A specification for declaring vulnerabilities in intentionally vulnerable applications ("vulnapps") to help scanners assess their own find rate.
- A vulnerable application declares its vulnerabilities in an
agreed schema in a
.vulns.yml
(or.vulns.json
) file