You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When viewing a package-lock.json file in the browser with BurpSuite active, a false positive HIGH Vulnerability alert for Dependency Confusion is consistently triggered.
The root cause might stems from an extraneous "{" character being included in the npm package search query. Thus this character is erroneously interpreted as part of the package name, leading to the false positives.
The text was updated successfully, but these errors were encountered:
When viewing a package-lock.json file in the browser with BurpSuite active, a false positive HIGH Vulnerability alert for Dependency Confusion is consistently triggered.
The root cause might stems from an extraneous
"{"character being included in the npm package search query. Thus this character is erroneously interpreted as part of the package name, leading to the false positives.The text was updated successfully, but these errors were encountered: