Add owasp baseline scan with Scanning environment

This commit is contained in:
Ryan Ahearn
2022-08-26 17:07:42 -04:00
parent a2913f8b9c
commit 3341c08245
3 changed files with 149 additions and 0 deletions

View File

@@ -62,3 +62,22 @@ jobs:
run: pip install bandit
- name: Run scan
run: bandit -r app/ --confidence-level medium
dynamic-scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: ./.github/actions/setup-project
- name: Run server
run: make run-flask &
env:
NOTIFY_ENVIRONMENT: scanning
- name: Run OWASP Baseline Scan
uses: zaproxy/action-baseline@v0.7.0
with:
docker_name: 'owasp/zap2docker-weekly'
target: 'http://localhost:6012'
fail_action: true
allow_issue_writing: false
rules_file_name: 'zap.conf'
cmd_options: '-I'