{"id":"63081ed3-ad9f-42e0-90da-536e60b9be7f","shortId":"ARksaJ","kind":"skill","title":"OWASP ZAP API Security Auditor","tagline":"Orchestrates OWASP ZAP active and passive scans against REST and GraphQL endpoints using ZAP's Python API client. Generates DAST reports with CWE mappings and suggests WAF rule configurations.","description":"# OWASP ZAP API Security Auditor\n\nOrchestrates OWASP ZAP active and passive scans against REST and GraphQL endpoints using ZAP's Python API client. Generates DAST reports with CWE mappings and suggests WAF rule configurations.\n\n## Installation\n\nRequirements and caveats from upstream:\n- ![Docker Live Release](https://github.com/zaproxy/zaproxy/actions/workflows/release-live-docker.yml/badge.svg)\n\nBasic usage or getting-started notes:\n- ![Integration Tests](https://github.com/zaproxy/zaproxy/actions/workflows/run-integration-tests.yml/badge.svg)\n\n- Source: https://github.com/zaproxy/zaproxy\n- Extracted from upstream docs: https://raw.githubusercontent.com/zaproxy/zaproxy/HEAD/README.md\n\n## Source\n\n- [Agent Skill Exchange](https://agentskillexchange.com/skills/owasp-zap-api-security-auditor/)","tags":["owasp","zap","api","security","auditor","skills","agentskillexchange","agent-skills","ai-agents","ai-tools","awesome-list","claude-code"],"capabilities":["skill","source-agentskillexchange","skill-owasp-zap-api-security-auditor","topic-agent-skills","topic-ai-agents","topic-ai-tools","topic-awesome-list","topic-claude-code","topic-codex","topic-cursor","topic-llm","topic-mcp","topic-npx-skills","topic-openclaw","topic-skills-catalog"],"categories":["skills"],"synonyms":[],"warnings":[],"endpointUrl":"https://skills.sh/agentskillexchange/skills/owasp-zap-api-security-auditor","protocol":"skill","transport":"skills-sh","auth":{"type":"none","details":{"cli":"npx skills add agentskillexchange/skills","source_repo":"https://github.com/agentskillexchange/skills","install_from":"skills.sh"}},"qualityScore":"0.454","qualityRationale":"deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 8 github stars · SKILL.md body (800 chars)","verified":false,"liveness":"unknown","lastLivenessCheck":null,"agentReviews":{"count":0,"score_avg":null,"cost_usd_avg":null,"success_rate":null,"latency_p50_ms":null,"narrative_summary":null,"summary_updated_at":null},"enrichmentModel":"deterministic:skill-github:v1","enrichmentVersion":1,"enrichedAt":"2026-05-18T19:11:37.340Z","embedding":null,"createdAt":"2026-05-18T13:18:11.884Z","updatedAt":"2026-05-18T19:11:37.340Z","lastSeenAt":"2026-05-18T19:11:37.340Z","tsv":"'/skills/owasp-zap-api-security-auditor/)':110 '/zaproxy/zaproxy':96 '/zaproxy/zaproxy/actions/workflows/release-live-docker.yml/badge.svg)':80 '/zaproxy/zaproxy/actions/workflows/run-integration-tests.yml/badge.svg)':92 '/zaproxy/zaproxy/head/readme.md':103 'activ':9,43 'agent':105 'agentskillexchange.com':109 'agentskillexchange.com/skills/owasp-zap-api-security-auditor/)':108 'api':3,22,37,56 'auditor':5,39 'basic':81 'caveat':72 'client':23,57 'configur':34,68 'cwe':28,62 'dast':25,59 'doc':100 'docker':75 'endpoint':17,51 'exchang':107 'extract':97 'generat':24,58 'get':85 'getting-start':84 'github.com':79,91,95 'github.com/zaproxy/zaproxy':94 'github.com/zaproxy/zaproxy/actions/workflows/release-live-docker.yml/badge.svg)':78 'github.com/zaproxy/zaproxy/actions/workflows/run-integration-tests.yml/badge.svg)':90 'graphql':16,50 'instal':69 'integr':88 'live':76 'map':29,63 'note':87 'orchestr':6,40 'owasp':1,7,35,41 'passiv':11,45 'python':21,55 'raw.githubusercontent.com':102 'raw.githubusercontent.com/zaproxy/zaproxy/head/readme.md':101 'releas':77 'report':26,60 'requir':70 'rest':14,48 'rule':33,67 'scan':12,46 'secur':4,38 'skill':106 'skill-owasp-zap-api-security-auditor' 'sourc':93,104 'source-agentskillexchange' 'start':86 'suggest':31,65 'test':89 'topic-agent-skills' 'topic-ai-agents' 'topic-ai-tools' 'topic-awesome-list' 'topic-claude-code' 'topic-codex' 'topic-cursor' 'topic-llm' 'topic-mcp' 'topic-npx-skills' 'topic-openclaw' 'topic-skills-catalog' 'upstream':74,99 'usag':82 'use':18,52 'waf':32,66 'zap':2,8,19,36,42,53","prices":[{"id":"410a5e4b-c6be-4aac-a2ca-23f865836f63","listingId":"63081ed3-ad9f-42e0-90da-536e60b9be7f","amountUsd":"0","unit":"free","nativeCurrency":null,"nativeAmount":null,"chain":null,"payTo":null,"paymentMethod":"skill-free","isPrimary":true,"details":{"org":"agentskillexchange","category":"skills","install_from":"skills.sh"},"createdAt":"2026-05-18T13:18:11.884Z"}],"sources":[{"listingId":"63081ed3-ad9f-42e0-90da-536e60b9be7f","source":"github","sourceId":"agentskillexchange/skills/owasp-zap-api-security-auditor","sourceUrl":"https://github.com/agentskillexchange/skills/tree/main/skills/owasp-zap-api-security-auditor","isPrimary":false,"firstSeenAt":"2026-05-18T13:18:11.884Z","lastSeenAt":"2026-05-18T19:11:37.340Z"}],"details":{"listingId":"63081ed3-ad9f-42e0-90da-536e60b9be7f","quickStartSnippet":null,"exampleRequest":null,"exampleResponse":null,"schema":null,"openapiUrl":null,"agentsTxtUrl":null,"citations":[],"useCases":[],"bestFor":[],"notFor":[],"kindDetails":{"org":"agentskillexchange","slug":"owasp-zap-api-security-auditor","github":{"repo":"agentskillexchange/skills","stars":8,"topics":["agent-skills","ai-agents","ai-tools","awesome-list","claude-code","codex","cursor","llm","mcp","npx-skills","openclaw","skills-catalog"],"license":"mit","html_url":"https://github.com/agentskillexchange/skills","pushed_at":"2026-05-18T19:02:17Z","description":"The open catalog of AI agent skills — 2,000+ security-scanned skills for Claude Code, Cursor, Codex, and more.","skill_md_sha":"e5534a059125da44af3f7d1cf2c30b5e40384935","skill_md_path":"skills/owasp-zap-api-security-auditor/SKILL.md","default_branch":"main","skill_tree_url":"https://github.com/agentskillexchange/skills/tree/main/skills/owasp-zap-api-security-auditor"},"layout":"multi","source":"github","category":"skills","frontmatter":{"name":"OWASP ZAP API Security Auditor","description":"Orchestrates OWASP ZAP active and passive scans against REST and GraphQL endpoints using ZAP's Python API client. Generates DAST reports with CWE mappings and suggests WAF rule configurations."},"skills_sh_url":"https://skills.sh/agentskillexchange/skills/owasp-zap-api-security-auditor"},"updatedAt":"2026-05-18T19:11:37.340Z"}}