Increase difficulty to 5 for its apparent research effort

juice-shop · Jul 12, 2018 · 4c0065a · 4c0065a
1 parent 8565576
commit 4c0065a
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/data/static/challenges.yml b/data/static/challenges.yml
@@ -498,7 +498,7 @@
   name: 'Supply Chain Attack'
   category: 'Broken Authentication'
   description: '<a href="/#/contact">Inform the development team</a> about a danger to some of <em>their</em> credentials. (Send them the URL of the <em>original report</em> or the CVE of this vulnerability)'
-  difficulty: 4
+  difficulty: 5
   hint: 'This vulnerability will not affect any customer of the shop. It is aimed exclusively at its developers.'
   hintUrl: 'https://bkimminich.gitbooks.io/pwning-owasp-juice-shop/content/part2/broken-authentication.html#inform-the-development-team-about-a-danger-to-some-of-their-credentials'
   key: supplyChainAttackChallenge