PA-11096 generic "otherOptions" argument for passing command line extras

README.md

@@ -81,6 +81,7 @@ The basic command to run a baseline scan would look like:
 | `--oauthTokenUrl` | None | The authentication URL that grants the access_token. |
 | `--oauthParameters` | None | Parameters to be added to the oauth token request. (eg --oauthParameters="client_id:clientID, client_secret:clientSecret, grant_type:client_credentials")
 | `--disableRules` | None | Comma separated list of ZAP rules IDs to disable. List for reference https://www.zaproxy.org/docs/alerts/ |
+| `--otherOptions` | None | Additional command line arguments for items not supported by the set of parameters above |
 
 #### Config File Definition
 ``` yaml

main.py

@@ -110,6 +110,9 @@ def __init__(self):
         self.sarif_destination: Optional[str] = None
         self.disable_rules: Optional[str] = None
 
+        # allows passing other command line options directly to the script
+        self.other_options: Optional[str] = None
+
         self.scan_mode_map: Dict = {
             Constants.BASELINE: self.baseline_scan,
             Constants.FULL_SCAN: self.full_scan,
@@ -262,6 +265,8 @@ def parse_configuration(self, configuration: Dict, target_url: str):
                 self.update_addons = True if str.lower(value) == "true" else False
             elif key == "disableRules":
                 self.disable_rules = array_to_str(value)
+            elif key == "otherOptions":
+                self.other_options = array_to_str(value)
 
     def __add_target_url_option__(self, args: List[str]) -> NoReturn:
         if has_value(self.target_url):
@@ -356,7 +361,7 @@ def __generate_command__(self, args: List[str]) -> str:
         self.__add_context_file_option__(args)
         self.__add_ajax_spider_scan_option__(args)
         self.__add_spider_minutes_option__(args)
-        log("Add ZAP Options?")
+
         log(f"Auth Login: {str(self.auth_login_url)}")
         log(f"Zap Options: {str(self.zap_options)}")
         log(f"Cookies: {str(self.request_cookies)}")
@@ -366,7 +371,7 @@ def __generate_command__(self, args: List[str]) -> str:
             self.__add_hook_option__(args)
 
         self.__add_report_file__(args)
-       
+
         return " ".join(args)
 
     def baseline_scan(self) -> str:
@@ -954,6 +959,13 @@ def parse_args(self) -> None:
             default=None,
             required=False
         )
+        parser.add_argument(
+            "--otherOptions",
+            help="Other command line arguments sent directly to the script for items not supported by other command line arguments",
+            type=str,
+            nargs="*",
+            required=False,
+        )
 
         # parse help argument
         if "-hf" in sys.argv or "--helpFormatted" in sys.argv:
@@ -1029,6 +1041,10 @@ def run_analysis(self) -> None:
             if self.zap_options:
                 command = f"{command} {Constants.ZAP_OPTIONS} \"{self.zap_options}\""
 
+            if self.other_options:
+                log(f"Other Options: {str(self.other_options)}")
+                command = f"{command} {self.other_options}"
+
             log(f"Executing {self.scan_mode} scan")
             soos_dast_start_response = self.__make_soos_start_analysis_request__(command)