Skip to content

Conversation

ricekot
Copy link
Member

@ricekot ricekot commented Aug 15, 2025

It seems that syntax highlighting for code blocks may be broken for our website, but can tackle that in another PR.

image

@ricekot ricekot requested a review from Copilot August 15, 2025 05:00
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds a new blog post documenting the configuration of scan policies using alert tags, a new feature in ZAP's automation framework. The post explains how users can now target specific vulnerability categories using tags instead of manually managing individual scan rule IDs.

  • Introduces alert tags concept and their application in scan policy configuration
  • Provides practical YAML configuration examples with include/exclude patterns
  • Documents GUI support and feature availability details

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@ricekot ricekot force-pushed the blog/policy-alert-tags branch from 6461509 to 25c3e76 Compare August 15, 2025 05:01
@psiinon
Copy link
Member

psiinon commented Aug 15, 2025

Logo
Checkmarx One – Scan Summary & Details0de78a7f-4d3a-4a1b-9aef-84c6e832d279

Great job! No new security vulnerabilities introduced in this pull request


## GUI Support

The feature also includes GUI support with a new "Policy Alert Tags" tab in the Active Scan dialogs. This provides:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
The feature also includes GUI support with a new "Policy Alert Tags" tab in the Active Scan dialogs. This provides:
The feature also includes GUI support with a new "Policy Alert Tags" tab in the Automation Framework Active Scan dialogs. This provides:


## Availability

This feature is currently available in the development branch and will be included in an upcoming automation add-on release. You can try it out by building from the latest source code or using the weekly development builds.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
This feature is currently available in the development branch and will be included in an upcoming automation add-on release. You can try it out by building from the latest source code or using the weekly development builds.
This feature is currently available in the development branch and will be included in an upcoming automation add-on release. You can try it out by building from the latest source code or using an up-to-date weekly release of ZAP.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

3 participants