REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows
Github issues closed in this release
For new deployments run python raft.py service deploy
.
For existing deployments run python raft.py service deploy
in order to upgrade the service.
TestAllCombinations
TrackFuzzedParameterNames
Following GitHub issues are implemented in this release:
For new deployments run service deploy For existing deployments run service deploy in order to upgrade the service.
If you are on v4.* RAFT, there is no action required to start using this change
Remove all azure dependencies from tooling and move it to dedicated container
Tools only need Http Get and Post to talk to Azure infrastructure
Move all authentication code into dedicated container
Move all Azure communication from tools into a dedicated container
Remove all authentication code from tools
Changes to authentication please see: authentication.md
For new deployments run service deploy
For existing deployments run service deploy
in order to upgrade the service.
For new deployments run service deploy
For existing v3.* deployments run service restart
to get the service changes. Existing deployments do NOT need to run service deploy
.
For new deployments run service deploy
For existing v3.0 deployments run service restart
to get the service changes. Existing deployments do NOT need to run service deploy
.
cli version
command added to the CLI.After downloading the new CLI run python raft.py service deploy
to upgrade an existing deployment or to create a new deployment.
Expose dredd configuration values in RAFT job definition
For 2.* deployments - after downloading the new CLI run python raft.py service update
if you have an existing deployment (new deployments do this automatically for you).
After downloading the new CLI run python raft.py service upload-tools
if you have an existing deployment (new deployments do this automatically for you).