The fund announcement came from StackHawk CEO and co-founder, Joni Klippertin his speech to ZAPCon 2022 – a user conference that brings together thousands of ZAP enthusiasts and application security experts from around the world. StackHawk proudly built its platform on top of ZAP.
“I am very happy to announce that StackHawk has created a $100,000 funds to support the ZAP community and ZAP contributions,” Klippert said. “As a company that benefits from the great work of ZAP, we believe it is important to give back and facilitate the ability to grow a larger, more deeply engaged community around ZAP. ”
The ZAP Fund will be used to improve ZAP and its community. A portion of the fund is dedicated to resolving open ZAP issues through a bounty program. The ZAP Core team worked with StackHawk to identify bounty-eligible issues. Users can find details of these bounties on the ZAP Fund website and collect the bounties by successfully merging fixes for marked issues.
The ZAP fund builds on StackHawk’s strong relationship with ZAP. creator of ZAP, Simon Bennettsjoined the StackHawk team as a Distinguished Engineer in July 2020. Since then, StackHawk has served as a presenting partner for ZAPCon while providing technical contributions to the open source project to make testing more reliable and better suited to the needs of modern developers.
“An open source project is only as strong as the community that supports it,” Bennetts said. “I’m honored that StackHawk created this fund to inspire ZAP users to contribute back, while providing new opportunities for our community to grow.”
StackHawk integrates application security testing with software delivery. The StackHawk platform makes it easy for engineers to find and fix application security bugs at any stage of software development. With a strong founding team that has deep experience in security and DevOps, and some of the best venture capitalists in the industry, StackHawk puts application security testing in the hands of engineers. Learn more and sign up for a free trial at www.stackhawk.com.
ZAP the world’s most widely used web application scanner. It is completely free, open source and actively maintained by an international team of dedicated volunteers. ZAP was created in 2010 to be the first security tool for developers and in 2014 became an OWASP flagship project. The scanner has been rated one of the best free security tools and is used by millions of developers worldwide. Learn more about zaproxy.org.