VA points for Developer Portal
Article ID: 409584
Updated On:
Products
CA API Developer Portal
Issue/Introduction
Following VA points were detected in scan.
1) Browser Auto-Complete Feature stores clear-text password
2) Missing CSP Header
3) External Service Interaction
4) Sensitive Information revealed in Response Header
Environment
API Portal 5.3.2
Resolution
All the above listed VA points will be fixed in the next Portal release 5.4 (Tentative ETA End of October 2025).
Feedback
Yes
No
Powered by
