You’ll need to generate a root CA certificate.
Export it into a file.
Import it in to the JRE cacerts keystore.
Assuming the Java keytool is on the system path, JAVA_HOME is set to the location of a JRE and the ZAP Root CA cert is exported to “~/zap_root_ca.cer”, then the command is:
$ keytool -importcert -keystore $JAVA_HOME/lib/security/cacerts -file ~/zap_root_ca.cer -alias owasp_zap_root_ca
When you run your application you’ll need to make sure it’s using ZAP as a proxy.