From c15ba3203a7e5cc862e509bda96ac1a6ed4154f8 Mon Sep 17 00:00:00 2001
From: zapbot <12745184+zapbot@users.noreply.github.com>
Date: Tue, 26 Sep 2023 11:07:44 +0000
Subject: [PATCH] Release add-on(s)
Release the following add-ons:
- Ajax Spider version 23.16.0
- Client Side Integration version 0.2.0
- Network version 0.11.0
- Selenium version 15.14.0
- Zest - Graphical Security Scripting Language version 41
Signed-off-by: zapbot <12745184+zapbot@users.noreply.github.com>
---
ZapVersions-2.13.xml | 123 ++++++++++++++++++++++---------------------
ZapVersions-dev.xml | 123 ++++++++++++++++++++++---------------------
2 files changed, 126 insertions(+), 120 deletions(-)
diff --git a/ZapVersions-2.13.xml b/ZapVersions-2.13.xml
index f5b762bb..56314bad 100644
--- a/ZapVersions-2.13.xml
+++ b/ZapVersions-2.13.xml
@@ -554,20 +554,21 @@
Client Side Integration
Exposes client (browser) side information in ZAP using Firefox and Chrome extensions.
ZAP Dev Team
- 0.1.0
- client-alpha-0.1.0.zap
+ 0.2.0
+ client-alpha-0.2.0.zap
alpha
<h3>Changed</h3>
<ul>
-<li>Updated the Firefox extension to v0.0.6.</li>
-<li>Updated the Chrome extension to v0.0.5.</li>
+<li>Updated the Chrome extension to v0.0.6.</li>
+<li>Disable client events automatically only for Zest recording.</li>
+<li>Create Firefox profile to enable the ZAP extension for all sites.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/client-v0.1.0/client-alpha-0.1.0.zap
- SHA-256:4b02aaacc46f61cf032bca6b040e5a16c5adf40fb73314baa4595c86bffa3b2e
+ https://github.com/zaproxy/zap-extensions/releases/download/client-v0.2.0/client-alpha-0.2.0.zap
+ SHA-256:857c63d7daa4eeda6fb22cb8a9ed2850f37c5e382b0663f321e1153a0a9934d6
https://www.zaproxy.org/docs/desktop/addons/client-side-integration/
https://github.com/zaproxy/zap-extensions/
- 2023-09-19
- 1296909
+ 2023-09-26
+ 1299179
2.13.0
@@ -577,7 +578,7 @@
selenium
- 15.*
+ >=15.14.0
@@ -1747,31 +1748,29 @@
Network
Provides core networking capabilities.
ZAP Dev Team
- 0.10.0
- network-beta-0.10.0.zap
+ 0.11.0
+ network-beta-0.11.0.zap
beta
<h3>Added</h3>
<ul>
-<li>HTTP/HTTPS rate limiting capability.</li>
-<li>Allow to add a CRL Distribution Point in generated server certificates.</li>
-<li>On weekly releases and versions after 2.12 allow to manage global exclusions, supersedes core functionality.</li>
+<li>Allow to create custom servers with the ZAP API.</li>
</ul>
<h3>Changed</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Update dependencies.</li>
-<li>Update default user-agents.</li>
+<li>Maintenance changes.</li>
+<li>Update names of generated root CA certificate and issued server certificates.</li>
+<li>Help improvements.</li>
</ul>
<h3>Fixed</h3>
<ul>
-<li>Keep the original stack trace of timeout and unknown host exceptions.</li>
+<li>Correct declaration of mandatory parameters of the API endpoint <code>setRateLimitRuleEnabled</code>.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/network-v0.10.0/network-beta-0.10.0.zap
- SHA-256:2a5cae9e75a9bce9efdfcb41ca2888543b47136f3c34e09d7ae79fa42f1b0ac6
+ https://github.com/zaproxy/zap-extensions/releases/download/network-v0.11.0/network-beta-0.11.0.zap
+ SHA-256:ac95093e271e4e6618963c6762bfdb081d0cfa02b54fb1e64520b09bf7d923ba
https://www.zaproxy.org/docs/desktop/addons/network/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 24608590
+ 2023-09-26
+ 24779884
2.13.0
oast
@@ -2512,24 +2511,31 @@ the dialogue when other match types are selected.</li>
Selenium
WebDriver provider and includes HtmlUnit browser
ZAP Dev Team
- 15.13.0
- selenium-release-15.13.0.zap
+ 15.14.0
+ selenium-release-15.14.0.zap
release
- <h3>Changed</h3>
+ <h3>Added</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Update Selenium to version 4.</li>
+<li>Add statistics for browser launch successes and failures that include the requester, e.g.:
+<ul>
+<li><code>stats.selenium.launch.<requester-id>.<browser-id></code></li>
+<li><code>stats.selenium.launch.<requester-id>.<browser-id>.failure</code></li>
</ul>
-<h3>Removed</h3>
+</li>
+<li>Allow to configure additional (CLI) arguments for Chrome and Firefox.</li>
+<li>Support for selecting a default Firefox profile.</li>
+</ul>
+<h3>Changed</h3>
<ul>
-<li>Remove support for Opera and PhantomJS (no longer being actively maintained).</li>
+<li>Maintenance changes.</li>
+<li>Update Selenium to version 4.12.1.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/selenium-v15.13.0/selenium-release-15.13.0.zap
- SHA-256:b92e8bdb2c46e8e7dd6a076684e78f475a68afc734e4221aba53aa770ee55b56
+ https://github.com/zaproxy/zap-extensions/releases/download/selenium-v15.14.0/selenium-release-15.14.0.zap
+ SHA-256:844e5909a3ed5510febb947a525f9b006500a9018491b558082d9d7ceab3e388
https://www.zaproxy.org/docs/desktop/addons/selenium/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 31325264
+ 2023-09-26
+ 34139169
2.13.0
@@ -2650,35 +2656,31 @@ the dialogue when other match types are selected.</li>
Ajax Spider
Allows you to spider sites that make heavy use of JavaScript using Crawljax
ZAP Dev Team
- 23.15.0
- spiderAjax-release-23.15.0.zap
+ 23.16.0
+ spiderAjax-release-23.16.0.zap
release
- <h3>Added</h3>
-<ul>
-<li>Support for authentication handlers.</li>
-</ul>
-<h3>Changed</h3>
+ <h3>Changed</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Depend on newer version of Selenium add-on.</li>
-<li>Update Crawljax to 3.7.1, to use the newer version of Selenium.</li>
+<li>Maintenance changes.</li>
+<li>Depend on newer versions of Automation Framework and Common Library add-ons (Related to Issue 7961).</li>
+<li>Depend on newer version of Network add-on and allow to access the ZAP API while spidering.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/spiderAjax-v23.15.0/spiderAjax-release-23.15.0.zap
- SHA-256:8c699bde85425cc0d5e47e7d535bcf7013cad9b20a6ad9e2e27cc2c7a43c9b28
+ https://github.com/zaproxy/zap-extensions/releases/download/spiderAjax-v23.16.0/spiderAjax-release-23.16.0.zap
+ SHA-256:856ba83c0e216be114e1dfa51802aa94309af3890f0da20a09004840b60c9515
https://www.zaproxy.org/docs/desktop/addons/ajax-spider/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 7537885
+ 2023-09-26
+ 7534502
2.13.0
commonlib
- >= 1.13.0 & < 2.0.0
+ >= 1.17.0 & < 2.0.0
network
- >=0.1.0
+ >=0.11.0
selenium
@@ -2972,30 +2974,31 @@ the dialogue when other match types are selected.</li>
Zest - Graphical Security Scripting Language
A graphical security scripting language, ZAPs macro language on steroids
ZAP Dev Team
- 40
- zest-beta-40.zap
+ 41
+ zest-beta-41.zap
beta
<h3>Added</h3>
<ul>
-<li>Client support to record Zest scripts.</li>
+<li>Allow rendering Zest scripts in YAML. The format (JSON/YAML) may be changed via the Zest Options screen.</li>
</ul>
<h3>Changed</h3>
<ul>
+<li>Depend on Common Library add-on.</li>
<li>Maintenance changes.</li>
-</ul>
-<h3>Fixed</h3>
-<ul>
-<li>Resolved the browser window focus loss problem during the recording of Zest scripts.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/zest-v40/zest-beta-40.zap
- SHA-256:d4e097879f5e7ecf1ca8601bda20c64703b75bf5a28d2e0ae404ba415bfe036d
+ https://github.com/zaproxy/zap-extensions/releases/download/zest-v41/zest-beta-41.zap
+ SHA-256:1484c14efa69fea0c3bd07ff1813c238b8abd20306a193a4ac8a4aeff36f5856
https://www.zaproxy.org/docs/desktop/addons/zest/
https://github.com/zaproxy/zap-extensions/
- 2023-09-11
- 2952762
+ 2023-09-26
+ 5554220
2.13.0
+
+ commonlib
+ >=1.16.0
+
network
>=0.2.0
diff --git a/ZapVersions-dev.xml b/ZapVersions-dev.xml
index d92d2459..e7f1aa73 100644
--- a/ZapVersions-dev.xml
+++ b/ZapVersions-dev.xml
@@ -529,20 +529,21 @@
Client Side Integration
Exposes client (browser) side information in ZAP using Firefox and Chrome extensions.
ZAP Dev Team
- 0.1.0
- client-alpha-0.1.0.zap
+ 0.2.0
+ client-alpha-0.2.0.zap
alpha
<h3>Changed</h3>
<ul>
-<li>Updated the Firefox extension to v0.0.6.</li>
-<li>Updated the Chrome extension to v0.0.5.</li>
+<li>Updated the Chrome extension to v0.0.6.</li>
+<li>Disable client events automatically only for Zest recording.</li>
+<li>Create Firefox profile to enable the ZAP extension for all sites.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/client-v0.1.0/client-alpha-0.1.0.zap
- SHA-256:4b02aaacc46f61cf032bca6b040e5a16c5adf40fb73314baa4595c86bffa3b2e
+ https://github.com/zaproxy/zap-extensions/releases/download/client-v0.2.0/client-alpha-0.2.0.zap
+ SHA-256:857c63d7daa4eeda6fb22cb8a9ed2850f37c5e382b0663f321e1153a0a9934d6
https://www.zaproxy.org/docs/desktop/addons/client-side-integration/
https://github.com/zaproxy/zap-extensions/
- 2023-09-19
- 1296909
+ 2023-09-26
+ 1299179
2.13.0
@@ -552,7 +553,7 @@
selenium
- 15.*
+ >=15.14.0
@@ -1722,31 +1723,29 @@
Network
Provides core networking capabilities.
ZAP Dev Team
- 0.10.0
- network-beta-0.10.0.zap
+ 0.11.0
+ network-beta-0.11.0.zap
beta
<h3>Added</h3>
<ul>
-<li>HTTP/HTTPS rate limiting capability.</li>
-<li>Allow to add a CRL Distribution Point in generated server certificates.</li>
-<li>On weekly releases and versions after 2.12 allow to manage global exclusions, supersedes core functionality.</li>
+<li>Allow to create custom servers with the ZAP API.</li>
</ul>
<h3>Changed</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Update dependencies.</li>
-<li>Update default user-agents.</li>
+<li>Maintenance changes.</li>
+<li>Update names of generated root CA certificate and issued server certificates.</li>
+<li>Help improvements.</li>
</ul>
<h3>Fixed</h3>
<ul>
-<li>Keep the original stack trace of timeout and unknown host exceptions.</li>
+<li>Correct declaration of mandatory parameters of the API endpoint <code>setRateLimitRuleEnabled</code>.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/network-v0.10.0/network-beta-0.10.0.zap
- SHA-256:2a5cae9e75a9bce9efdfcb41ca2888543b47136f3c34e09d7ae79fa42f1b0ac6
+ https://github.com/zaproxy/zap-extensions/releases/download/network-v0.11.0/network-beta-0.11.0.zap
+ SHA-256:ac95093e271e4e6618963c6762bfdb081d0cfa02b54fb1e64520b09bf7d923ba
https://www.zaproxy.org/docs/desktop/addons/network/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 24608590
+ 2023-09-26
+ 24779884
2.13.0
oast
@@ -2487,24 +2486,31 @@ the dialogue when other match types are selected.</li>
Selenium
WebDriver provider and includes HtmlUnit browser
ZAP Dev Team
- 15.13.0
- selenium-release-15.13.0.zap
+ 15.14.0
+ selenium-release-15.14.0.zap
release
- <h3>Changed</h3>
+ <h3>Added</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Update Selenium to version 4.</li>
+<li>Add statistics for browser launch successes and failures that include the requester, e.g.:
+<ul>
+<li><code>stats.selenium.launch.<requester-id>.<browser-id></code></li>
+<li><code>stats.selenium.launch.<requester-id>.<browser-id>.failure</code></li>
</ul>
-<h3>Removed</h3>
+</li>
+<li>Allow to configure additional (CLI) arguments for Chrome and Firefox.</li>
+<li>Support for selecting a default Firefox profile.</li>
+</ul>
+<h3>Changed</h3>
<ul>
-<li>Remove support for Opera and PhantomJS (no longer being actively maintained).</li>
+<li>Maintenance changes.</li>
+<li>Update Selenium to version 4.12.1.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/selenium-v15.13.0/selenium-release-15.13.0.zap
- SHA-256:b92e8bdb2c46e8e7dd6a076684e78f475a68afc734e4221aba53aa770ee55b56
+ https://github.com/zaproxy/zap-extensions/releases/download/selenium-v15.14.0/selenium-release-15.14.0.zap
+ SHA-256:844e5909a3ed5510febb947a525f9b006500a9018491b558082d9d7ceab3e388
https://www.zaproxy.org/docs/desktop/addons/selenium/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 31325264
+ 2023-09-26
+ 34139169
2.13.0
@@ -2625,35 +2631,31 @@ the dialogue when other match types are selected.</li>
Ajax Spider
Allows you to spider sites that make heavy use of JavaScript using Crawljax
ZAP Dev Team
- 23.15.0
- spiderAjax-release-23.15.0.zap
+ 23.16.0
+ spiderAjax-release-23.16.0.zap
release
- <h3>Added</h3>
-<ul>
-<li>Support for authentication handlers.</li>
-</ul>
-<h3>Changed</h3>
+ <h3>Changed</h3>
<ul>
-<li>Update minimum ZAP version to 2.13.0.</li>
-<li>Depend on newer version of Selenium add-on.</li>
-<li>Update Crawljax to 3.7.1, to use the newer version of Selenium.</li>
+<li>Maintenance changes.</li>
+<li>Depend on newer versions of Automation Framework and Common Library add-ons (Related to Issue 7961).</li>
+<li>Depend on newer version of Network add-on and allow to access the ZAP API while spidering.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/spiderAjax-v23.15.0/spiderAjax-release-23.15.0.zap
- SHA-256:8c699bde85425cc0d5e47e7d535bcf7013cad9b20a6ad9e2e27cc2c7a43c9b28
+ https://github.com/zaproxy/zap-extensions/releases/download/spiderAjax-v23.16.0/spiderAjax-release-23.16.0.zap
+ SHA-256:856ba83c0e216be114e1dfa51802aa94309af3890f0da20a09004840b60c9515
https://www.zaproxy.org/docs/desktop/addons/ajax-spider/
https://github.com/zaproxy/zap-extensions/
- 2023-07-11
- 7537885
+ 2023-09-26
+ 7534502
2.13.0
commonlib
- >= 1.13.0 & < 2.0.0
+ >= 1.17.0 & < 2.0.0
network
- >=0.1.0
+ >=0.11.0
selenium
@@ -2947,30 +2949,31 @@ the dialogue when other match types are selected.</li>
Zest - Graphical Security Scripting Language
A graphical security scripting language, ZAPs macro language on steroids
ZAP Dev Team
- 40
- zest-beta-40.zap
+ 41
+ zest-beta-41.zap
beta
<h3>Added</h3>
<ul>
-<li>Client support to record Zest scripts.</li>
+<li>Allow rendering Zest scripts in YAML. The format (JSON/YAML) may be changed via the Zest Options screen.</li>
</ul>
<h3>Changed</h3>
<ul>
+<li>Depend on Common Library add-on.</li>
<li>Maintenance changes.</li>
-</ul>
-<h3>Fixed</h3>
-<ul>
-<li>Resolved the browser window focus loss problem during the recording of Zest scripts.</li>
</ul>
- https://github.com/zaproxy/zap-extensions/releases/download/zest-v40/zest-beta-40.zap
- SHA-256:d4e097879f5e7ecf1ca8601bda20c64703b75bf5a28d2e0ae404ba415bfe036d
+ https://github.com/zaproxy/zap-extensions/releases/download/zest-v41/zest-beta-41.zap
+ SHA-256:1484c14efa69fea0c3bd07ff1813c238b8abd20306a193a4ac8a4aeff36f5856
https://www.zaproxy.org/docs/desktop/addons/zest/
https://github.com/zaproxy/zap-extensions/
- 2023-09-11
- 2952762
+ 2023-09-26
+ 5554220
2.13.0
+
+ commonlib
+ >=1.16.0
+
network
>=0.2.0