Update zap-publish-image-rdb.yml

WHOIGit · May 21, 2024 · 12cd35b · 12cd35b
1 parent c3a2484
commit 12cd35b
Showing 1 changed file with 10 additions and 4 deletions.
diff --git a/.github/workflows/zap-publish-image-rdb.yml b/.github/workflows/zap-publish-image-rdb.yml
@@ -50,7 +50,13 @@ jobs:
           # Pull the OWASP ZAP Docker Image
           docker pull zaproxy/zap-stable
 
-          # Run OWASP ZAP Baseline Scan
+          # Run OWASP ZAP Scan
+          pwd
+          cp .github/zap/rdb.context .
+          ls
+          # Needed for Zap 
+          chmod a+rw $(pwd)
+
           docker run --network roundabout-network \
              -v "/$(pwd):/zap/wrk/:rw" \
              -t zaproxy/zap-stable zap-baseline.py -j \
@@ -61,9 +67,9 @@ jobs:
              -n rdb.context \
              -U admin
 
-         # -t owasp/zap2docker-stable zap-baseline.py -j  \  no high alerts
-         # -t owasp/zap2docker-stable zap-full-scan.py \ runs 6+ hrs and timesout, includes high alerts
-         # -t owasp/zap2docker-weekly zap-full-scan.py -j  \ runs for 6+ hours - times out
+         # -t zaproxy/zap-stable zap-baseline.py -j  \  no high alerts
+         # -t zaproxy/zap-stable zap-full-scan.py \ runs 6+ hrs and timesout, includes high alerts
+         # -t zaproxy/zap-weekly zap-full-scan.py -j  \ runs for 6+ hours - times out
 
       - name: Archive production artifacts
         uses: actions/upload-artifact@v4