Esta página se muestra en inglés. Una traducción al español está en curso.
MCP ConfigsMay 13, 2026·2 min de lectura

MCP ZAP Server — OWASP ZAP for Agents (Safe)

MCP ZAP Server exposes OWASP ZAP through MCP with operator guardrails (auth, policies, scopes) and Docker Compose setup for guided scans and reports.

MCP Hub
MCP Hub · Community
Listo para agents

Staging seguro para este activo

Este activo primero queda en staging. El prompt copiado pide inspeccionar los archivos staged antes de activar scripts, config MCP o config global.

Stage only · 17/100Política: staging
Superficie agent
Cualquier agent MCP/CLI
Tipo
Mcp Config
Instalación
Stage only
Confianza
Confianza: Established
Entrada
Asset
Comando de staging seguro
npx -y tokrepo@latest install e33a3398-1329-5624-9bf8-388c7e11bc56 --target codex

Primero deja archivos en staging; la activación requiere revisar el README y el plan staged.

Introducción

MCP ZAP Server exposes OWASP ZAP through MCP with operator guardrails (auth, policies, scopes) and Docker Compose setup for guided scans and reports.

Best for: teams who want agentic web scanning with operator-controlled defaults

Works with: Docker + Compose, MCP clients (Cursor example), Open WebUI client (bundled)

Setup time: 10-20 minutes

Key facts (verified)

  • GitHub: 53 stars · 9 forks · pushed 2026-05-13.
  • License: Apache-2.0 · owner avatar + repo URL verified via GitHub API.
  • README-verified entrypoint: ./bin/bootstrap-local.sh.

Main

  • Use the supported local happy path: bootstrap → dev → self-serve doctor (README explains what each script does).

  • Keep the default bind safe: README notes the Compose stack publishes host ports on 127.0.0.1 by default and warns about exposing to 0.0.0.0.

  • For agent clients, configure the MCP endpoint (/mcp) and follow the README Cursor config example path.

Source-backed notes

  • README Quick Start lists ./bin/bootstrap-local.sh, ./dev.sh, and ./bin/self-serve-doctor.sh as the supported local flow.
  • README states the Open WebUI UI is at http://localhost:3000 and the MCP endpoint at http://localhost:7456/mcp.
  • README links a Cursor config example at examples/cursor/mcp.json.

FAQ

  • Is it affiliated with OWASP?: No — README includes a note that it is not endorsed by OWASP/ZAP.
  • Do I need Kubernetes?: No — README says Docker Compose is the easiest install; Helm is for Kubernetes.
  • Where is the MCP endpoint?: README lists http://localhost:7456/mcp for host-side clients.
🙏

Fuente y agradecimientos

Source: https://github.com/dtkmn/mcp-zap-server > License: Apache-2.0 > GitHub stars: 53 · forks: 9

Discusión

Inicia sesión para unirte a la discusión.
Aún no hay comentarios. Sé el primero en compartir tus ideas.

Activos relacionados

WhatsApp MCP Server — Chat with WhatsApp via AI Agents

MCP server connecting Claude and AI agents to your personal WhatsApp. Search contacts, read messages, send replies and media via natural language.

MCP Configs
MCP Hub

Apify MCP Server — 8,000+ Web Scrapers for Agents

Apify MCP Server connects agents to Apify Actors via a hosted endpoint (mcp.apify.com) or local run, turning thousands of web scrapers into callable tools.

MCP Configs
MCP Hub

Neon MCP — Serverless Postgres via AI Agents

MCP server for Neon serverless Postgres. Create projects, branch databases, run SQL, optimize queries via natural language. Safe migration workflow with branching. MIT, 574+ stars.

MCP Configs
MCP Hub

Embody — TouchDesigner MCP Server for Node Networks

Embody is a TouchDesigner toolkit with an embedded MCP server (Envoy) so agents can build, wire, and debug live node networks from chat.

MCP Configs
MCP Hub
Inicio🔍Buscar👤Yo