Apply review suggestions

Author: timokoessler

library/agent/api-discovery/getStringFormat.ts

@@ -25,8 +25,8 @@ const indicationChars = new Set<string>(["-", ":", "@", ".", "://"]);
  * https://swagger.io/docs/specification/v3_0/data-models/data-types/#strings
  */
 export function getStringFormat(str: string): StringFormat | undefined {
-  // Skip if too short
-  if (str.length < 5) {
+  // Skip if too short or very long
+  if (str.length < 5 || str.length > 1_000) {
     return undefined;
   }
 

library/vulnerabilities/attack-wave-detection/AttackWaveDetector.ts

@@ -23,9 +23,9 @@ export class AttackWaveDetector {
       maxLRUEntries?: number;
     } = {}
   ) {
-    this.attackWaveThreshold = options.attackWaveThreshold ?? 6; // Default: 6 requests
+    this.attackWaveThreshold = options.attackWaveThreshold ?? 15; // Default: 15 requests
     this.attackWaveTimeFrame = options.attackWaveTimeFrame ?? 60 * 1000; // Default: 1 minute
-    this.minTimeBetweenEvents = options.minTimeBetweenEvents ?? 60 * 60 * 1000; // Default: 1 hour
+    this.minTimeBetweenEvents = options.minTimeBetweenEvents ?? 20 * 60 * 1000; // Default: 20 minutes
     this.maxLRUEntries = options.maxLRUEntries ?? 10_000; // Default: 10,000 entries
 
     this.suspiciousRequestsMap = new LRUMap(