Active scan using docker images results in broken pipe

[Ryan Sprumont]

Hello!

I'm using the ZAP API to run scans by running ZAP using a docker image. When I run an active scan on my application using the docker images, it always gets to a certain percentage and then just stays at that percentage, shown below.

When I run the same scan and use the ZAP Desktop it works fine and by looking at the ZAP log I think it's because ZAP is skipping the scanner that is causing the problem as you can see below.

It looks like the scan stops working in docker because firefox is not installed. Is there a way to make ZAP skip that scanner in docker just like it does when running through the desktop? Thank you!

Best regards,

Ryan

[Ryan Sprumont]

Update:

I figured out I can disable the DomXssScanRule Extension via the command line when running ZAP and that's the scanner that was preventing the active scan from completing so this appears to have fixed the issue.

Best,

Ryan