Add "Pentest Pipeline" with OWASP ZAP #185
Assignees
Labels
enhancement
New feature or request
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The goal is to have a "Pentest Pipeline" that uses the OWASP ZAP.
The following GitHub Actions wrap the above packaged scans and also support raising GitHub issues for potential vulnerabilities found:
Usage of ZAP in Docker:
For more details see the blog posts:
These GitHub actions are a simple way to run the packaged scans, especially if you already use GitHub.
This is a PoC. Tje result should be presented at:
https://heise-academy.de/webinare/devsecops923?wt_mc=intern.academy.newsticker.web_devsecops.ticker-1.link.link
The text was updated successfully, but these errors were encountered: