This is the Node.js OWASP juice-shop app, instrumented with Contrast Security, and running in a Docker container to isolate it from your environment.
A Contrast Security account, git, and docker
- Clone this repo
- Drop your contrast_security.yaml file for Node.js into the project root directory
- Run the build script
- Run the start script
- Interact with the application, which should be running on your desktop at http://localhost:3000
- Observe the results of your interactions in the Contrast Security UI, where the juiceshop-guide app should be onboarded and online.