65 行
1.6 KiB
YAML
65 行
1.6 KiB
YAML
profile_id: nextjs-xss
|
|
system_id: nextjs
|
|
match_rules:
|
|
keywords:
|
|
- xss
|
|
- scripting
|
|
vuln_family: xss
|
|
provisioning_mode: real
|
|
verification_mode: real
|
|
artifact_mode: local-fixture
|
|
artifact_source:
|
|
strategy: local-minimal-fixture
|
|
runner_id: nextjs.xss
|
|
fixture_path: /Users/x/websafe/00-environments/templates/fixtures/nextjs/xss
|
|
required_services:
|
|
- app
|
|
seed_actions:
|
|
- kind: note
|
|
message: Seed client-rendering page for XSS proof capture.
|
|
baseline_actions:
|
|
- kind: http-get
|
|
path: /
|
|
attack_actions:
|
|
- kind: note
|
|
message: Runner injects inert payload and captures browser proof.
|
|
browser_assertions:
|
|
required: true
|
|
success_criteria:
|
|
- Browser proof page shows the XSS execution marker after the controlled payload.
|
|
success_assertions:
|
|
- name: baseline-ok
|
|
type: baseline-ok
|
|
- name: runner-success
|
|
type: runner-success
|
|
- name: browser-present
|
|
type: browser-present
|
|
services:
|
|
app:
|
|
image: node:22-alpine
|
|
working_dir: /workspace
|
|
command:
|
|
- node
|
|
- /workspace/00-environments/templates/fixtures/shared/node_fixture.mjs
|
|
environment:
|
|
LAB_FIXTURE_SCENARIO: /workspace/00-environments/templates/fixtures/nextjs/xss/scenario.json
|
|
PORT: "3000"
|
|
ports:
|
|
- 18204:3000
|
|
volumes:
|
|
- /Users/x/websafe:/workspace:ro
|
|
healthcheck:
|
|
test:
|
|
- CMD-SHELL
|
|
- wget -q -O - http://127.0.0.1:3000/healthz >/dev/null 2>&1 || exit 1
|
|
interval: 2s
|
|
timeout: 2s
|
|
retries: 20
|
|
baseline_urls:
|
|
- http://127.0.0.1:18204/
|
|
ready_timeout_seconds: 45
|
|
cleanup_policy: destroy
|
|
destructive_risk: low
|
|
allowed_target_types:
|
|
- lab-local
|