CSEDevOps
CSEDevOps copied to clipboard
microsoft
Azure DevOps extensions from CSE DevOps team
Hello, Receiving the following error in the Publish Test Results task after successfully running both Bash scripts as found on your reporting documentation (https://marketplace.visualstudio.com/items?itemName=CSE-DevOps.zap-scanner). Test results are not shown on...
I am getting error saying "`Modern Web Application`" After checking OWASP Documentation link: https://www.zaproxy.org/docs/desktop/addons/ajax-spider/ It shows that we should use Ajax based spider to test. How to implement this option...
Hi, I'm trying to use this Azure Devops pipeline task, and when I use it, it throws the following error. I'm not sure why it is so, or what permissions...
Hi, The plugin is great, really useful to automate the use of the ZAP scan. The only issue I'm having is with the reporting. I've eventually got the reporting to...
ZAP 2.11.1 has been released to remove the dependency on a vulnerable version of Log4j: https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/ Does this project need to be changed to pick up this new version? I...
Following the example here, I have the scanner running successfully with a targeted scan on a azure deployed site, produces the report.html and report.json ` - task: owaspzap@1 inputs: scantype:...
Hello, I am trying to test the ZAP Scanner Task in azure pipelines on [WebGoat_Legacy6.0](https://github.com/WebGoat/WebGoat-Legacy). **The Problem:** the azure pipeline extension seems to append the port number to the end...
How to use this Task with adding custom scripts inside from the Repository like Enable the scripts in one of two ways (I don't have a preference): A different input...
The reports from this scan are created on the system as the root user. This has some consequences for anyone running on custom agents, so please make it an options...
We have done JFROG scan on this ZAP extension. Scan result below.  . As per JFROG scan, it has 2 Critical and 2 High Vulnerabilities. Could this...
