Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: update ZAP DAST scan to ignore warning and below #3259

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

jonnalley
Copy link
Contributor

@jonnalley jonnalley commented Dec 24, 2024

What changed

Further modified the command line options to the ZAP docker container to further attempt to silence warning-level and below threshold of findings. This is believed to be the intent of the current config but it has been still producing an undesirable level/quality of findings.

This is a pre-cursor to a future PR that will change this action over to testing the production environment instead of the staging environment.

Issue

N/A

How to test

Manually run or wait for scheduled run of this GHA and see if warning-level issues and below are produced.

Links

https://www.zaproxy.org/docs/docker/full-scan/
https://github.com/marketplace/actions/zap-full-scan

@jonnalley jonnalley self-assigned this Dec 24, 2024
@jonnalley jonnalley changed the title chore: update scan to ignore warning and below chore: update ZAP DAST scan to ignore warning and below Dec 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant