Configuration: Angular Development Build¶

Identifier: angular_development_build

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

Angular development builds expose debugging information and development-specific features that should not be present in production environments, potentially revealing internal application structure and aiding attackers.

How we test: We analyze Angular application bundles and JavaScript code to detect development build indicators such as debugging tools, source maps, or development-specific features. We check for Angular development mode markers that indicate a development build was deployed to production.

References:

https://angular.io/guide/build#configuring-application-environments

Configuration¶

Example¶

Example configuration:

---
security_tests:
  angular_development_build:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.