Skip to content

Releases: OWASP/NodeGoat

Release v1.4

Choose a tag to compare

@ckarande ckarande released this 04 Aug 12:53
9e35cae
  • Addition of details on SSRF, Context specific XSS validations
  • Defect fixes
  • Updates to target Node.js version
  • Optimization to Docker config
  • Addition of integration tests with cypress
  • Travis CI integration

Release 1.3

Choose a tag to compare

@ckarande ckarande released this 12 Feb 23:52
  • Additional vulnerability examples
  • Update insecure dependencies
  • Fix documentation typos

Express Upgrade, Docker & Heroku Deployment options, Security tests using ZAP API

Choose a tag to compare

@ckarande ckarande released this 24 Dec 03:03

This release includes:

  1. Code changes to use Express 4.x
  2. Deployment options for the NodeGoat app via a Docker image and "Deploy on Heroku" button
  3. Security tests using Zap API

v1.1

Choose a tag to compare

@ckarande ckarande released this 09 Nov 07:12

Release Notes:

  • Improvements to tutorial and addition of screencasts
  • Improved login page design
  • Changes to profile module to better demonstrate CSRF attack

Essentials

Choose a tag to compare

@ckarande ckarande released this 07 Sep 17:21

Changes since previous release:

  1. Allows to set optional MONGODB_URL env variable
  2. Fix for issue #33