Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ZAP Security Scan for nightly pipeline #1216

Merged
merged 68 commits into from
May 15, 2020
Merged

Add ZAP Security Scan for nightly pipeline #1216

merged 68 commits into from
May 15, 2020

Conversation

douglasrice
Copy link
Contributor

JIRA link (if applicable)

https://tools.hmcts.net/jira/browse/FPLA-1661

Change description

Add ZAP Security scan to nightly pipeline

Does this PR introduce a breaking change? (check one with "x")

[ ] Yes
[X] No

@douglasrice
FPLA-1661: Setup security scan for nightly pipeline
cd09efb
@douglasrice
FPLA-1661: Typo in proxy description
712c7a9
@douglasrice
FPLA-1661: amendments
af13078
@douglasrice
FPLA-1661: Changed descriptions to be more meaningful
cf84b0f
@douglasrice
FPLA-1661: output folder for security scan report
17d648d
@douglasrice
FPLA-1661: Rename parameter securityRules to SECURITY_RULES
a3531dc
@douglasrice
FPLS-1661: Trying new report name
d5f735d
@douglasrice
FPLA-1661: Integrate with Glue for ignoring false positives
6e62285
@douglasrice
FPLA-1661: Added a false positive to see if it works as expected
d82a862
@douglasrice
FPLA-1661: Added a false positive to see if it works as expected
f729ab1
@douglasrice
FPLA-1661: Admore more ignore false positives
db0f7e5
@douglasrice
FPLA-1661: Admore more ignore false positives
991871e
@douglasrice
FPLA-1661: Add more more ignore false positives
6bfa128
@douglasrice
FPLA-1661: Add more more ignore false positives
dad53dd
@douglasrice
FPLA-1661: Change to test for url only in config
845e64d
@douglasrice
FPLA-1661: Change to test for url only in config
fa71ada
@douglasrice
FPLA-1661: false positives
f98e240
@douglasrice
FPLA-1661: false positives
c7faca6
@douglasrice
FPLA-1661: false positives
d550fc1
@douglasrice
FPLA-1661: false positives
62edb13
@douglasrice
FPLA-1661: false positives
6f8a003
@douglasrice
FPLA-1661: amend url from https to http
83d3a18
@douglasrice
FPLA-1661: amend url from https to http
0540f98
@douglasrice
FPLA-1661: false positives
e350d0a
@douglasrice
FPLA-1661: false positives
6fce8b6
@douglasrice
FPLA-1661: false positives
3507e0f
@douglasrice
FPLA-1661: false positives
ca9e93c
@douglasrice
FPLA-1661: false positives
ba1240d
@douglasrice
FPLA-1661: false positives
e58042b
@douglasrice
FPLA-1661: false positives
34275fa
@jenkins-reform-hmcts jenkins-reform-hmcts requested a deployment to preview May 15, 2020 08:37 Abandoned
@jenkins-reform-hmcts jenkins-reform-hmcts temporarily deployed to preview May 15, 2020 08:40 Inactive
tomaszpowroznik
tomaszpowroznik reviewed May 15, 2020
View reviewed changes
@tomaszpowroznik
Copy link
Contributor

is functional-output/.gitignore needed, looks like empty

Gogetter
Gogetter reviewed May 15, 2020
View reviewed changes
Copy link
Contributor

@Gogetter Gogetter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

functional-output/.gitignore file is currently empty. do we need to populate?

@jenkins-reform-hmcts jenkins-reform-hmcts requested a deployment to preview May 15, 2020 11:14 Abandoned
@jenkins-reform-hmcts jenkins-reform-hmcts temporarily deployed to preview May 15, 2020 11:33 Inactive
@douglasrice douglasrice merged commit f0fade3 into master May 15, 2020
@douglasrice douglasrice deleted the nightly-dev branch May 15, 2020 12:22
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities (and Security Hotspot 0 Security Hotspots to review)
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Gogetter Gogetter Gogetter left review comments

@tomaszpowroznik tomaszpowroznik tomaszpowroznik approved these changes

@lewisbirks lewisbirks Awaiting requested review from lewisbirks

Assignees
No one assigned
Labels
ns:family-public-law
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@douglasrice @tomaszpowroznik @Gogetter @jenkins-reform-hmcts @satyachundur