Skip to content

Commit

Permalink
feat: add zapproxy to scan code
Browse files Browse the repository at this point in the history
  • Loading branch information
felipementel authored Dec 13, 2024
1 parent 5c71ffb commit 13d281b
Showing 1 changed file with 21 additions and 7 deletions.
28 changes: 21 additions & 7 deletions .github/workflows/pull-request-sonar.yml
Original file line number Diff line number Diff line change
Expand Up @@ -16,14 +16,9 @@ env:
csprojFolder: ./src/DEPLOY.Cachorro.Api/DEPLOY.Cachorro.Api.csproj

jobs:
build-and-sonar:
quality-gitleaks:
runs-on: ubuntu-latest
steps:
- name: Set up JDK 17
uses: actions/setup-java@v4
with:
java-version: 17
distribution: 'zulu'

- uses: actions/checkout@v4
with:
Expand All @@ -36,12 +31,31 @@ jobs:
GITLEAKS_ENABLE_SUMMARY: true
GITLEAKS_ENABLE_UPLOAD_ARTIFACT: true
GITLEAKS_NOTIFY_USER_LIST: '@felipementel'


quality-zaproxy:
runs-on: ubuntu-latest
steps:
- name: ZAP Scan
uses: zaproxy/[email protected]
with:
token: ${{ secrets.GITHUB_TOKEN }}
docker_name: 'ghcr.io/zaproxy/zaproxy:stable'
target: 'https://www.zaproxy.org/'
cmd_options: "-z -config view.locale=pt_BR"

quality-sonarqube:
runs-on: ubuntu-latest
steps:
- name: Set up JDK 17
uses: actions/setup-java@v4
with:
java-version: 17
distribution: 'zulu'

- uses: actions/checkout@v4
with:
fetch-depth: 0

- name: Setup .NET
uses: actions/setup-dotnet@v4
with:
Expand Down

0 comments on commit 13d281b

Please sign in to comment.