Hi Zap Dev Community.
I've been working on purpleteam for a few years. It's now at the alpha stage in both local and cloud. Purpleteam is a web security regression testing SaaS. The open source code can be found here: (https://github.com/purpleteam-labs). You'll always be able to find a link to it from https://purpleteam-labs.com/
The local environment is completely free and open. The cloud environment uses all the open source code plus an infrastructure as code (IaC) project to set everything up in the cloud.
The local environment can be set-up locally on a machine or within some arbitrary network of your choosing at no monetary (just time) cost.
The cloud environment costs, as all the set-up work is done via IaC (the cost involved is from running the infrastructure). The CLI (https://github.com/purpleteam-labs/purpleteam) is free and open. In this case, all the Build User has to do is create a Job (examples here: https://github.com/purpleteam-labs/purpleteam/tree/main/testResources/jobs) and fire it at the AWS API Gateway to pass to the orchestrator to start running everything.
The CLI initiates all testing in the back-end and can be consumed by your Dev Team build scripts/tools (CI/CD), and/or run manually.
Purpleteam uses a pluggable micro-service architecture (all in NodeJS). By pluggable I mean anyone (Developers) can create additional Testers. Currently the only fully implemented Tester (app-scanner: https://github.com/purpleteam-labs/purpleteam-app-scanner) uses Zap as it's emissary.
In terms of tech, we use:
The open docs are currently here: https://github.com/purpleteam-labs/purpleteam-doc . We will be moving these to a proper docs site soon and extending on them. There are more docs (closed) for the development of the cloud environment.
Please pass this on to who ever you think may be interested in coming on board to help contribute toward develop purpleteam? Please shout out if you have any questions (either here or at https://github.com/purpleteam-labs/purpleteam/discussions)? Rough and (possibly not) ready landing page for purpleteam is here: https://purpleteam-labs.com/
Thanks muchly!