Merge pull request #717 from DTS-STN/dependabot/npm_and_yarn/frontend… #621
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Dynamic Application Security Tests | |
on: | |
push: | |
branches: [main] | |
defaults: | |
run: | |
working-directory: ./frontend | |
jobs: | |
zap-proxy-scan: | |
name: ZAP Proxy Test | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Docker Build | |
run: docker build -t senior-journey . | |
env: | |
CI: true | |
- name: Docker run | |
run: docker run -d -p 3000:3000 senior-journey | |
env: | |
CI: true | |
- name: OWASP ZAP FULL Scan | |
uses: zaproxy/action-full-scan@v0.10.0 | |
with: | |
target: "http://localhost:3000" | |
fail_action: "false" | |
token: ${{ secrets.GITHUB_TOKEN }} |