Version 1.1.0 Documentation
The following steps will assume Jenkins is setup as a Master with a Slave on another machine to execute the job's build and run the ZAP security tool.
Create aNew Item
- Type: Freestyle project
- Click OK
Go to the Job Summary Page
Restrict where this project can be run (True)
Name of Slave where ZAP security tool is installed
New empty workspace will be created on the Slave machine e.g.
Setup the job to run ZAP security tool with a loaded session.
Setup the job to run a Selenium step during the executing of the ZAP security tool and persist the session afterwards.
Info: This will allow ZAP security tool to act as an Intercepting Proxy. It will map all of the requests the Selenium script makes to a web app and all of the responses ZAP receives from it.
Configure the Job's Post Build Actions
Info: This plugin allows an easy and fully customized build report display. Useful for it's Post-Build action to Archive the artifacts, thus copying over the generated report(s) and ZAP log(s) into the build's directory from the workspace.
Info: This plugin publishes HTML reports. Useful for displaying the latest .html or .xhtml report.
Congratulations you've successfully setup your first ZAP Jenkins Job.
Congratulations you should have been able to run your first successful ZAP Jenkins Build.