ZuVfHNNq4-Ks_vNUEJWEXbw==",cdn-downstream-fbl;dur=201
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -543,19 +563,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 a6b70b5c031397eba9646ba0eedbdb86.cloudfront.net (CloudFront)
+ - 1.1 ba437ea2340585e48bd8901315998164.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - wrWegDSrSuE1Qi2WGT2RLRTqQ5y5N-0jT3jOIKIQrx_BN0qtklxYzg==
+ - y-9RqkWmgZ0GAA61LpnL4dTM0g9AfZ-ZuVfHNNq4-Ks_vNUEJWEXbw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN53-P2
X-Arequestid:
- - dd0cadb098ee354863da7467200cd859
+ - 1959d507a941c41fcca28d002a7af1c7
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -575,7 +599,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -589,9 +613,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - d4781e75-aed7-47a4-baee-ee806ecf322e
+ - 353932ac-ae99-4fa1-9f72-a159bceec744
Atl-Traceid:
- - d4781e75aed747a4baeeee806ecf322e
+ - 353932acae994fa19f72a159bceec744
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -601,9 +625,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:41 GMT
+ - Fri, 16 Jan 2026 21:02:36 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -611,7 +635,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=506,atl-edge;dur=504,atl-edge-internal;dur=15,atl-edge-upstream;dur=489,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="zrF8e9puwm9y1xsQmIK5pMgtnnW1uYRkFw1WI4s1kOAFWBBSMR033w==",cdn-downstream-fbl;dur=510
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=578,atl-edge;dur=555,atl-edge-internal;dur=17,atl-edge-upstream;dur=539,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="hA5pBftmktQs54C2h__xrK2fBQ45gkKqc0uco3zhR24a6lm1OJHm3Q==",cdn-downstream-fbl;dur=582
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -621,22 +645,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 b862c6b18a44c823dd40d8d760097ee2.cloudfront.net (CloudFront)
+ - 1.1 4a3448a83573e51d340356257951f57a.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - zrF8e9puwm9y1xsQmIK5pMgtnnW1uYRkFw1WI4s1kOAFWBBSMR033w==
+ - hA5pBftmktQs54C2h__xrK2fBQ45gkKqc0uco3zhR24a6lm1OJHm3Q==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN52-P3
X-Arequestid:
- - c5c0ac4e664752c1595a3e6c1214db4e
+ - 42b877df1feb9bb624ffc8789399bd92
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -646,29 +674,29 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: pg:5.1.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: pg:5.1.0|http://localhost:8080/finding_group/56] in [Security
+ [Findings in: pg:5.1.0|http://localhost:8080/finding_group/125] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified and
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified and
Severity criteria:\n|| Severity || CVE || CWE || Component || Version || Title
|| Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]\n*Defect
- Dojo link:* http://localhost:8080/finding/367 (367)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]\n*Defect
+ Dojo link:* http://localhost:8080/finding/381 (381)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -698,8 +726,8 @@ interactions:
(Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0
< 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0 <
6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 < 7.0.2 >=
- 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]\n*Defect Dojo link:* http://localhost:8080/finding/369
- (369)\n*Severity:* Medium\n *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]\n*Defect Dojo link:* http://localhost:8080/finding/383
+ (383)\n*Severity:* Medium\n *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs when
@@ -736,21 +764,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '7012'
+ - '7014'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21322","key":"NTEST-3143","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21322"}'
+ string: '{"id":"24938","key":"NTEST-3223","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24938"}'
headers:
Atl-Request-Id:
- - 58488d92-d673-44f1-87f6-1563d4f17187
+ - 891dcc00-a8f4-4b4b-ae14-e324ccc23963
Atl-Traceid:
- - 58488d92d67344f187f61563d4f17187
+ - 891dcc00a8f44b4bae14e324ccc23963
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -758,9 +786,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:43 GMT
+ - Fri, 16 Jan 2026 21:02:37 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -768,7 +796,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=950,atl-edge;dur=949,atl-edge-internal;dur=14,atl-edge-upstream;dur=934,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P2",cdn-rid;desc="9NiPffQHy6U6ob8jSKQJxrmIAbJD_vqmpLD7WXk2I-7XWaqk5wM1VQ==",cdn-downstream-fbl;dur=954
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=1147,atl-edge;dur=1124,atl-edge-internal;dur=18,atl-edge-upstream;dur=1106,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="M4DsmIA0O2sslTy4VeeIbwf9YjzGzwbtA7hRJbzVhR_dDislngPxHg==",cdn-downstream-fbl;dur=1152
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -778,19 +806,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 4682ab309f4f72758d209c996a38d094.cloudfront.net (CloudFront)
+ - 1.1 22cbebcbe97dd961cd3fddb13b91b816.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 9NiPffQHy6U6ob8jSKQJxrmIAbJD_vqmpLD7WXk2I-7XWaqk5wM1VQ==
+ - M4DsmIA0O2sslTy4VeeIbwf9YjzGzwbtA7hRJbzVhR_dDislngPxHg==
X-Amz-Cf-Pop:
- - SYD3-P2
+ - DEN53-P3
X-Arequestid:
- - 613a65a5d26b03b71f77c903622ec865
+ - 2ebee3ca8268d8567528c650ce2ca7bc
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -810,41 +842,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3143
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3223
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21322","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21322","key":"NTEST-3143","fields":{"statuscategorychangedate":"2025-07-25T21:14:42.882+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24938","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24938","key":"NTEST-3223","fields":{"statuscategorychangedate":"2026-01-16T22:02:37.562+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3143/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3143/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:42.553+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012l3:","updated":"2025-07-25T21:14:42.653+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3223/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3223/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:37.222+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nj:","updated":"2026-01-16T22:02:37.375+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/56]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/125]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]\n*Defect
- Dojo link:* http://localhost:8080/finding/367 (367)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]\n*Defect
+ Dojo link:* http://localhost:8080/finding/381 (381)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -874,9 +906,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]\n*Defect
- Dojo link:* http://localhost:8080/finding/369 (369)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]\n*Defect
+ Dojo link:* http://localhost:8080/finding/383 (383)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -903,12 +935,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21322/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24938/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 7ad802b7-a3a2-4b52-86d4-1673f040d18f
+ - 6cb238a1-eb0d-4fac-8a7c-606d1363be87
Atl-Traceid:
- - 7ad802b7a3a24b5286d41673f040d18f
+ - 6cb238a1eb0d4fac8a7c606d1363be87
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -918,9 +950,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:44 GMT
+ - Fri, 16 Jan 2026 21:02:38 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -928,7 +960,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=428,atl-edge;dur=425,atl-edge-internal;dur=15,atl-edge-upstream;dur=411,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="5rvJLYDu-9m38IghOP3oA57_yXWeLf-9TsfO9lexVGvQ9JPt2QA50A==",cdn-downstream-fbl;dur=432
+ - cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="XqKDvbOcHrA0cgwrh6jsF9PS4LAFPq7kuFUuPwmsIE80eD5UeQWPOQ==",cdn-downstream-fbl;dur=359,cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=357,atl-edge;dur=266,atl-edge-internal;dur=19,atl-edge-upstream;dur=248,atl-edge-pop;desc="aws-us-west-2"
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -938,19 +970,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 5bbd11939e03577f970787e60c8f7b4e.cloudfront.net (CloudFront)
+ - 1.1 0952fdd661cdbb703496fdb1bd8ea4a2.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 5rvJLYDu-9m38IghOP3oA57_yXWeLf-9TsfO9lexVGvQ9JPt2QA50A==
+ - XqKDvbOcHrA0cgwrh6jsF9PS4LAFPq7kuFUuPwmsIE80eD5UeQWPOQ==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P3
X-Arequestid:
- - a5fe1d7639068356099793fa8274ab34
+ - 6aacf3aff0d7dfcb89d4da0320d95990
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -970,41 +1006,41 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21322
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24938
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21322","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21322","key":"NTEST-3143","fields":{"statuscategorychangedate":"2025-07-25T21:14:42.882+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24938","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24938","key":"NTEST-3223","fields":{"statuscategorychangedate":"2026-01-16T22:02:37.562+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/2","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/high_new.svg","name":"High","id":"2"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3143/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3143/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:42.553+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012l3:","updated":"2025-07-25T21:14:42.653+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3223/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3223/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:37.222+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nj:","updated":"2026-01-16T22:02:37.375+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/56]
+ Group\n*Group*: [Findings in: pg:5.1.0|http://localhost:8080/finding_group/125]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- High *Due Date:* Aug. 24, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ High *Due Date:* Feb. 15, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|High|[CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]|Active,
Verified|\n|Medium|[CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]|[94|https://cwe.mitre.org/data/definitions/94.html]|pg|5.1.0|[2222Remote
Code Execution - (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 <
4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >=
6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0
- < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]|Active,
+ < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
Findings\n\nh3. [Remote Code Execution - (Pg, < 2.11.2 >= 3.0.0 <
3.6.4 >= 4.0.0 < 4.5.7 >= 5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >=
6.1.0 < 6.1.6 >= 6.2.0 < 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0
- < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/367]\n*Defect
- Dojo link:* http://localhost:8080/finding/367 (367)\n*Severity:* High\n *Due
- Date:* Aug. 24, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ < 6.4.2 >= 7.0.0 < 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/381]\n*Defect
+ Dojo link:* http://localhost:8080/finding/381 (381)\n*Severity:* High\n *Due
+ Date:* Feb. 15, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2017-16082|https://nvd.nist.gov/vuln/detail/CVE-2017-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/521\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1034,9 +1070,9 @@ interactions:
- (Pg, < 2.11.2 >= 3.0.0 < 3.6.4 >= 4.0.0 < 4.5.7 >=
5.0.0 < 5.2.1 >= 6.0.0 < 6.0.5 >= 6.1.0 < 6.1.6 >= 6.2.0
< 6.2.5 >= 6.3.0 < 6.3.3 >= 6.4.0 < 6.4.2 >= 7.0.0 <
- 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/369]\n*Defect
- Dojo link:* http://localhost:8080/finding/369 (369)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
+ 7.0.2 >= 7.1.0 < 7.1.2)|http://localhost:8080/finding/383]\n*Defect
+ Dojo link:* http://localhost:8080/finding/383 (383)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-94|https://cwe.mitre.org/data/definitions/94.html]
\n*CVE:* [CVE-2019-16082|https://nvd.nist.gov/vuln/detail/CVE-2019-16082]\n\n\n\n\n\n\n*Source
File*: pg-promise>pg\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/522\nAffected
versions of `pg` contain a remote code execution vulnerability that occurs
@@ -1063,12 +1099,12 @@ interactions:
also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note
that version 7.0.2 is also patched. )\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/522\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21322/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: pg:5.1.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24938/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 18671a08-e11a-4fd9-8ec2-1d71826aacef
+ - 46bf9b35-2d84-469c-b0b2-b078657aee92
Atl-Traceid:
- - 18671a08e11a4fd98ec21d71826aacef
+ - 46bf9b352d84469cb0b2b078657aee92
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1078,9 +1114,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:45 GMT
+ - Fri, 16 Jan 2026 21:02:38 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1088,7 +1124,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=422,atl-edge;dur=420,atl-edge-internal;dur=14,atl-edge-upstream;dur=406,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="OXdOKz2RC1Xs0zuDeTtoIS0Sqr32w8BipPaD6OuPy8wPWq4Z7rCZ7A==",cdn-downstream-fbl;dur=427
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=68,cdn-upstream-fbl;dur=349,atl-edge;dur=258,atl-edge-internal;dur=15,atl-edge-upstream;dur=242,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P3",cdn-rid;desc="QQItZ6hIbZckEf1CMdtaXKvvQC9_GIK52FrWh7itvLt-NciGGVNS8A==",cdn-downstream-fbl;dur=353
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1098,19 +1134,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 1d3e75fe2262e8a6f4a318b2bf3e6570.cloudfront.net (CloudFront)
+ - 1.1 5dcf09eaf65257abe85ddc5988a25c4e.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - OXdOKz2RC1Xs0zuDeTtoIS0Sqr32w8BipPaD6OuPy8wPWq4Z7rCZ7A==
+ - QQItZ6hIbZckEf1CMdtaXKvvQC9_GIK52FrWh7itvLt-NciGGVNS8A==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P3
X-Arequestid:
- - a9e9e38cf1989bd69d5b198a437a0ca0
+ - 3340052e81a36e0cdc0476be4aa3dbe2
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1130,17 +1170,17 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo
response:
body:
- string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100287,"buildDate":"2025-07-24T13:05:26.000+0200","serverTime":"2025-07-25T21:14:46.741+0200","scmInfo":"0139ea21e0f8b5dafbd2e1eb33923e0c468b7f69","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
+ string: '{"baseUrl":"https://defectdojo.atlassian.net","displayUrl":"https://defectdojo.atlassian.net","displayUrlServicedeskHelpCenter":"https://defectdojo.atlassian.net","displayUrlCSMHelpSeeker":"https://defectdojo.atlassian.net","displayUrlConfluence":"https://defectdojo.atlassian.net","version":"1001.0.0-SNAPSHOT","versionNumbers":[1001,0,0],"deploymentType":"Cloud","buildNumber":100290,"buildDate":"2026-01-16T02:15:38.000+0100","serverTime":"2026-01-16T22:02:38.840+0100","scmInfo":"cd645fa75fdcd33afc8b2e176098a731fd922a37","serverTitle":"Jira","defaultLocale":{"locale":"en_US"},"serverTimeZone":"Etc/UTC"}'
headers:
Atl-Request-Id:
- - 0bd2f346-a44a-4393-b57c-67a50d03d7ee
+ - c27fe9a4-fbb9-4168-9b4c-3b78a3e3db5f
Atl-Traceid:
- - 0bd2f346a44a4393b57c67a50d03d7ee
+ - c27fe9a4fbb941689b4c3b78a3e3db5f
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1150,9 +1190,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:46 GMT
+ - Fri, 16 Jan 2026 21:02:38 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1160,7 +1200,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=312,atl-edge;dur=310,atl-edge-internal;dur=15,atl-edge-upstream;dur=296,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="SdocxV4y5YndJe6GnOaNOu8FHiB-TS-v1ZTEobnDdZPoco_xYMxYQg==",cdn-downstream-fbl;dur=315
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=199,atl-edge;dur=172,atl-edge-internal;dur=18,atl-edge-upstream;dur=157,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P1",cdn-rid;desc="GRD3L6h-_pe22KWeZIzEgXz2YLGjq7uOY32y3v1DeMzpZwIiIim_0Q==",cdn-downstream-fbl;dur=203
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1170,19 +1210,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 f1635e40dd33e4abcdd79d3670805a7a.cloudfront.net (CloudFront)
+ - 1.1 eeecd5966c3b521525359cbb7c6d9088.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - SdocxV4y5YndJe6GnOaNOu8FHiB-TS-v1ZTEobnDdZPoco_xYMxYQg==
+ - GRD3L6h-_pe22KWeZIzEgXz2YLGjq7uOY32y3v1DeMzpZwIiIim_0Q==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P1
X-Arequestid:
- - 9e2d54c1f8f999b9708c526ad21ed529
+ - 83e9a3e19da425600a6a04e0cd164f4b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1202,7 +1246,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields
response:
@@ -1216,9 +1260,9 @@ interactions:
Issues","key":"issuelinks","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/issue/picker?currentProjectId=&showSubTaskParent=true&showSubTasks=true¤tIssueKey=null&query=","hasDefaultValue":false,"operations":["add","copy"]},"assignee":{"required":false,"schema":{"type":"user","system":"assignee"},"name":"Assignee","key":"assignee","autoCompleteUrl":"https://defectdojo.atlassian.net/rest/api/2/user/assignable/search?project=NTEST&query=","hasDefaultValue":false,"operations":["set"]}}}]}]}'
headers:
Atl-Request-Id:
- - 29b18079-7bd1-4664-aef3-00974e97f8f3
+ - c3cb5dab-87d0-4738-be41-c411b5f57c6a
Atl-Traceid:
- - 29b180797bd14664aef300974e97f8f3
+ - c3cb5dab87d04738be41c411b5f57c6a
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1228,9 +1272,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:48 GMT
+ - Fri, 16 Jan 2026 21:02:39 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1238,7 +1282,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=491,atl-edge;dur=489,atl-edge-internal;dur=16,atl-edge-upstream;dur=473,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P2",cdn-rid;desc="27lStWLLdZVWEZyu2UR2otSEfQFj8tXlv-99omc6AXkinvAmPX-A_Q==",cdn-downstream-fbl;dur=495
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=461,atl-edge;dur=439,atl-edge-internal;dur=17,atl-edge-upstream;dur=421,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P3",cdn-rid;desc="YcMbJ-cZ_UmgZ8BTz2AFL2bUkjdPIUSYdd1h3VHFBJYIwHPEpfDjfA==",cdn-downstream-fbl;dur=464
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1248,22 +1292,26 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 5e473a5e64c6a2f7bc916721cc188252.cloudfront.net (CloudFront)
+ - 1.1 4dbb4eca48de71e6d41b5ffb5e37d46e.cloudfront.net (CloudFront)
Warning:
- 'The issue create meta endpoint has been deprecated. (Deprecation start date:
June 03, 2024)'
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - 27lStWLLdZVWEZyu2UR2otSEfQFj8tXlv-99omc6AXkinvAmPX-A_Q==
+ - YcMbJ-cZ_UmgZ8BTz2AFL2bUkjdPIUSYdd1h3VHFBJYIwHPEpfDjfA==
X-Amz-Cf-Pop:
- - SYD62-P2
+ - DEN53-P3
X-Arequestid:
- - 1b65082d88c2ef663a1098849cb1fac1
+ - e6a6475f0c8d2e872711d2ff90c78d7b
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '350'
+ X-Ratelimit-Remaining:
+ - '349'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1273,18 +1321,18 @@ interactions:
body: '{"fields": {"project": {"key": "NTEST"}, "issuetype": {"name": "Task"},
"summary": "Findings in: fresh:0.3.0", "description": "\n\n\n\n\n\n\n\nA group
of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2. Group\n*Group*:
- [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/57] in [Security
+ [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/126] in [Security
How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version ||
Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]\n*Defect
- Dojo link:* http://localhost:8080/finding/368 (368)\n*Severity:* Medium\n *Due
- Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]\n*Defect
+ Dojo link:* http://localhost:8080/finding/382 (382)\n*Severity:* Medium\n *Due
+ Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service when
@@ -1303,21 +1351,21 @@ interactions:
Connection:
- keep-alive
Content-Length:
- - '2164'
+ - '2167'
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: POST
uri: https://defectdojo.atlassian.net/rest/api/2/issue
response:
body:
- string: '{"id":"21323","key":"NTEST-3144","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21323"}'
+ string: '{"id":"24939","key":"NTEST-3224","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24939"}'
headers:
Atl-Request-Id:
- - 34d6ea11-9d23-448f-a305-9bf94517ffc0
+ - 7aea8a5b-09cb-4604-bdfd-27eac0a04098
Atl-Traceid:
- - 34d6ea119d23448fa3059bf94517ffc0
+ - 7aea8a5b09cb4604bdfd27eac0a04098
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1325,9 +1373,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:49 GMT
+ - Fri, 16 Jan 2026 21:02:40 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1335,7 +1383,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=830,atl-edge;dur=828,atl-edge-internal;dur=14,atl-edge-upstream;dur=814,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD3-P1",cdn-rid;desc="uwSCzthXDgXfsK_9sfObNRhoq6pLi5atEuxTbmc6e0YY12oIAQH9Mw==",cdn-downstream-fbl;dur=834
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=66,cdn-upstream-fbl;dur=961,atl-edge;dur=871,atl-edge-internal;dur=15,atl-edge-upstream;dur=856,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN53-P2",cdn-rid;desc="TgYmrhCHpQmTmaQ65LgVSMPruQ3-JlLUWiCKn7voZARKx60vmkFDkg==",cdn-downstream-fbl;dur=964
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1345,19 +1393,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 bafb3fcfb450000b354db6fbbd3d2828.cloudfront.net (CloudFront)
+ - 1.1 4548950ffe5bf7b4d2419a082d770c1a.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - uwSCzthXDgXfsK_9sfObNRhoq6pLi5atEuxTbmc6e0YY12oIAQH9Mw==
+ - TgYmrhCHpQmTmaQ65LgVSMPruQ3-JlLUWiCKn7voZARKx60vmkFDkg==
X-Amz-Cf-Pop:
- - SYD3-P1
+ - DEN53-P2
X-Arequestid:
- - 85d505a3e96f7a3e14d7a3ba708d178a
+ - 42374f5e1c088d652e02b80f2339550d
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '200'
+ X-Ratelimit-Remaining:
+ - '199'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1377,30 +1429,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3144
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3224
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21323","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21323","key":"NTEST-3144","fields":{"statuscategorychangedate":"2025-07-25T21:14:49.787+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24939","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24939","key":"NTEST-3224","fields":{"statuscategorychangedate":"2026-01-16T22:02:40.375+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3144/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3144/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:49.501+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012lb:","updated":"2025-07-25T21:14:49.566+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3224/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3224/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:40.011+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nr:","updated":"2026-01-16T22:02:40.152+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/57]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/126]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]\n*Defect
- Dojo link:* http://localhost:8080/finding/368 (368)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]\n*Defect
+ Dojo link:* http://localhost:8080/finding/382 (382)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1409,12 +1461,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21323/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24939/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - 4d6ec0ff-5f67-4e2f-aebf-6edda92ad9fd
+ - 1708def0-4e23-4629-a31d-2ae3a544cf93
Atl-Traceid:
- - 4d6ec0ff5f674e2faebf6edda92ad9fd
+ - 1708def04e234629a31d2ae3a544cf93
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1424,9 +1476,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:51 GMT
+ - Fri, 16 Jan 2026 21:02:40 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1434,7 +1486,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=424,atl-edge;dur=422,atl-edge-internal;dur=14,atl-edge-upstream;dur=409,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P3",cdn-rid;desc="gw2jN3IBx1CsOgjLHpSG7BlIdiOInCmtYrFVttfAa3V1RsKcBMIM0g==",cdn-downstream-fbl;dur=428
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=311,atl-edge;dur=287,atl-edge-internal;dur=17,atl-edge-upstream;dur=269,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P1",cdn-rid;desc="LV8ttQINijk2k_mbwluCNZ8G_5SjcfEtCf-BFtNF3HueoI8neVHhuw==",cdn-downstream-fbl;dur=315
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1444,19 +1496,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 fd52efac0e72eb0d0b1148d8f877dd9e.cloudfront.net (CloudFront)
+ - 1.1 a1fb8be6c85edc28c20536da81db5204.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - gw2jN3IBx1CsOgjLHpSG7BlIdiOInCmtYrFVttfAa3V1RsKcBMIM0g==
+ - LV8ttQINijk2k_mbwluCNZ8G_5SjcfEtCf-BFtNF3HueoI8neVHhuw==
X-Amz-Cf-Pop:
- - SYD62-P3
+ - DEN52-P1
X-Arequestid:
- - bd4ef8e84d6449279db210a25fdcee24
+ - f72a90b79cffe2186e7ea7f8b8b63f78
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '399'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1476,30 +1532,30 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - python-requests/2.32.4
+ - python-requests/2.32.5
method: GET
- uri: https://defectdojo.atlassian.net/rest/api/2/issue/21323
+ uri: https://defectdojo.atlassian.net/rest/api/2/issue/24939
response:
body:
- string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"21323","self":"https://defectdojo.atlassian.net/rest/api/2/issue/21323","key":"NTEST-3144","fields":{"statuscategorychangedate":"2025-07-25T21:14:49.787+0200","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
+ string: '{"expand":"renderedFields,names,schema,operations,editmeta,changelog,versionedRepresentations,customfield_10010.requestTypePractice","id":"24939","self":"https://defectdojo.atlassian.net/rest/api/2/issue/24939","key":"NTEST-3224","fields":{"statuscategorychangedate":"2026-01-16T22:02:40.375+0100","fixVersions":[],"statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
Do"},"resolution":null,"lastViewed":null,"customfield_10060":null,"customfield_10061":null,"customfield_10062":null,"customfield_10063":null,"customfield_10064":null,"customfield_10065":null,"customfield_10066":null,"priority":{"self":"https://defectdojo.atlassian.net/rest/api/2/priority/3","iconUrl":"https://defectdojo.atlassian.net/images/icons/priorities/medium_new.svg","name":"Medium","id":"3"},"labels":[],"timeestimate":null,"aggregatetimeoriginalestimate":null,"versions":[],"issuelinks":[],"assignee":null,"status":{"self":"https://defectdojo.atlassian.net/rest/api/2/status/10000","description":"","iconUrl":"https://defectdojo.atlassian.net/","name":"Backlog","id":"10000","statusCategory":{"self":"https://defectdojo.atlassian.net/rest/api/2/statuscategory/2","id":2,"key":"new","colorName":"blue-gray","name":"To
- Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5","accountId":"712020:292a8b4c-ebd5-44be-bb94-d07c56a14dc5","emailAddress":"valentijn@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","24x24":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","16x16":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png","32x32":"https://secure.gravatar.com/avatar/d05de848fe8cc7816c52a5e34e327bad?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FVS-3.png"},"displayName":"Valentijn
- Scholten","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3144/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
- small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3144/watchers","watchCount":1,"isWatching":true},"created":"2025-07-25T21:14:49.501+0200","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i012lb:","updated":"2025-07-25T21:14:49.566+0200","timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
+ Do"}},"components":[],"customfield_10050":null,"customfield_10051":null,"customfield_10053":null,"customfield_10055":null,"customfield_10056":null,"customfield_10057":null,"customfield_10058":null,"customfield_10059":null,"customfield_10049":null,"aggregatetimeestimate":null,"creator":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"subtasks":[],"customfield_10040":null,"customfield_10041":null,"customfield_10042":null,"reporter":{"self":"https://defectdojo.atlassian.net/rest/api/2/user?accountId=5d3878b170e3c90c952f91f6","accountId":"5d3878b170e3c90c952f91f6","emailAddress":"cody@defectdojo.com","avatarUrls":{"48x48":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","24x24":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","16x16":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png","32x32":"https://secure.gravatar.com/avatar/4e018ad14467c87539bcb7052ffaef8c?d=https%3A%2F%2Favatar-management--avatars.us-west-2.prod.public.atl-paas.net%2Finitials%2FCM-0.png"},"displayName":"Cody
+ Maffucci","active":true,"timeZone":"Europe/Zurich","accountType":"atlassian"},"customfield_10043":null,"aggregateprogress":{"progress":0,"total":0},"customfield_10044":null,"customfield_10045":null,"customfield_10046":null,"customfield_10047":null,"customfield_10048":null,"customfield_10038":null,"customfield_10039":null,"progress":{"progress":0,"total":0},"votes":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3224/votes","votes":0,"hasVoted":false},"worklog":{"startAt":0,"maxResults":20,"total":0,"worklogs":[]},"issuetype":{"self":"https://defectdojo.atlassian.net/rest/api/2/issuetype/10002","id":"10002","description":"A
+ small, distinct piece of work.","iconUrl":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium","name":"Task","subtask":false,"avatarId":10318,"hierarchyLevel":0},"timespent":null,"customfield_10030":null,"project":{"self":"https://defectdojo.atlassian.net/rest/api/2/project/10000","id":"10000","key":"NTEST","name":"Unittests","projectTypeKey":"software","simplified":false,"avatarUrls":{"48x48":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407","24x24":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=small","16x16":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=xsmall","32x32":"https://defectdojo.atlassian.net/rest/api/2/universal_avatar/view/type/project/avatar/10407?size=medium"}},"customfield_10031":null,"customfield_10032":null,"customfield_10033":null,"aggregatetimespent":null,"customfield_10035":null,"customfield_10036":null,"customfield_10037":null,"customfield_10027":null,"customfield_10028":null,"customfield_10029":null,"resolutiondate":null,"workratio":-1,"watches":{"self":"https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-3224/watchers","watchCount":1,"isWatching":true},"created":"2026-01-16T22:02:40.011+0100","customfield_10020":null,"customfield_10021":null,"customfield_10022":null,"customfield_10023":null,"customfield_10016":null,"customfield_10017":null,"customfield_10019":"0|i014nr:","updated":"2026-01-16T22:02:40.152+0100","customfield_10090":null,"timeoriginalestimate":null,"description":"\n\n\n\n\n\n\n\nA
group of Findings has been pushed to JIRA to be investigated and fixed:\n\nh2.
- Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/57]
+ Group\n*Group*: [Findings in: fresh:0.3.0|http://localhost:8080/finding_group/126]
in [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1]
- / [NPM Audit Scan|http://localhost:8080/test/126]\n\nh2. Summary\n*Severity:*
- Medium *Due Date:* Oct. 23, 2025 \n\nFindings matching the Active, Verified
+ / [NPM Audit Scan|http://localhost:8080/test/131]\n\nh2. Summary\n*Severity:*
+ Medium *Due Date:* April 16, 2026 \n\nFindings matching the Active, Verified
and Severity criteria:\n|| Severity || CVE || CWE || Component || Version
|| Title || Status ||\n|Medium|[CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]|[400|https://cwe.mitre.org/data/definitions/400.html]|fresh|0.3.0|[Regular
- Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]|Active,
+ Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]|Active,
Verified|\n\nFindings *not* matching the Active, Verified and Severity criteria:\n||
Severity || CVE || CWE || Component || Version || Title || Status ||\n\n\n\n\n\n\n\n\n\n\nh1.
- Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/368]\n*Defect
- Dojo link:* http://localhost:8080/finding/368 (368)\n*Severity:* Medium\n
- *Due Date:* Oct. 23, 2025 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
+ Findings\n\nh3. [Regular Expression Denial of Service - (Fresh, < 0.5.2)|http://localhost:8080/finding/382]\n*Defect
+ Dojo link:* http://localhost:8080/finding/382 (382)\n*Severity:* Medium\n
+ *Due Date:* April 16, 2026 \n *CWE:* [CWE-400|https://cwe.mitre.org/data/definitions/400.html]
\n*CVE:* [CVE-2017-16119|https://nvd.nist.gov/vuln/detail/CVE-2017-16119]\n\n\n\n\n\n\n*Source
File*: express>fresh\n\n\n\n\n*Description*:\nhttps://nodesecurity.io/advisories/526\nAffected
versions of `fresh` are vulnerable to regular expression denial of service
@@ -1508,12 +1564,12 @@ interactions:
CWE: CWE-400\n Access: public\n\n\n*Mitigation*:\nUpdate to version 0.5.2
or later.\n\n\n\n*Impact*:\nNo impact provided\n\n\n\n\n\n*References*:\nhttps://nodesecurity.io/advisories/526\n\n\n\n\n\n*Reporter:*
[(admin) ()|mailto:]\n","customfield_10010":null,"customfield_10014":null,"timetracking":{},"customfield_10015":null,"customfield_10005":null,"customfield_10006":null,"customfield_10007":null,"security":null,"customfield_10008":null,"attachment":[],"customfield_10009":null,"summary":"Findings
- in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/21323/comment","maxResults":0,"total":0,"startAt":0}}}'
+ in: fresh:0.3.0","customfield_10001":null,"customfield_10002":[],"customfield_10123":null,"customfield_10003":null,"customfield_10004":null,"environment":null,"duedate":null,"comment":{"comments":[],"self":"https://defectdojo.atlassian.net/rest/api/2/issue/24939/comment","maxResults":0,"total":0,"startAt":0}}}'
headers:
Atl-Request-Id:
- - e8266bfc-4ca3-460c-9e24-3443b9e96403
+ - adfb6ad3-434f-4eee-a9df-8b07412998f6
Atl-Traceid:
- - e8266bfc4ca3460c9e243443b9e96403
+ - adfb6ad3434f4eeea9df8b07412998f6
Cache-Control:
- no-cache, no-store, no-transform
Connection:
@@ -1523,9 +1579,9 @@ interactions:
Content-Type:
- application/json;charset=UTF-8
Date:
- - Fri, 25 Jul 2025 19:14:52 GMT
+ - Fri, 16 Jan 2026 21:02:41 GMT
Nel:
- - '{"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to":
+ - '{"failure_fraction": 0.01, "include_subdomains": true, "max_age": 600, "report_to":
"endpoint-1"}'
Report-To:
- '{"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group":
@@ -1533,7 +1589,7 @@ interactions:
Server:
- AtlassianEdge
Server-Timing:
- - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=434,atl-edge;dur=432,atl-edge-internal;dur=16,atl-edge-upstream;dur=416,atl-edge-pop;desc="aws-ap-southeast-2",cdn-cache-miss,cdn-pop;desc="SYD62-P1",cdn-rid;desc="CW9c1Bqc1zaRiX3nqiftp9acSA-2t0S3P-tYj0NLH-HUmIKFDgCcAA==",cdn-downstream-fbl;dur=439
+ - cdn-upstream-layer;desc="EDGE",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=275,atl-edge;dur=252,atl-edge-internal;dur=17,atl-edge-upstream;dur=234,atl-edge-pop;desc="aws-us-west-2",cdn-cache-miss,cdn-pop;desc="DEN52-P2",cdn-rid;desc="rtPiXZSL01ROPD72vnGcSMb3-ybWmqXkWLsEt0ry8_ONiKXir9ukMw==",cdn-downstream-fbl;dur=278
Strict-Transport-Security:
- max-age=63072000; includeSubDomains; preload
Timing-Allow-Origin:
@@ -1543,19 +1599,23 @@ interactions:
Vary:
- Accept-Encoding
Via:
- - 1.1 adb4605fb7528573053aec50d6f562c8.cloudfront.net (CloudFront)
+ - 1.1 a7c0ba01db75946f7df3f7eaf69984b6.cloudfront.net (CloudFront)
X-Aaccountid:
- - 712020%3A292a8b4c-ebd5-44be-bb94-d07c56a14dc5
+ - 5d3878b170e3c90c952f91f6
X-Amz-Cf-Id:
- - CW9c1Bqc1zaRiX3nqiftp9acSA-2t0S3P-tYj0NLH-HUmIKFDgCcAA==
+ - rtPiXZSL01ROPD72vnGcSMb3-ybWmqXkWLsEt0ry8_ONiKXir9ukMw==
X-Amz-Cf-Pop:
- - SYD62-P1
+ - DEN52-P2
X-Arequestid:
- - 26205fad8395d665bb9c23c7b66abf68
+ - 7b8e00073810c9f68db1fa520e7f1463
X-Cache:
- Miss from cloudfront
X-Content-Type-Options:
- nosniff
+ X-Ratelimit-Limit:
+ - '400'
+ X-Ratelimit-Remaining:
+ - '398'
X-Xss-Protection:
- 1; mode=block
status:
@@ -1564,14 +1624,14 @@ interactions:
- request:
body: '{"description": "Event test_added has occurred.", "title": "Test created
for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user": null,
- "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/",
+ "url_ui": "http://localhost:8080/test/131", "url_api": "http://localhost:8080/api/v2/tests/131/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 126, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/"}}'
+ 131, "url_ui": "http://localhost:8080/test/131", "url_api": "http://localhost:8080/api/v2/tests/131/"}}'
headers:
Accept:
- application/json
@@ -1586,7 +1646,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- test_added
X-DefectDojo-Instance:
@@ -1600,22 +1660,22 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"849\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"test_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event test_added has occurred.\\\", \\\"title\\\": \\\"Test created for
Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\", \\\"user\\\":
- null, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/tests/126/\\\", \\\"product_type\\\": {\\\"name\\\":
+ null, \\\"url_ui\\\": \\\"http://localhost:8080/test/131\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/tests/131/\\\", \\\"product_type\\\": {\\\"name\\\":
\\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 126, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\"}}\",\n \"files\":
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 131, \\\"url_ui\\\": \\\"http://localhost:8080/test/131\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/131/\\\"}}\",\n \"files\":
{},\n \"form\": {},\n \"json\": {\n \"description\": \"Event test_added
has occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\":
\"1st Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
@@ -1625,11 +1685,11 @@ interactions:
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 126,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/126\"\n },\n \"title\":
+ 131,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/131/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/131\"\n },\n \"title\":
\"Test created for Security How-to: 1st Quarter Engagement: NPM Audit Scan\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n \"url_ui\":
- \"http://localhost:8080/test/126\",\n \"user\": null\n }\n}\n"
+ \ \"url_api\": \"http://localhost:8080/api/v2/tests/131/\",\n \"url_ui\":
+ \"http://localhost:8080/test/131\",\n \"user\": null\n }\n}\n"
headers:
Access-Control-Allow-Credentials:
- 'true'
@@ -1638,7 +1698,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:52 GMT
+ - Fri, 16 Jan 2026 21:02:41 GMT
Transfer-Encoding:
- chunked
status:
@@ -1647,32 +1707,32 @@ interactions:
- request:
body: '{"description": "Event scan_added has occurred.", "title": "Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan", "user":
- null, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/",
+ null, "url_ui": "http://localhost:8080/test/131", "url_api": "http://localhost:8080/api/v2/tests/131/",
"product_type": {"name": "ebooks", "id": 2, "url_ui": "http://localhost:8080/product/type/2",
"url_api": "http://localhost:8080/api/v2/product_types/2/"}, "product": {"name":
"Security How-to", "id": 2, "url_ui": "http://localhost:8080/product/2", "url_api":
"http://localhost:8080/api/v2/products/2/"}, "engagement": {"name": "1st Quarter
Engagement", "id": 1, "url_ui": "http://localhost:8080/engagement/1", "url_api":
"http://localhost:8080/api/v2/engagements/1/"}, "test": {"title": null, "id":
- 126, "url_ui": "http://localhost:8080/test/126", "url_api": "http://localhost:8080/api/v2/tests/126/"},
- "finding_count": 5, "findings": {"new": [{"id": 366, "title": "2222Regular Expression
- Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/366",
- "url_api": "http://localhost:8080/api/v2/findings/366/"}, {"id": 367, "title":
+ 131, "url_ui": "http://localhost:8080/test/131", "url_api": "http://localhost:8080/api/v2/tests/131/"},
+ "finding_count": 5, "findings": {"new": [{"id": 380, "title": "2222Regular Expression
+ Denial of Service - (Negotiator, <= 0.6.0)", "severity": "High", "url_ui": "http://localhost:8080/finding/380",
+ "url_api": "http://localhost:8080/api/v2/findings/380/"}, {"id": 381, "title":
"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7
|| >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "High", "url_ui": "http://localhost:8080/finding/367", "url_api":
- "http://localhost:8080/api/v2/findings/367/"}, {"id": 365, "title": "Regular
+ "severity": "High", "url_ui": "http://localhost:8080/finding/381", "url_api":
+ "http://localhost:8080/api/v2/findings/381/"}, {"id": 379, "title": "Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)", "severity": "Medium",
- "url_ui": "http://localhost:8080/finding/365", "url_api": "http://localhost:8080/api/v2/findings/365/"},
- {"id": 368, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/368", "url_api":
- "http://localhost:8080/api/v2/findings/368/"}, {"id": 369, "title": "2222Remote
+ "url_ui": "http://localhost:8080/finding/379", "url_api": "http://localhost:8080/api/v2/findings/379/"},
+ {"id": 382, "title": "Regular Expression Denial of Service - (Fresh, < 0.5.2)",
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/382", "url_api":
+ "http://localhost:8080/api/v2/findings/382/"}, {"id": 383, "title": "2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >=
5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 ||
>= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)",
- "severity": "Medium", "url_ui": "http://localhost:8080/finding/369", "url_api":
- "http://localhost:8080/api/v2/findings/369/"}], "reactivated": [], "mitigated":
+ "severity": "Medium", "url_ui": "http://localhost:8080/finding/383", "url_api":
+ "http://localhost:8080/api/v2/findings/383/"}], "reactivated": [], "mitigated":
[], "untouched": []}}'
headers:
Accept:
@@ -1688,7 +1748,7 @@ interactions:
Content-Type:
- application/json
User-Agent:
- - DefectDojo-2.48.4
+ - DefectDojo-2.54.1
X-DefectDojo-Event:
- scan_added
X-DefectDojo-Instance:
@@ -1702,82 +1762,82 @@ interactions:
[\n \"Token xxx\"\n ],\n \"Connection\": [\n \"keep-alive\"\n
\ ],\n \"Content-Length\": [\n \"2378\"\n ],\n \"Content-Type\":
[\n \"application/json\"\n ],\n \"Host\": [\n \"webhook.endpoint:8080\"\n
- \ ],\n \"User-Agent\": [\n \"DefectDojo-2.48.4\"\n ],\n \"X-Defectdojo-Event\":
+ \ ],\n \"User-Agent\": [\n \"DefectDojo-2.54.1\"\n ],\n \"X-Defectdojo-Event\":
[\n \"scan_added\"\n ],\n \"X-Defectdojo-Instance\": [\n \"http://localhost:8080\"\n
- \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"10.250.1.7\",\n \"url\":
+ \ ]\n },\n \"method\": \"POST\",\n \"origin\": \"172.19.0.7\",\n \"url\":
\"http://webhook.endpoint:8080/post\",\n \"data\": \"{\\\"description\\\":
\\\"Event scan_added has occurred.\\\", \\\"title\\\": \\\"Created/Updated
5 findings for Security How-to: 1st Quarter Engagement: NPM Audit Scan\\\",
- \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\", \\\"product_type\\\":
+ \\\"user\\\": null, \\\"url_ui\\\": \\\"http://localhost:8080/test/131\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/131/\\\", \\\"product_type\\\":
{\\\"name\\\": \\\"ebooks\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/type/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/product_types/2/\\\"}, \\\"product\\\":
{\\\"name\\\": \\\"Security How-to\\\", \\\"id\\\": 2, \\\"url_ui\\\": \\\"http://localhost:8080/product/2\\\",
\\\"url_api\\\": \\\"http://localhost:8080/api/v2/products/2/\\\"}, \\\"engagement\\\":
{\\\"name\\\": \\\"1st Quarter Engagement\\\", \\\"id\\\": 1, \\\"url_ui\\\":
\\\"http://localhost:8080/engagement/1\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/engagements/1/\\\"},
- \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 126, \\\"url_ui\\\": \\\"http://localhost:8080/test/126\\\",
- \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/126/\\\"}, \\\"finding_count\\\":
- 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 366, \\\"title\\\": \\\"2222Regular
+ \\\"test\\\": {\\\"title\\\": null, \\\"id\\\": 131, \\\"url_ui\\\": \\\"http://localhost:8080/test/131\\\",
+ \\\"url_api\\\": \\\"http://localhost:8080/api/v2/tests/131/\\\"}, \\\"finding_count\\\":
+ 5, \\\"findings\\\": {\\\"new\\\": [{\\\"id\\\": 380, \\\"title\\\": \\\"2222Regular
Expression Denial of Service - (Negotiator, <= 0.6.0)\\\", \\\"severity\\\":
- \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/366\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/366/\\\"}, {\\\"id\\\": 367, \\\"title\\\":
+ \\\"High\\\", \\\"url_ui\\\": \\\"http://localhost:8080/finding/380\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/380/\\\"}, {\\\"id\\\": 381, \\\"title\\\":
\\\"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0
< 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >=
6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2
|| >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"High\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/367\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/367/\\\"},
- {\\\"id\\\": 365, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/381\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/381/\\\"},
+ {\\\"id\\\": 379, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Negotiator, <= 0.6.0)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/365\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/365/\\\"},
- {\\\"id\\\": 368, \\\"title\\\": \\\"Regular Expression Denial of Service
+ \\\"http://localhost:8080/finding/379\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/379/\\\"},
+ {\\\"id\\\": 382, \\\"title\\\": \\\"Regular Expression Denial of Service
- (Fresh, < 0.5.2)\\\", \\\"severity\\\": \\\"Medium\\\", \\\"url_ui\\\":
- \\\"http://localhost:8080/finding/368\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/368/\\\"},
- {\\\"id\\\": 369, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
+ \\\"http://localhost:8080/finding/382\\\", \\\"url_api\\\": \\\"http://localhost:8080/api/v2/findings/382/\\\"},
+ {\\\"id\\\": 383, \\\"title\\\": \\\"2222Remote Code Execution - (Pg, < 2.11.2
|| >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 <
6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0
< 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\\\", \\\"severity\\\": \\\"Medium\\\",
- \\\"url_ui\\\": \\\"http://localhost:8080/finding/369\\\", \\\"url_api\\\":
- \\\"http://localhost:8080/api/v2/findings/369/\\\"}], \\\"reactivated\\\":
+ \\\"url_ui\\\": \\\"http://localhost:8080/finding/383\\\", \\\"url_api\\\":
+ \\\"http://localhost:8080/api/v2/findings/383/\\\"}], \\\"reactivated\\\":
[], \\\"mitigated\\\": [], \\\"untouched\\\": []}}\",\n \"files\": {},\n
\ \"form\": {},\n \"json\": {\n \"description\": \"Event scan_added has
occurred.\",\n \"engagement\": {\n \"id\": 1,\n \"name\": \"1st
Quarter Engagement\",\n \"url_api\": \"http://localhost:8080/api/v2/engagements/1/\",\n
\ \"url_ui\": \"http://localhost:8080/engagement/1\"\n },\n \"finding_count\":
5,\n \"findings\": {\n \"mitigated\": [],\n \"new\": [\n {\n
- \ \"id\": 366,\n \"severity\": \"High\",\n \"title\":
+ \ \"id\": 380,\n \"severity\": \"High\",\n \"title\":
\"2222Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/366/\",\n \"url_ui\": \"http://localhost:8080/finding/366\"\n
- \ },\n {\n \"id\": 367,\n \"severity\": \"High\",\n
+ \"http://localhost:8080/api/v2/findings/380/\",\n \"url_ui\": \"http://localhost:8080/finding/380\"\n
+ \ },\n {\n \"id\": 381,\n \"severity\": \"High\",\n
\ \"title\": \"Remote Code Execution - (Pg, < 2.11.2 || >= 3.0.0 <
3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0
< 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >=
- 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/367/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/367\"\n },\n
- \ {\n \"id\": 365,\n \"severity\": \"Medium\",\n \"title\":
+ 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/381/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/381\"\n },\n
+ \ {\n \"id\": 379,\n \"severity\": \"Medium\",\n \"title\":
\"Regular Expression Denial of Service - (Negotiator, <= 0.6.0)\",\n \"url_api\":
- \"http://localhost:8080/api/v2/findings/365/\",\n \"url_ui\": \"http://localhost:8080/finding/365\"\n
- \ },\n {\n \"id\": 368,\n \"severity\": \"Medium\",\n
+ \"http://localhost:8080/api/v2/findings/379/\",\n \"url_ui\": \"http://localhost:8080/finding/379\"\n
+ \ },\n {\n \"id\": 382,\n \"severity\": \"Medium\",\n
\ \"title\": \"Regular Expression Denial of Service - (Fresh, < 0.5.2)\",\n
- \ \"url_api\": \"http://localhost:8080/api/v2/findings/368/\",\n \"url_ui\":
- \"http://localhost:8080/finding/368\"\n },\n {\n \"id\":
- 369,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
+ \ \"url_api\": \"http://localhost:8080/api/v2/findings/382/\",\n \"url_ui\":
+ \"http://localhost:8080/finding/382\"\n },\n {\n \"id\":
+ 383,\n \"severity\": \"Medium\",\n \"title\": \"2222Remote
Code Execution - (Pg, < 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 ||
>= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5
|| >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 <
- 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/369/\",\n
- \ \"url_ui\": \"http://localhost:8080/finding/369\"\n }\n ],\n
+ 7.1.2)\",\n \"url_api\": \"http://localhost:8080/api/v2/findings/383/\",\n
+ \ \"url_ui\": \"http://localhost:8080/finding/383\"\n }\n ],\n
\ \"reactivated\": [],\n \"untouched\": []\n },\n \"product\":
{\n \"id\": 2,\n \"name\": \"Security How-to\",\n \"url_api\":
\"http://localhost:8080/api/v2/products/2/\",\n \"url_ui\": \"http://localhost:8080/product/2\"\n
\ },\n \"product_type\": {\n \"id\": 2,\n \"name\": \"ebooks\",\n
\ \"url_api\": \"http://localhost:8080/api/v2/product_types/2/\",\n \"url_ui\":
\"http://localhost:8080/product/type/2\"\n },\n \"test\": {\n \"id\":
- 126,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/126\"\n },\n \"title\":
+ 131,\n \"title\": null,\n \"url_api\": \"http://localhost:8080/api/v2/tests/131/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/131\"\n },\n \"title\":
\"Created/Updated 5 findings for Security How-to: 1st Quarter Engagement:
- NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/126/\",\n
- \ \"url_ui\": \"http://localhost:8080/test/126\",\n \"user\": null\n
+ NPM Audit Scan\",\n \"url_api\": \"http://localhost:8080/api/v2/tests/131/\",\n
+ \ \"url_ui\": \"http://localhost:8080/test/131\",\n \"user\": null\n
\ }\n}\n"
headers:
Access-Control-Allow-Credentials:
@@ -1787,7 +1847,7 @@ interactions:
Content-Type:
- application/json; charset=utf-8
Date:
- - Fri, 25 Jul 2025 19:14:52 GMT
+ - Fri, 16 Jan 2026 21:02:41 GMT
Transfer-Encoding:
- chunked
status: