In this lawsuit against @walmart, the @owasp @zaproxy makes a showing. It found 100K instances of cross domain JavaScript, oh noes! 😂and a bunch of other equally dubious appsec claims. Attorneys, please hire a competent appsec expert. Lawsuit PDF: classaction.org/media/gardin…

To be clear the dubiousness isn’t in Zap’s findings but rather their interpretation (or lack thereof).