Skip to content

Known Issues & Limitations

Limitations

  • Manual configuration is still required
    • What to proxy - scope
    • Adding false positives
    • Login macro(s)?
  • Takes quite some time to run the scan
    • Belongs in the nightly build
  • Not a silver bullet..
    • The point of using a tool and automation, is to scale and enforce policy. You also have to embed security in your development work, educate yourself so that you can plug those security holes before they emerge.

Known Issues

I am sure there are many 😛

Please feel free to report any issues you face when using the extensions and the maven plugin by creating an issues on the github repo, here.

TODO:

  • Publish the maven plugin to maven central and jcenter
  • Add more documentation
  • ...