Changes - metacpan.org

2015/11/08 0.028
- bulk testing of behavior regarding Javascript and Image loading (instead
  of only XHR)
2015/10/31 0.027
- way more tests of broken responses
- add tests for gzip compression flags and features
- add support for lzma compression, supported by at least Opera
- option --fast-feedback so that results  gets submitted in parts once they grow to big
- new script bin/normalize-logs.pl to normalize log files
2015/10/01 0.026
- add optional SSL and IPv6 support
- add more tests and fixed some 
- add more detailed output
2015/09/14 0.025
- some more tests
- better description for some tests
- enforce download via download attribute for eicar.txt etc
- according to RFC2616 a content-encoding header with 'identity' should not
  be used, moved to UNCOMMON_INVALID and added variations with double
  encoding etc
- complain if the firewall blocks sane response without virus, because that
  might indicate that they employ a URL filter only or similar
- If one evasion failed re-check with novirus.txt if it failed because of the
  firewall or because the browser considered the response invalid. Also add
  these information to the summary for the user and tell the user again how to
  check for false positives and how EICAR looks like.
- give summary and offer a way to give feedback with product details
- log response header we got for initial innocent and test virus request
2015/09/04 0.024
- if in the automated evasion test the initial simple request to eicar.txt
  results in the expected failure add the error message to the results sent
  in /submit_results
- track different request headers, i.e order of fields etc to distinguish browsers 
  and changes done by proxies
- by default garble URLs so firewalls can not simply block all URLs with 
  eicar.txt inside, switch off with --no-garble-url. It will still accept
  ungarbled URLs but produce garbled ones.
- with http://host/broken/ALL/testid etc one will get the test line with
  image, script, html ... for only this test (i.e http://host/broken/ALL/302).
2015/08/21 0.023
- lots of beautification and documentation
- added tests for script include behavior too (which shows that Chrome is more
  strict when including scripts)
2015/08/05 0.022
- add some more tests
- offer to show src of response in auto-mode
- fix content-length header in Broken.pm
2015/07/29 0.021
- make sure we always send some kind of length (Content-length or chunked)
  because some firewalls don't scan content with unspecified length which
  would then distort test results
- some more tests and documentation fixes
2015/06/26 0.020
- yet more broken HTTP responses
- fix closing after response in some cases
- fix load limitation of server
2015/06/26 0.019
- fix deflate
- add broken tests with 30x without Location and other strange codes with body
2015/06/25 0.018
- works with 5.8.9 now
- no longer needs AnyEvent and Compress::Zlib (less dependecies),
  make dependency for Compress::Raw::Zlib explicit in Makefile.PL
- Net::PcapWriter now optional, i.e. only needed when writing pcaps
- count evasions and add number during submission
- use accept header from original request inXHR or use custom accept header
- increase timeout to 5s
- compatibility with MSIE8 by adding try{..} around console.log
2015/06/24 0.017
- support for MSIE autodetect starting with MSIE8
- better distinction between valid and invalid uncommon responses
- better structured tests
2015/06/23 0.016
- improved Ajax based bulk detection: timeouts, progress indicator...
2015/06/22 0.015
- Ajax based bulk detection of browser quirks and evasion possibilities
- better color coding of responses for non-ajax tests
2015/06/18 0.014
- add tests for more broken stacks, check for HTTP/0.9
2015/05/13 0.013
- add even more tests for dubious content-length
2015/05/03 0.012
- add more tests with chunking and more dubious content-length
2013/07/09 0.011
- added tests with dubious content-length
2013/07/02 0.010
- add script to ping back within iframe to see, if iframe was loaded unchanged
2013/07/02 0.009
- simplify code, remove redundant code
- log access with timestamp 
- add ping back via xmlhttrequest to check if script can get loaded
2013/07/02 0.008
- added tests with unknown content-encodings
2013/07/01 0.007
- added tests with multiple content-encodings
2013/07/01 0.006
- added tests with content-encoding and transfer-encoding with various
  compressions
2013/06/30 0.005
- single part response with content-transfer-encoding base64
2013/06/24 0.004
- work with "normalized" urls, where "," got URL-encoded
2013/06/24 0.003
- added test for range header
2013/06/10 0.002
- first workable version: tests for chunking and multipart messages
	Global
`s`	Focus search bar
`?`	Bring up this help dialog
	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)
	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse
	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)