Skip to content

4.8.13

Choose a tag to compare

@juanjux juanjux released this 16 Jul 13:59
1ccd8f4

Bug Fixes

  • bootstrap: keep yaml/_yaml loaded during module cleanup, fixing an issue that broke PyYAML consumers such as Airflow.
  • IAST: This fix resolves an issue where IAST could report a false positive vulnerability against a request whose input did not actually contain tainted data. A concurrent or still-open request holding a tainted value could leak its taint into the current request's checks. Queries are now scoped to the calling request's slot.