Muhammad Zubair
unread,Mar 27, 2023, 3:10:29 AM3/27/23Sign in to reply to author
Sign in to forward
You do not have permission to delete messages in this group
Sign in to report message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to OWASP ZAP User Group
Hello Zap Team,
Thank you for your comment. I would like to share my experience using ZAP as a long running service. So far, it has been working well for us and we are even considering using it for SAST as well.
To achieve this, I am planning to have a localhost connected to the live server, with the extension installed in VS Code (I will develop the extension ). As developers compile and run their code on the localhost, it will be scanned by ZAP and a report will be sent by email daily. This approach eliminates the need for a tool with language dependencies for SAST.
I am planning to write a blog on this project once it is complete. If you have any suggestions or advice, please feel free to share.
Thank you again for your comment and for developing such a useful tool.