{"id":18420375,"url":"https://github.com/kubeshop/testkube-executor-zap","last_synced_at":"2026-04-25T21:34:17.444Z","repository":{"id":41052255,"uuid":"476663362","full_name":"kubeshop/testkube-executor-zap","owner":"kubeshop","description":"ZAP based security tests executor for Testkube","archived":false,"fork":false,"pushed_at":"2023-02-06T21:20:47.000Z","size":370,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":8,"default_branch":"main","last_synced_at":"2026-03-05T04:19:39.043Z","etag":null,"topics":["kubernetes","owasp","owasp-zap","security-testing","testing","testkube","zap"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/kubeshop.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-04-01T09:49:24.000Z","updated_at":"2023-04-13T01:57:00.000Z","dependencies_parsed_at":"2024-06-21T16:27:31.009Z","dependency_job_id":"42fd60be-e2e0-482f-acc0-f944189069d5","html_url":"https://github.com/kubeshop/testkube-executor-zap","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":"kubeshop/testkube-executor-template","purl":"pkg:github/kubeshop/testkube-executor-zap","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kubeshop%2Ftestkube-executor-zap","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kubeshop%2Ftestkube-executor-zap/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kubeshop%2Ftestkube-executor-zap/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kubeshop%2Ftestkube-executor-zap/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/kubeshop","download_url":"https://codeload.github.com/kubeshop/testkube-executor-zap/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kubeshop%2Ftestkube-executor-zap/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32278249,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-25T18:29:39.964Z","status":"ssl_error","status_checked_at":"2026-04-25T18:29:32.149Z","response_time":59,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["kubernetes","owasp","owasp-zap","security-testing","testing","testkube","zap"],"created_at":"2024-11-06T04:21:24.180Z","updated_at":"2026-04-25T21:34:17.428Z","avatar_url":"https://github.com/kubeshop.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"![Testkube Logo](https://raw.githubusercontent.com/kubeshop/testkube/main/assets/testkube-color-gray.png)\n\n# Welcome to TestKube ZAP Executor\n\nTestKube ZAP Executor is a test executor to run ZED attack proxy scans with [TestKube](https://testkube.io).  \n\n## Usage\n\nYou need to register and deploy the executor in your cluster.\n```bash\nkubectl apply -f examples/zap-executor.yaml\n```\n\nIssue the following commands to create and start a ZAP test for a given YAML configuration file:\n```bash\nkubectl testkube create test --filename examples/zap-api.yaml --type \"zap/api\" --name api-test\nkubectl testkube run test --watch api-test\n\nkubectl testkube create test --filename examples/zap-baseline.yaml --type \"zap/baseline\" --name baseline-test\nkubectl testkube run test --watch baseline-test\n\nkubectl testkube create test --filename examples/zap-full.yaml --type \"zap/full\" --name full-test\nkubectl testkube run test --watch full-test\n```\n\nThe required ZAP arguments and options need to be specified via a dedicated YAML configuration file, e.g.\n```yaml\napi:\n  # -t the target API definition\n  target: https://www.example.com/openapi.json\n  # -f the API format, openapi, soap, or graphql\n  format: openapi\n  # -O the hostname to override in the (remote) OpenAPI spec\n  hostname: https://www.example.com\n  # -S safe mode this will skip the active scan and perform a baseline scan\n  safe: true\n  # -c config file\n  config: examples/zap-api.conf\n  # -d show debug messages\n  debug: true\n  # -s short output\n  short: false\n  # -l minimum level to show: PASS, IGNORE, INFO, WARN or FAIL\n  level: INFO\n  # -c context file\n  context: examples/context.config\n  # username to use for authenticated scans\n  user: anonymous\n  # delay in seconds to wait for passive scanning\n  delay: 5\n  # max time in minutes to wait for ZAP to start and the passive scan to run\n  time: 60\n  # ZAP command line options\n  zap_options: -config aaa=bbb\n  # -I should ZAP fail on warnings\n  fail_on_warn: false\n```\n\n# Issues and enchancements \n\nPlease follow the main [TestKube repository](https://github.com/kubeshop/testkube) for reporting any [issues](https://github.com/kubeshop/testkube/issues) or [discussions](https://github.com/kubeshop/testkube/discussions)\n\n# Testkube \n\nFor more info go to [main testkube repo](https://github.com/kubeshop/testkube)\n\n![Release](https://img.shields.io/github/v/release/kubeshop/testkube) [![Releases](https://img.shields.io/github/downloads/kubeshop/testkube/total.svg)](https://github.com/kubeshop/testkube/tags?label=Downloads) ![Go version](https://img.shields.io/github/go-mod/go-version/kubeshop/testkube)\n\n![Docker builds](https://img.shields.io/docker/automated/kubeshop/testkube-api-server) ![Code build](https://img.shields.io/github/workflow/status/kubeshop/testkube/Code%20build%20and%20checks) ![Release date](https://img.shields.io/github/release-date/kubeshop/testkube)\n\n![Twitter](https://img.shields.io/twitter/follow/thekubeshop?style=social) ![Discord](https://img.shields.io/discord/884464549347074049)\n #### [Documentation](https://kubeshop.github.io/testkube) | [Discord](https://discord.gg/hfq44wtR6Q) ","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkubeshop%2Ftestkube-executor-zap","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkubeshop%2Ftestkube-executor-zap","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkubeshop%2Ftestkube-executor-zap/lists"}