> For the complete CircleCI developer hub index, see [llms.txt](https://circleci.com/developer/llms.txt)

# zerothreat-ai/dast-scanner

Secure your code proactively. Use the ZeroThreat AI Powered Web Application/API Security Scanner to perform Dynamic Analysis Security Testing (DAST). It enables comprehensive Dynamic Analysis Security Testing (DAST) to detect vulnerabilities, making findings readily available on the ZeroThreat Portal for review.


## Commands

### scan

Scan for security issues in web applications/APIs

| Parameter | Type | Default | Description |
|---|---|---|---|
| `WAIT_FOR_ANALYSIS` | boolean |  |  |
| `ZT_TOKEN` | string |  |  |

## Jobs

### scan-job

Scan for security issues in web applications/APIs

| Parameter | Type | Default | Description |
|---|---|---|---|
| `WAIT_FOR_ANALYSIS` | boolean | false | Set this true to wait for analysis to complete before finishing job. |
| `ZT_TOKEN` | string |  | ZT_TOKEN to authenticate API request & start the scan. |

## Executors

### default

Default Docker executor

## Examples

### example

Example usage of the ZeroThreat AI for vulnerability scanning.


```yaml
version: '2.1'
orbs:
  vuln-scan: zerothreat-ai/dast-scanner@0.0.2
workflows:
  zerothreat-security-scan:
    jobs:
      - vuln-scan/scan-job:
          ZT_TOKEN: AWD4TRX
```