Customer / OnPrintShop

How OnPrintShop Strengthened Product Security with ZeroThreat’s Automated DAST

ZeroThreat Protects OnPrintShop – Web-to-Print SaaS Platform

Measurable Outcomes

OWASP

Top 10 coverage before release

XSS

issues detected at scale

Security

validation aligned with release cycles

Improved

product stability

Increased

confidence before production

OnPrintShop at a Glance

Industry
Industry

Web-to-Print SaaS

Product Type
Product Type

Multi-tenant SaaS web application

Primary Need
Primary Need

Pre-release validation of application security without disrupting planned release cycles

ZeroThreat Solution Used
ZeroThreat Solution Used

Automated DAST aligned with OWASP Top 10

Overview

OnPrintShop is a global web-to-print SaaS platform enabling print service providers to manage online storefronts, orders, customization workflows, and customer data at scale.

With a feature-rich application handling extensive user inputs across thousands of pages, maintaining application security and product stability is critical. To validate its security posture before releases, OnPrintShop integrated ZeroThreat into its release process.

Impact Summary

OutcomeBenefit
Pre-release OWASP Top 10 validationTick_icon.svg Reduced risk of common web vulnerabilities entering production
Improved detection of XSS vulnerabilitiesTick_icon.svg Client-side security issues identified across complex pages and inputs
Structured security validation before releasesTick_icon.svg Predictable release cycles without security-driven delays
Improved product stabilityTick_icon.svg Fewer unpredictable security-related issues in production
Higher confidence in security postureTick_icon.svg Product and engineering teams release with greater assurance

About OnPrintShop

OnPrintShop is a mature SaaS product serving a global customer base in the printing and personalization industry. Its platform includes:

  • Complex web workflows
  • Multiple user roles and permissions
  • Extensive form-based inputs
  • Continuous feature evolution across releases

Given this complexity, ensuring protection against common yet impactful web vulnerabilities—especially client-side issues—became a key product responsibility.

The Security Challenge

As the product evolved, the OnPrintShop team faced a familiar challenge for large SaaS applications:

1. Broad attack surface across pages and inputs

With numerous pages, forms, and input parameters, detecting client-side vulnerabilities consistently through manual reviews was difficult and time-consuming.

2. Security validation tied to release cycles

Security checks needed to align with planned releases, without introducing uncertainty or disruption to the roadmap.

3. Need for confidence, not disruption

The team did not want security tooling to slow development or force major workflow changes. The goal was confidence and stability, not speed at any cost.

Why OnPrintShop Uses ZeroThreat

OnPrintShop adopted ZeroThreat primarily for its DAST capabilities, with a focus on identifying real, exploitable application-level vulnerabilities aligned with the OWASP Top 10.

ZeroThreat was selected because it:

  • Effectively detects client-side vulnerabilities, especially XSS
  • Provides clear visibility into OWASP Top 10 risks
  • Fits naturally into an existing release process
  • Requires minimal onboarding and configuration

The tool is used as a pre-release security validation layer, giving the team clarity before deployments.

Before ZeroThreatAfter ZeroThreat
Security validation relied largely on manual reviewsTick_icon.svg Automated DAST used as part of the release process
Client-side vulnerabilities hard to detect at scaleTick_icon.svg XSS and OWASP Top 10 issues identified more reliably
Limited visibility into security posture before releaseTick_icon.svg Clear security insights available prior to production
Security checks loosely tied to release cyclesTick_icon.svg Structured pre-release security validation
Uncertainty around security risks in productionTick_icon.svg Greater confidence in product stability and security posture

How ZeroThreat Fits into the Product Workflow

When scans are run

  • Before release, as part of the release process
  • Executed every 4–5 months, aligned with the product roadmap

How findings are handled

  • Vulnerabilities are reviewed and prioritized based on severity
  • Critical and high-severity issues are addressed immediately
  • Lower-severity or complex issues are planned into subsequent releases
  • Fixes are implemented without disrupting the overall roadmap

This approach keeps security structured, predictable, and manageable.

Key Vulnerabilities Identified

ZeroThreat has consistently surfaced vulnerabilities aligned with the OWASP Top 10, with particular value in detecting:

  • Cross-site scripting (XSS) issues
  • Client-side script vulnerabilities spread across multiple pages and inputs

These issues are difficult to identify manually at scale and require automated coverage across the application.

What Mattered Most

Reliable pre-release validation of OWASP Top 10 vulnerabilities—especially XSS—across a complex, input-heavy SaaS application, while maintaining predictable release cycles and improving overall product stability.

Measurable Impact

After integrating ZeroThreat’s web app pentesting into its release process, OnPrintShop observed clear improvements in security confidence, product stability, and release predictability.

Security & Product Outcomes

  • Reliable detection of OWASP Top 10 vulnerabilities before release
  • Improved identification of XSS vulnerabilities across complex, input-heavy page structures
  • Increased confidence in the product’s security posture prior to production deployments

Workflow & Stability Improvements

  • Security validation aligned with the release roadmap
  • Improved overall product stability across releases
  • Reduced risk of unpredictable security issues in production

Team Confidence

  • Clearer understanding of vulnerability severity across teams
  • Higher confidence among product and engineering leadership during release sign-offs
  • Security insights delivered without additional operational or process overhead
quote
5.0
Starauthor

ZeroThreat has helped us move toward a more proactive and continuous approach to application security, strengthening confidence in our SaaS platform before each release.

author

Naresh Devra

Product Owner

Overall Satisfaction

Product owner satisfaction rating: 9 / 10

The rating reflects:

  • Ease of use
  • Clear and actionable findings
  • Improved product stability
  • Confidence in addressing security risks proactively

Conclusion

For a complex SaaS product like OnPrintShop, application security is about preventing uncertainty, not reacting to incidents.

By integrating ZeroThreat into its release process, OnPrintShop strengthened protection against common web vulnerabilities while maintaining predictable release cycles and product stability.

ZeroThreat now functions as a trusted security validation layer—supporting secure product evolution as the platform scales.

About ZeroThreat

ZeroThreat is a web app and API pentesting platform that helps teams identify exploitable risks in running web applications through automated Dynamic Application Security Testing (DAST). It surfaces vulnerabilities mapped to OWASP Top 10 and CWE, with clear, actionable guidance to address issues before release.

For SaaS products like OnPrintShop, ZeroThreat integrates into the release process, supporting stronger security validation and product stability without disrupting development cycles.

Start Your Free Scan Now

Trusted by 5,000+ security teams across the world and growing...

Run a free scan