Is your feature request related to a problem? Please describe.
Score Card already reports certain SAST tools in use, reporting DAST tools would seem to be a good enhancement.
Describe the solution you'd like
Report detected DAST tools in a similar way to SAST ones :)
Is your feature request related to a problem? Please describe. Score Card already reports certain SAST tools in use, reporting DAST tools would seem to be a good enhancement.
Describe the solution you'd like Report detected DAST tools in a similar way to SAST ones :)
Describe alternatives you've considered N/A
Additional context The ZAP GitHub actions are the easiest way to detect if ZAP is being used right now: https://github.com/marketplace?type=&verification=&query=owasp+zap+ Some other DAST actions that could be detected: https://github.com/marketplace?query=dast+