What's new on Asserts 2019-08-21

Hello everyone, hope you are fine!

Today we announce some new checks (well, maybe a lot of new checks):

feat(back): #455 java.does_not_handle_exceptions
feat(back): #657 graphql.has_dos
feat(cross): #657 graphql.accept_introspection_queries
feat(back): #671 http.has_xsleak
feat(back): #672 csharp.has_generic_exceptions
feat(back): #674 csharp null reference exception
feat(back): #702 dns subdomain takeover
feat(back): apk.has_fragment_injection
feat(back): apk.is_unsigned
feat(back): apk.not_checks_for_root
feat(back): apk.not_forces_updates
feat(back): apk.not_verifies_ssl_hostname
feat(back): apk.uses_dangerous_perms
feat(back): apk.webview_allows_resource_access
feat(back): apk.webview_caches_javascript
feat(back): cloudfront.has_logging_disabled
feat(back): cloudfront.has_not_geo_restrictions
feat(back): cloudtrail.has_unencrypted_logs
feat(back): cloudtrail.is_trail_bucket_logging_disabled
feat(back): cloudtrail.is_trail_bucket_public
feat(back): ec2.has_unencrypted_snapshots
feat(back): ec2.has_unused_seggroups
feat(back): ec2.seggroup_allows_anyone_to_admin_ports

And some old checks improvements:

feat(back): #649 RPGLE more recognized cases
feat(back): #662 reviewed HTTP headers logic

We hope you enjoy them, find them useful, and help you improve your app security

Have a nice day :partying_face:

3 Likes

And still 92% coverage!!!

1 Like