Skip to content

Information Disclosure: Git Metadata Directory Exposure

Identifier: git_exposure

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Git metadata directories exposed on web servers can reveal sensitive information including source code, commit history, and potentially credentials or secrets stored in the repository.

How we test: We test for exposed Git metadata directories by attempting to access .git directories and analyzing responses to detect if Git repository information is accessible without proper authorization.

Configuration

Example

Example configuration:

---
security_tests:
  git_exposure:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.