Document size limit of DAST_PATHS
Release notes
Problem to solve
Current when DAST users wish to scan a particular set if URLs they can do that by setting the environment variable DAST_PATHS
to a comma-separated list of paths to scan
variables:
DAST_PATHS=/page1.html,/category1/page1.html,/page3.html
The DAST_PATHS
environment variable can handle approximately 130kb of data. When the user wishes to scan more URLs than that, multiple DAST jobs would need to be created.
When the DAST_PATHS
limit is exceeded the following errors are displayed:
main: line 184: /usr/bin/sed: Argument list too long
/usr/bin/bash: line 192: /analyze: Argument list too long
Proposal
This issue hopes to tackle this environment variable limitation in a number of ways:
DAST_URLS
size restriction
Document the This 130kb restriction should be communicated in the documentation
Allow DAST users to upload URLs to scan in a file
For users that wish to scan more than 130kb of URLs, a DAST_PATHS_FILE
environment variable should be provided, to allow users to enter all the paths to scan in a file and then pass that file to DAST.