Heyhack Scan is based on strong set of default settings learned from millions of scans of a large variety of different web apps. This means that you don't have to configure anything whatsoever in order for Heyhack Scan to test your web application. 💪
Though, if you need to, you can change all of the settings that Heyhack relies on—including what browser to use for scanning (Chrome or Firefox), the User-Agent header, the frequency of scanning, the paths to include/ignore, the test cases Heyhack should run, and many others.
You decide whether to run Heyhack on your production site and/or to scan your staging site before approving a release. Heyhack is highly configurable and offers simple APIs that you can call from your CI/CD pipeline to fully control when and how Heyhack should conduct scans.