Use api-scan owasp action

2025-12-26 10:21:33 -05:00 · 2022-08-19 12:23:05 -04:00
parent fb188395a9
commit 2df4b42da2
1 changed files with 2 additions and 1 deletions
--- a/.github/workflows/checks.yml
+++ b/.github/workflows/checks.yml
@@ -114,10 +114,11 @@ jobs:
        env:
          SQLALCHEMY_DATABASE_TEST_URI: postgresql://user:password@localhost:5432/test_notification_api
      - name: Run OWASP Baseline Scan
-        uses: zaproxy/action-baseline@v0.6.1
+        uses: zaproxy/action-api-scan@v0.1.1
        with:
          docker_name: 'owasp/zap2docker-weekly'
          target: 'http://localhost:6011/'
          fail_action: true
+          allow_issue_writing: false
          rules_file_name: 'zap.conf'
          cmd_options: '-I'