cengo441337-a11y / IDORacle Star 0 Code Issues Pull requests Sound, target-agnostic Oracle for validating write-BOLA/IDOR vulnerabilities in APIs. Canary-witnessed soundness, honest audit reporting, ARES-native integration. Proven on real third-party apps (Juice Shop, crAPI). python security authorization bug-bounty pentest api-security idor soundness bola Updated Jun 22, 2026 Python