Details
-
New Feature
-
Status: Resolved (View Workflow)
-
Minor
-
Resolution: Done
Description
Support context alert filters
Allow to change alert risk levels. e.g. be able to filter for known false positives/ignore issues.
Ideally to load a filter file (just like a policy file) from the ZAP Settings directory and then specify it in the job configurations.
See the Related UI/API Enhancement Request request for the plugin for more details.
Attachments
Activity
Goran Sarenkapa
added a comment - Excellent, my PC is currently undergoing repair. Thank you! I will take a look as soon as possible.
I will be unable to test until i get it back. ETA is 7-14 business days according to Dell.
Goran Sarenkapa
added a comment - Excellent, my PC is currently undergoing repair. Thank you! I will take a look as soon as possible.
I will be unable to test until i get it back. ETA is 7-14 business days according to Dell. Goran Sarenkapa
added a comment - Referencing Google Group Discussion As per IRC discussion
- Changed the format of the XML file to: final.alertfilter
- The default directory will be <ZAP HOME DIR>\alertfilters
- The default extension will be .alertfilter
Goran Sarenkapa
added a comment - - edited As per IRC discussion
Changed the format of the XML file to: final.alertfilter
The default directory will be <ZAP HOME DIR>\alertfilters
The default extension will be .alertfilter
RESOLVED: PR#6
RELEASE: 1.1.0 or newer.
NOTE: if the release is not published yet, feel free to checkout the associated development branch for the latest version. Be aware that if it's not released yet, it's in development for a reason.
Goran Sarenkapa
added a comment - - edited RESOLVED: PR#6
RELEASE : 1.1.0 or newer .
NOTE : if the release is not published yet, feel free to checkout the associated development branch for the latest version. Be aware that if it's not released yet, it's in development for a reason. Code changed in jenkins
User: Goran Sarenkapa
Path:
src/main/java/org/jenkinsci/plugins/zap/ZAPDriver.java
src/main/resources/org/jenkinsci/plugins/zap/ZAPDriver/config.jelly
src/main/resources/org/jenkinsci/plugins/zap/ZAPDriver/help-alertFilters.html
http://jenkins-ci.org/commit/zap-plugin/0a78cc9979afc74be9a19a984ad09886fd26d5d2
Log:
Merge pull request #6 from tlenaic/Alerts_Filters
FIX JENKINS-39985
I worked on the issue, and I finished implementing the feature.
The only things that slow down its integration is that it needs the class alert filter in zap-api-java, which is for now the beta step.
I download zap-api-java and compile it locally to implement the plugin functionality.
It can be found here:
For those who want to try, I joined the .hpi
And also for better result, make sure you have cleaned all your zap alerts before saving the session. So that for each build of jenkins, it considers url as a new URL ....