Gate deployments on WAF scan results with WAFtester
What it does A CI/CD quality gate that blocks deployments when WAF protection is insufficient. Your pipeline sends a webhook with the target URL, the workflow runs [WAFtester](https://waftester.com) scans, and returns...
Template notes
What it does
A CI/CD quality gate that blocks deployments when WAF protection is insufficient. Your pipeline sends a webhook with the target URL, the workflow runs [WAFtester](https://waftester.com) scans, and returns a pass/fail HTTP response the pipeline can gate on.
About WAFtester
[WAFtester](https://waftester.com) is an open-source CLI for testing Web Application Firewalls. It ships 27 MCP tools, 2,800+ attack payloads across 18 categories (SQLi, XSS, SSRF, SSTI, command injection, XXE, and more), detection signatures for 26 WAF vendors and 9 CDNs, and enterprise-grade assessment with F1/MCC scoring and letter grades (A+ through F).
- GitHub: [github.com/waftester/waftester](https://github.com/waftester/waftester) - Docs: [Installation](https://github.com/waftester/waftester/blob/main/docs/INSTALLATION.md) | [Examples](https://github.com/waftester/waftester/blob/main/docs/EXAMPLES.md) | [Commands](https://github.com/waftester/waftester/blob/main/docs/COMMANDS.md)
Who it's for
- DevOps teams enforcing security gates in CI/CD - Platform engineers automating deployment approvals - Security teams requiring pre-deploy WAF validation
How it works