-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
bug: Rengine not able to display hackerone scope properly. #1437
Comments
Hey @r3dpars3c! 👋 Thanks for flagging this bug! 🐛🔍 You're our superhero bug hunter! 🦸♂️🦸♀️ Before we suit up to squash this bug, could you please: 📚 Double-check our documentation: https://rengine.wiki Once again - thanks for your vigilance! 🛠️🚀 |
Hi @r3dpars3c The scopes are provided by hackeone API, we do filtering though for the scope we support. But can you give some program name that scopes don't match, I will verify |
I mainly checks for private hackerone programs. Hope this get fixed sooner as i am running expensive VPS. Thanks |
Hi @r3dpars3c we do consider OTHER assets as well. Probably the response format is different than that I expected. If you have, time can you please use postman and send request to hackerone api https://api.hackerone.com/v1/hackers/programs/{program_handle}, check hackerone docs to see how to send api key as auth param Please redact any sensitive information but I would like to see the response and asset format. You can mail me yogesh.ojha11@gmail.com if you wish not to share here as its private program. |
I checked the rengine code but couldn't find Other asset. Line 67 in e9251c4
rengine/web/static/custom/bountyhub.js Line 460 in e9251c4
rengine/web/reNgine/definitions.py Line 565 in e9251c4
I think the proper fixed would be to add Other entries as well. |
You can try on this program. as My private program has similar one to this public program one |
Aaahah thank you for pointing out, my mistake I missed the OTHERS, sending a PR and please test it out. |
@r3dpars3c please test this out if you have time
Since I have introduced a new util function to check the aseet is supported by reNgine or not using regex, please test it out against different targets to see if importing works better. On UI as well you should be able to see the assets under OTHER section For example If everything looks give, let me know and I will merge the changes. |
Hi @yogeshojha
#Suggestion.
#More Suggestion.
Thanks |
Is there an existing issue for this?
Current Behavior
Expected Behavior
All scopes on hackerone and scopes must be visible across both platform.
Steps To Reproduce
As describe above
Environment
Anything else?
No response
The text was updated successfully, but these errors were encountered: