? / Alert IDs and Confidence/Severity

[James L]

Greetings,

I am working on a KB to help developers triage zap alerts. I'm still in early stages...

My question is: Do alertIDs have static attributes like severity/confidence or are those set dynamically? I don't need to keep track of the reported severity if its going to stay the same every time an alert id is reported. Also, all of this excludes manually changing mappings away from default.

I *think* they are static... Thank you for any help/insight you can provide.

-James L

[Simon Bennetts]

Hi James,

They are _mostly_ static :/

Some rules set different severity or confidence levels depending on what they find.

We have extensive documentation here https://www.zaproxy.org/docs/alerts/ but I'm afraid we dont flag which rules use static values and which ones use dynamic ones :/

Sorry about that.

Simon