scanners/zap-advanced/cascading-rules/http.yaml
# SPDX-FileCopyrightText: the secureCodeBox authors
#
# SPDX-License-Identifier: Apache-2.0
apiVersion: "cascading.securecodebox.io/v1"
kind: CascadingRule
metadata:
name: "zap-advanced-http"
labels:
securecodebox.io/invasive: non-invasive
securecodebox.io/intensive: medium
spec:
matches:
anyOf:
- category: "Open Port"
attributes:
service: http
state: open
- category: "Open Port"
attributes:
service: "http-*"
state: open
scanSpec:
scanType: "zap-advanced-scan"
parameters: ["-t", "http://{{$.hostOrIP}}:{{attributes.port}}"]