OWASP ZAP Scanner Azure pipeline extension not working anymore

[ravindraP20]

Hello,

We have below task in Azure pipeline. referring here: https://marketplace.visualstudio.com/items?itemName=CSE-DevOps.zap-scanner&ssr=false#overview

    - task: owaspzap@1
      inputs:
        aggressivemode: true
        threshold: 200
        scantype: 'targetedScan'
        url: '$(PEN_Tests_Endpoint)'

We used to see the report till 11th April 2014. Now it is not working anymore. Below is the error log now.

Digest: sha256:3a7a99d13510e46716d1dc13b9f636f145408a4331cffa5d9296bebd9aea8681 Status: Downloaded newer image for owasp/zap2docker-stable:latest WARNING: The requested image's platform (linux/arm64) does not match the detected host platform (linux/amd64/v4) and no specific platform was requested exec /zap/zap-full-scan.py: exec format error

[error]ENOENT: no such file or directory, open '/home/vsts/work/1/s/owaspzap/report.json'

We came to know that ZAP Scanner docker images just moved away from OWASP. Do you have any update on the new version or any alternative option?

Regards Ravindra

[twartonick]

Hi,

the link takes you to why and my workaround.... basically ZAP moved to another group and the images went to their repo.

https://github.com/microsoft/CSEDevOps/issues/47