[DEPRECATED] Using Web Security Scanner to Find Vulnerabilities in an App Engine Application Reviews

Ravi D. · Reviewed over 4 years ago

Justin A. · Reviewed over 4 years ago

Rob B. · Reviewed over 4 years ago

Jose M. · Reviewed over 4 years ago

Gang T. · Reviewed over 4 years ago

Scan takes way too long (over 20 minutes). Instructions should increase the max QPS to help with this. Also, fixing the vulnerability (which we already understand because we created it!) and running the scan again just to show it is gone is rather pointless.

Eric T. · Reviewed over 4 years ago

Salvatore C. · Reviewed over 4 years ago

Dalton C. · Reviewed over 4 years ago

Dalton C. · Reviewed over 4 years ago

The scan takes like 40 minutes to complete. And the "fix" for XSS is actually breaking the /add endpoint (there is no function escape in the namespace)

Wiktor N. · Reviewed over 4 years ago

Jack V. · Reviewed over 4 years ago

Alamsyah A. · Reviewed over 4 years ago

Does not match GCP console version. DOES NOT WORK!

Tony C. · Reviewed over 4 years ago

scanner too slow

Christiane P. · Reviewed over 4 years ago

d

Aldry D. · Reviewed over 4 years ago

Daryl G. · Reviewed over 4 years ago

Marko V. · Reviewed over 4 years ago

Thevakumar K. · Reviewed over 4 years ago

Paul J. · Reviewed over 4 years ago

Michał M. · Reviewed over 4 years ago

Yuk T. · Reviewed over 4 years ago

Python code fix was inaccurate; second scan took 26 minutes.

Bingning D. · Reviewed over 4 years ago

The App URL was not just https://qwiklabs-gcp-00-93dd3bc43317.appspot.com but https://qwiklabs-gcp-00-93dd3bc43317.ew.r.appspot.com as described by the deployment process result

Marco M. · Reviewed over 4 years ago

Sergio C. · Reviewed over 4 years ago

Chen Z. · Reviewed over 4 years ago