← MCPLookup
Packageactivev0.8.0

MCP ZAP Server

io.github.dtkmn/mcp-zap-server

Safe, self-hosted OWASP ZAP operator for guided AI security scans and reports.

No blockers found

assessed on 1 of 4 dimensions

  • ProvenanceOrigin linked to a public source repository.Official MCP Registry · as of May 10, 2026
    Pass
  • MaintenanceRepository maintenance signals not yet ingested.
    Pending
  • Manifest integrityLive manifest not yet captured — the rug-pull baseline begins at first probe.
    Pending
  • Supply chainPackage vulnerability scan not yet run.
    Pending
  • Behavioral trustNo live endpoint to observe.
    Not applicable

Connect

oci package
ghcr.io/dtkmn/mcp-zap-server:v0.8.0

Requires ZAP_API_URL, ZAP_API_PORT, ZAP_API_KEY, MCP_API_KEY, MCP_SERVER_TOOLS_SURFACE, MCP_SECURITY_MODE, MCP_SECURITY_ENABLED, MCP_SECURITY_ALLOW_PLACEHOLDER_API_KEY.

oci package
docker.io/dtkmn/mcp-zap-server:v0.8.0

Requires ZAP_API_URL, ZAP_API_PORT, ZAP_API_KEY, MCP_API_KEY, MCP_SERVER_TOOLS_SURFACE, MCP_SECURITY_MODE, MCP_SECURITY_ENABLED, MCP_SECURITY_ALLOW_PLACEHOLDER_API_KEY.

Provenance

  • Official MCP Registry · as of May 10, 2026 · registry-tos

Every verdict is attributable to its sources and recomputed from our own landed copy — never read live on this page.