We have integrated OWASP ZAP in Gitlab CI/CD. After scanning a web application, we then relayed the issues to the developers. After the developers have assessed the issues, they found out that some of the issues found are false positives. So the problem is, how do we configure ZAP to mark those issues as False Positives on the next run in the pipeline? We are using the stable version of OWASP ZAP Docker image. All of your inputs are much welcome, thank you!
How to ignore the false positive issues found in OWASP Zap scan that runs in CI/CD Pipeline?
Share