Talk:OWASP ZAP

This article is rated Start-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Computing Low‑importance This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles Low This article has been rated as Low-importance on the project's importance scale. This article is supported by WikiProject Computer Security (assessed as Low-importance). Things you can help WikiProject Computer Security with: edit history watch purge Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

This Article was amended. please delete the template. Thanks — Preceding unsigned comment added by Fabiorahamim (talk • contribs) 09:14, 24 May 2017 (UTC)[reply]

The article currently contains an inline link to the Software Security Project (SSP) website. This seems appropriate, because it is a new (technically unlaunched) project, but it means that someone who wants to look at relevant references to SSP . I think it would be useful to have a reference from either the Linux Foundation or OpenSSF about SSP itself has nowhere else to turn.

The fact that there is a reference from the relatively old and reputable OWASP website claiming ZAProxy as one of its projects and links to the official ZAProxy site (increasing confidence that this is, in fact, the project's official site) is helpful.^{[note 1]} However, it is useful to verify from multiple directions so that a person can trust the project to the maximum extent that they trust any one of the organizations, rather than having to take the project's claims about itself at face value (or relying on a different organization which the possibly trust to a lesser degree or in a different way). Unfortunately, "Software Security Project" is literally the most vague name they could have chosen, resulting in a large number of false positives when searching either the Linux Foundation or OpenSSF websites. skyvine 🏳️‍⚧️ (talk) 16:49, 14 September 2023 (UTC)[reply]