eclipse-tractusx / managed-identity-wallet

Apache License 2.0
10 stars 23 forks source link

Reintroduce DAST Security Checks #39

Closed DominikPinsel closed 11 months ago

DominikPinsel commented 1 year ago

While merged Catena-X NG to Tractus-X I removed the old DAST security checks, as they had a dependency to the catena-x kubernetes node.

This issue is about finding a way to reintroduce the checks in a tractus-x conform way.

Old DAST workflow:

name: DAST
on:
  push:
    branches: [ "main" ]
    paths-ignore:
      - '**/*.md'
      - '**/*.txt'
  workflow_dispatch:
    inputs:
      target_url:
        description: URL to test
        required: true
        type: choice
        options:
          - "https://managed-identity-wallet.dev.demo.catena-x.net/"
          - "https://managed-identity-wallet.int.demo.catena-x.net/"
          - "https://managed-identity-wallet.beta.demo.catena-x.net/"
          - "https://managed-identity-wallet.stable.demo.catena-x.net/"
        default: "https://managed-identity-wallet.dev.demo.catena-x.net/"

jobs:
  zap_scan:
    runs-on: ubuntu-latest
    name: OWASP ZAP
    steps:
      - name: Checkout
        uses: actions/checkout@v2
        with:
          ref: main
      - name: ZAP Scan
        uses: zaproxy/action-full-scan@v0.5.1
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
          docker_name: 'owasp/zap2docker-stable'
          target: '${{ github.event.inputs.target_url }}'
borisrizov-zf commented 11 months ago

Seems that this task is done? @DominikPinsel

borisrizov-zf commented 11 months ago

Runs on main, closing due to inactivity.