Skip to content

feat(web-security): add git-integration-exploitation, http-query-meth…#71

Merged
GangGreenTemperTatum merged 1 commit into
mainfrom
ads/cap-1133-explore-three-new-web-security-capabilities-from-referenced
Jul 6, 2026
Merged

feat(web-security): add git-integration-exploitation, http-query-meth…#71
GangGreenTemperTatum merged 1 commit into
mainfrom
ads/cap-1133-explore-three-new-web-security-capabilities-from-referenced

Conversation

@GangGreenTemperTatum

Copy link
Copy Markdown
Contributor

…od skills and postMessage IP normalization bypass

New skills from referenced security research:

  • git-integration-exploitation: systematic audit methodology for SaaS git integrations -- JGit vs native git attack path selection, per-command argument injection surface, .git/config append-only takeover, error-based file read via --pathspec-from-file, symlink filesystem escape, embedded bare repos, and TOCTOU on config regeneration

  • http-query-method: RFC 10008 (June 2026) parser differential exploitation -- WAF body inspection bypass, cache poisoning via body-ignorant caching, request smuggling from body handling disagreements, and method routing confusion. Includes adoption gap table for prioritizing targets

  • dom-vulnerability-detection: add postMessage targetOrigin bypass via IP normalization (integer IP + path injection defeats regex origin validation)

…od skills and postMessage IP normalization bypass

New skills from referenced security research:

- git-integration-exploitation: systematic audit methodology for SaaS
  git integrations -- JGit vs native git attack path selection, per-command
  argument injection surface, .git/config append-only takeover, error-based
  file read via --pathspec-from-file, symlink filesystem escape, embedded
  bare repos, and TOCTOU on config regeneration

- http-query-method: RFC 10008 (June 2026) parser differential exploitation
  -- WAF body inspection bypass, cache poisoning via body-ignorant caching,
  request smuggling from body handling disagreements, and method routing
  confusion. Includes adoption gap table for prioritizing targets

- dom-vulnerability-detection: add postMessage targetOrigin bypass via IP
  normalization (integer IP + path injection defeats regex origin validation)
@GangGreenTemperTatum GangGreenTemperTatum merged commit 1425d59 into main Jul 6, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant