Plugin for displaying OWASP Zed Attack Proxy alerts into Jenkins CI
Project owner: Patrick Roth (patrick.mj.roth@bluewin.ch)
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing.
ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.
See: https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Jenkins is an award-winning application that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Among those things, current Jenkins focuses on the following two jobs:
- Building/testing software projects continuously
- Monitoring executions of externally-run jobs
This ZAP plugin is a Jenkins plugin for integrating ZAP reports into Jenkins.
This plugin is currently not mature for production.