Safe, self-hosted OWASP ZAP operator for guided AI security scans and reports.
Give AI agents a safe, self-hosted OWASP ZAP operator for guided web security scans, findings, reports, and production guardrails. Note This project is not affiliated with or endorsed by OWASP or the OWASP ZAP project. It is an independent implementation. exposes OWASP ZAP through MCP over streamable HTTP so agentic tools can run operator-controlled security workflows without brittle glue scripts…
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Give AI agents a safe, self-hosted OWASP ZAP operator for guided web security scans, findings, reports, and production guardrails. Note This project is not affiliated with or endorsed by OWASP or the OWASP ZAP project. It is an independent implementation. exposes OWASP ZAP through MCP over streamable HTTP so agentic tools can run operator-controlled security workflows without brittle glue scripts or unsafe scanner access. Use it when you want: safe agentic scanning with guided defaults for…