Merge pull request #6539 from zapbot/scan-policies-updt

Author: kingthorin

addOns/scanpolicies/CHANGELOG.md

@@ -4,7 +4,8 @@ All notable changes to this add-on will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 
 ## Unreleased
-
+### Changed
+- Updated based on Rules' Policy Tag assignments.
 
 ## [0.3.0] - 2025-06-20
 ### Changed

addOns/scanpolicies/src/main/zapHomeFiles/policies/Pen Test.policy

@@ -161,6 +161,11 @@
             <enabled>true</enabled>
             <level>MEDIUM</level>
         </p40014>
+        <p40015>
+            <name>LDAP Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40015>
         <p40016>
             <name>Cross Site Scripting (Persistent) - Prime</name>
             <enabled>true</enabled>
@@ -236,6 +241,11 @@
             <enabled>true</enabled>
             <level>MEDIUM</level>
         </p40032>
+        <p40033>
+            <name>NoSQL Injection - MongoDB</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40033>
         <p40034>
             <name>.env Information Leak</name>
             <enabled>true</enabled>
@@ -251,6 +261,11 @@
             <enabled>true</enabled>
             <level>MEDIUM</level>
         </p40038>
+        <p40039>
+            <name>Web Cache Deception</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40039>
         <p40040>
             <name>CORS Header</name>
             <enabled>true</enabled>
@@ -366,5 +381,10 @@
             <enabled>true</enabled>
             <level>MEDIUM</level>
         </p90036>
+        <p90039>
+            <name>NoSQL Injection - MongoDB (Time Based)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90039>
     </plugins>
 </configuration>