This explains a current issue in the ZAP Automation Framework where ZAP will perform tests even when they are explicitly excluded from the scan results - that is, even when you set defaultThreshold
(which is supposed to apply as the default for all scan rules) or threshold
(rule-specific settings) to 'Off', the checks are still performed.
mkdir -p /tmp/zap/
- Save the
template.yaml
YAML file to/tmp/zap/template.yaml
- Run these commands to trigger the scan: