diff --git a/addOns/scanpolicies/CHANGELOG.md b/addOns/scanpolicies/CHANGELOG.md
index 0253ef917f..c477ab2856 100644
--- a/addOns/scanpolicies/CHANGELOG.md
+++ b/addOns/scanpolicies/CHANGELOG.md
@@ -5,5 +5,9 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 
 ## Unreleased
 ### Added
+- A set of standardized active scan policies:
+    - Developer CI/CD
+    - Developer Standard
+    - Developer Full
 - First version, just with the Default Policy.
 - Initial help.
\ No newline at end of file
diff --git a/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-cicd.html b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-cicd.html
new file mode 100644
index 0000000000..3e29d0a3b0
--- /dev/null
+++ b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-cicd.html
@@ -0,0 +1,25 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
+<HTML>
+<HEAD>
+<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8">
+<TITLE>
+Developer CI/CD Policy
+</TITLE>
+</HEAD>
+<BODY>
+<H1>Developer CI/CD Policy</H1>
+
+This policy is designed to be used by developers in a CI/CD pipeline.
+
+<ul>
+    <li>Recommended for running in CI/CD</li>
+    <li>No environmental / server related rules</li>
+    <li>No long running rules</li>
+    <li>No rules with high false positives</li>
+    <li>No timing attacks</li>
+    <li>No informational only rules</li>
+    <li>Minimal overlap</li>
+</ul
+
+</BODY>
+</HTML>
diff --git a/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-full.html b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-full.html
new file mode 100644
index 0000000000..f7174e71ad
--- /dev/null
+++ b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-full.html
@@ -0,0 +1,24 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
+<HTML>
+<HEAD>
+<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8">
+<TITLE>
+Developer Full Policy
+</TITLE>
+</HEAD>
+<BODY>
+<H1>Developer Full Policy</H1>
+
+A developer focused policy, including a superset of the dev standard with a greater variety of 
+potential findings and only minimal environmental/server related rules, intended for use in a dev environment.
+
+<ul>
+    <li>A superset of Developer Standard</li>
+    <li>Intended to run in a dev environment</li>
+    <li>No rules with high false positives</li>
+    <li>No timing attacks</li>
+    <li>Minimal environmental / server related rules</li>
+</ul
+
+</BODY>
+</HTML>
diff --git a/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-std.html b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-std.html
new file mode 100644
index 0000000000..b1aa4fc76d
--- /dev/null
+++ b/addOns/scanpolicies/src/main/javahelp/help/contents/policy-dev-std.html
@@ -0,0 +1,26 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
+<HTML>
+<HEAD>
+<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8">
+<TITLE>
+Developer Standard Policy
+</TITLE>
+</HEAD>
+<BODY>
+<H1>Developer Standard Policy</H1>
+
+A develoepr focused policy eant to perform fairly quickly while providing a greater set of results than the CICD policy, 
+intended for use in a dev environment.
+
+<ul>
+    <li>A superset of Developer CICD</li>
+    <li>Intended to run in a dev environment</li>
+    <li>No environmental / server related rules</li>
+    <li>No rules with high false positives</li>
+    <li>No timing attacks</li>
+    <li>No informational only rules</li>
+    <li>Can include longer running rules</li>
+</ul
+
+</BODY>
+</HTML>
diff --git a/addOns/scanpolicies/src/main/javahelp/help/contents/scanpolicies.html b/addOns/scanpolicies/src/main/javahelp/help/contents/scanpolicies.html
index 4d4357c6ed..8a94c72364 100644
--- a/addOns/scanpolicies/src/main/javahelp/help/contents/scanpolicies.html
+++ b/addOns/scanpolicies/src/main/javahelp/help/contents/scanpolicies.html
@@ -13,7 +13,10 @@ <H1>Scan Policies</H1>
 These policies are initialised as detailed in the relevant pages, but you can tune them as required.
 
 <ul>
-<li><a href="policy-default.html">Default Policy</a> : the default policy, all installed active rules enabled
+    <li><a href="policy-default.html">Default Policy</a> : the default policy, all installed active rules enabled
+    <li><a href="policy-dev-cicd.html">Developer CICD Policy</a> : a policy intended for Ci/CD use, focused on quick but higher risk issues
+    <li><a href="policy-dev-std.html">Developer Standard Policy</a> : a policy directed at developers, meant to perform fairly quickly while providing a greater set of results than the CICD policy (intended for use in a dev environment)
+    <li><a href="policy-dev-full.html">Developer Full Policy</a> : a developer focused policy, including a superset of the dev standard with a greater variety of potential findings and only minimal environmental/server related rules (intended for use in a dev environment)
 </ul>
 
 </BODY>
diff --git a/addOns/scanpolicies/src/main/javahelp/help/map.jhm b/addOns/scanpolicies/src/main/javahelp/help/map.jhm
index 1a41fc351b..dc43ba0979 100644
--- a/addOns/scanpolicies/src/main/javahelp/help/map.jhm
+++ b/addOns/scanpolicies/src/main/javahelp/help/map.jhm
@@ -6,5 +6,8 @@
 <map version="1.0">
     <mapID target="addon.scanpolicies" url="contents/scanpolicies.html" />
     <mapID target="addon.policy-default" url="contents/policy-default.html" />
+    <mapID target="addon.policy-dev-cicd" url="contents/policy-dev-cicd.html" />
+    <mapID target="addon.policy-dev-std" url="contents/policy-dev-std.html" />
+    <mapID target="addon.policy-dev-full" url="contents/policy-dev-full.html" />
     <mapID target="addon.scanpolicies-icon" url="contents/images/equalizer.png" />
 </map>
diff --git a/addOns/scanpolicies/src/main/javahelp/help/toc.xml b/addOns/scanpolicies/src/main/javahelp/help/toc.xml
index 11e0c3925d..d6127aeafc 100644
--- a/addOns/scanpolicies/src/main/javahelp/help/toc.xml
+++ b/addOns/scanpolicies/src/main/javahelp/help/toc.xml
@@ -8,6 +8,9 @@
         <tocitem text="Add Ons" tocid="addons">
             <tocitem text="Scan Policies" image="addon.scanpolicies-icon" target="addon.scanpolicies">
                 <tocitem text="Default Policy" target="addon.policy-default"/>
+                <tocitem text="Developer CI/CD Policy" target="addon.policy-dev-cicd"/>
+                <tocitem text="Developer Standard Policy" target="addon.policy-dev-std"/>
+                <tocitem text="Developer Full Policy" target="addon.policy-dev-full"/>
             </tocitem>
         </tocitem>
     </tocitem>
diff --git a/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev CICD.policy b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev CICD.policy
new file mode 100644
index 0000000000..ea8af8c7b9
--- /dev/null
+++ b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev CICD.policy	
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+    <policy>Developer CI/CD</policy>
+    <scanner>
+        <level>OFF</level>
+        <strength>MEDIUM</strength>
+    </scanner>
+    <plugins>
+        <p20019>
+            <name>External Redirect</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p20019>
+        <p40012>
+            <name>Cross Site Scripting (Reflected)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40012>
+        <p40018>
+            <name>SQL Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40018>
+        <p90020>
+            <name>Remote OS Command Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90020>
+        <p90021>
+            <name>XPath Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90021>
+        <p90023>
+            <name>XML External Entity Attack</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90023>
+        <p90035>
+            <name>Server Side Template Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90035>
+        <p90017>
+            <name>XSLT Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90017>
+        <p50000>
+            <name>Script Active Scan Rules</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p50000>
+    </plugins>
+</configuration>
diff --git a/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Full.policy b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Full.policy
new file mode 100644
index 0000000000..e8a0680f4d
--- /dev/null
+++ b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Full.policy	
@@ -0,0 +1,155 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+    <policy>Developer Full</policy>
+    <scanner>
+        <level>OFF</level>
+        <strength>MEDIUM</strength>
+    </scanner>
+    <plugins>
+        <p6>
+            <name>Path Traversal</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p6>
+        <p7>
+            <name>Remote File Inclusion</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p7>
+        <p20019>
+            <name>External Redirect</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p20019>
+        <p40009>
+            <name>Server Side Include</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40009>
+        <p40012>
+            <name>Cross Site Scripting (Reflected)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40012>
+        <p40014>
+            <name>Cross Site Scripting (Persistent)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40014>
+        <p40018>
+            <name>SQL Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40018>
+        <p40019>
+            <name>SQL Injection - MySQL</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40019>
+        <p40020>
+            <name>SQL Injection - Hypersonic SQL</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40020>
+        <p40021>
+            <name>SQL Injection - Oracle</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40021>
+        <p40022>
+            <name>SQL Injection - PostgreSQL</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40022>
+        <p40026>
+            <name>Cross Site Scripting (DOM Based)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40026>
+        <p40027>
+            <name>SQL Injection - MsSQL</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40027>
+        <p90019>
+            <name>Server Side Code Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90019>
+        <p90020>
+            <name>Remote OS Command Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90020>
+        <p90021>
+            <name>XPath Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90021>
+        <p90023>
+            <name>XML External Entity Attack</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90023>
+        <p90035>
+            <name>Server Side Template Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90035>
+        <p90036>
+            <name>Server Side Template Injection (Blind)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90036>
+        <p40003>
+            <name>CRLF Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40003>
+        <p40008>
+            <name>Parameter Tampering</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40008>
+        <p90017>
+            <name>XSLT Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90017>
+        <p40016>
+            <name>Cross Site Scripting (Persistent) - Prime</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40016>
+        <p40017>
+            <name>Cross Site Scripting (Persistent) - Spider</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40017>
+        <p50000>
+            <name>Script Active Scan Rules</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p50000>
+        <p40031>
+            <name>Out of Band XSS</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40031>
+        <p40046>
+            <name>Server Side Request Forgery</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40046>
+        <p40047>
+            <name>Text4shell (CVE-2022-42889)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40047>
+        <p90028>
+            <name>Insecure HTTP Method</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90028>
+    </plugins>
+</configuration>
diff --git a/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Standard.policy b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Standard.policy
new file mode 100644
index 0000000000..e21505cfac
--- /dev/null
+++ b/addOns/scanpolicies/src/main/zapHomeFiles/policies/Dev Standard.policy	
@@ -0,0 +1,70 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+    <policy>Developer Standard</policy>
+    <scanner>
+        <level>OFF</level>
+        <strength>MEDIUM</strength>
+    </scanner>
+    <plugins>
+        <p6>
+            <name>Path Traversal</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p6>
+        <p7>
+            <name>Remote File Inclusion</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p7>
+        <p20019>
+            <name>External Redirect</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p20019>
+        <p40009>
+            <name>Server Side Include</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40009>
+        <p40012>
+            <name>Cross Site Scripting (Reflected)</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40012>
+        <p40018>
+            <name>SQL Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p40018>
+        <p90020>
+            <name>Remote OS Command Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90020>
+        <p90021>
+            <name>XPath Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90021>
+        <p90023>
+            <name>XML External Entity Attack</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90023>
+        <p90035>
+            <name>Server Side Template Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90035>
+        <p90017>
+            <name>XSLT Injection</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p90017>
+        <p50000>
+            <name>Script Active Scan Rules</name>
+            <enabled>true</enabled>
+            <level>MEDIUM</level>
+        </p50000>
+    </plugins>
+</configuration>