Skip to content

Commit cb8264a

Browse files
psiinonpsiinon
committed
Add client spider and JS engine info
Signed-off-by: Simon Bennetts <psiinon@gmail.com>
1 parent 4cc53b6 commit cb8264a

File tree

1 file changed

+18
-0
lines changed
  • addOns/help/src/main/javahelp/contents/releases

1 file changed

+18
-0
lines changed

addOns/help/src/main/javahelp/contents/releases/2.16.0.html

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -23,6 +23,23 @@ <H1>Release 2.16.0</H1>
2323
<H3>Update to a Minimum of Java 17</H3>
2424

2525
ZAP now requires a minimum of Java 17 to run. This allows us to use more modern Java features in the ZAP codebase.
26+
<p>
27+
As a result of this move scripts which use the Nashorn JavaScript engine may no longer work,
28+
this is because the engine is no longer present in Java 17.
29+
Any scripts configured to use Nashorn will automatically be changed to use the
30+
<a href="https://www.zaproxy.org/docs/desktop/addons/graalvm-javascript/">Graal.js</a> JavaScript engine.
31+
However you may still need to migrate these scripts, see the <a href="https://www.graalvm.org/latest/reference-manual/js/NashornMigrationGuide/">Migration Guide from Nashorn to GraalJS</a>.
32+
33+
<H3>Client Spider</H3>
34+
35+
The Client Integration add-on is now included as standard, and provides a new
36+
<a href="https://www.zaproxy.org/docs/desktop/addons/client-side-integration/spider/">Client Spider</a>.
37+
The Client Spider works in a similar way to the AJAX Spider but it has access to the DOM via the ZAP Browser Extension
38+
which means that it can find content which the AJAX Spider cannot find.
39+
<p>
40+
While it is still at an early stage we believe it is a more effective approach than the AJAX Spider.
41+
We will be focussing on improving the Client Spider and the current plan is for it to supersede the AJAX Spider
42+
as the recommended way of crawling modern web apps.
2643

2744
<H3>Detachable Tabs</H3>
2845

@@ -66,6 +83,7 @@ <H3>Automation Framework Enhancements</H3>
6683
<ul>
6784
<li><a href="https://www.zaproxy.org/docs/desktop/addons/automation-framework/job-ascanconfig/">activeScan-config</a> This job configures the active scanner, for custom active scans (e.g. Sequence).
6885
<li><a href="https://www.zaproxy.org/docs/desktop/addons/automation-framework/job-ascanpolicy/">activeScan-policy</a> This job defines an active scan policy.
86+
<li><a href="https://www.zaproxy.org/docs/desktop/addons/client-side-integration/automation/">spiderClient</a> This job allows you to run the client spider.
6987
<li><a href="https://www.zaproxy.org/docs/desktop/addons/automation-framework/job-exitstatus/">exitStatus</a> This job sets ZAP's exit code based on scan results.
7088
<li><a href="https://www.zaproxy.org/docs/desktop/addons/sequence-scanner/automation/">sequence-import</a> This job allows you to create a sequence from an HAR file.
7189
<li><a href="https://www.zaproxy.org/docs/desktop/addons/sequence-scanner/automation/">sequence-activeScan</a> This job allows you to a ative scan sequences.

0 commit comments

Comments
 (0)