Provide an argument to filter out certain HTTP error codes

Question

Provide an argument to filter out certain HTTP error codes

spkane opened this issue 2 years ago · 4 comments

Make it possible to ignore a set of HTTP error codes, like -g 403,999.

Answer 1 · 2023-03-08T23:04:54.000Z

there might be another approach to handling/fixing this, but this is primarily being mentioned do to URLs like:

https://www.linkedin.com/in/spkane/ (which always returns an HTTP 999 to muffet, despite being a valid URL) and
https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html (which always returns an HTTP 403 to muffet, despite being a valid URL)

Answer 2 · 2023-03-09T18:27:29.000Z

Based on #292, being able to set some code to ignore and some to report/warn but not error on at a global level would be useful, in addition to eventually also being able to set this on a per-patter basis.

Answer 3 · 2023-03-16T13:14:05.000Z

I also prefer a proposal in #292 to this because users can't know false positives when websites' behavior changes and error status codes are ignored globally. One concern of ignored status codes per pattern is their complexity...

Answer 4 · 2023-03-17T19:13:53.000Z

Agreed.

#292 basically built on this idea and came to me as I was trying to implement the scanner GitHub action into one of my website deployment processes.