We are going to use OWASP ZAP as a container in this chapter, which requires container runtime in the host operating system. The team behind OWASP ZAP releases ZAP Docker images on a weekly basis via Docker Hub. The approach of pulling Docker images based on tags is popular in modern DevOps environments and it makes sense that we talk about automation with respect to that.
Note
Official ZAP is now available with stable and weekly releases via the Docker container at Docker Hub: https://github.com/zaproxy/zaproxy/wiki/Docker.
Docker is an open platform for developers and system administrators to build, ship, and run distributed applications whether on laptops, data center VMs, or the cloud. To learn more about Docker, refer to https://www.docker.com/what-docker.
The following playbook will install Docker Community Edition software in Ubuntu 16.04:
- name: installing docker on ubuntu hosts: zap remote_user: "{{ remote_user_name }}" gather_facts...