Skip to content
tests_security_checks

Merge branch 'main' into feature/disable_attempt_lint_sast_checks #48

Sign in to view logs

Merge branch 'main' into feature/disable_attempt_lint_sast_checks

Merge branch 'main' into feature/disable_attempt_lint_sast_checks #48

Workflow file for this run

.github/workflows/tests_security_checks.yml at a8f3357
name: tests_security_checks
on: [push, pull_request]
jobs:
test-cases:
name: test-cases
runs-on: ubuntu-latest
permissions:
contents: read
timeout-minutes: 5
steps:
- name: Checkout Repository
uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: '3.9'
- name: Install Dependencies
run: |
python -m pip install --upgrade pip
pip install -r requirements.txt
- name: Run tests
run: pytest
zap_scan:
name: zap_scan
runs-on: ubuntu-latest
permissions:
contents: read
issues: write
timeout-minutes: 15
steps:
- name: Checkout Code
uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: '3.9'
- name: Install Dependencies
run: |
python -m pip install --upgrade pip
pip install -r requirements.txt
- name: Start Application
run: |
nohup python pastebin.py &
sleep 10 # Wait for the app to start
- name: ZAP Scan
uses: zaproxy/[email protected]
with:
target: 'http://localhost:5000'
cmd_options: '-a'
fail_action: true
issue_title: 'ZAP Scan Results'
token: ${{ secrets.GITHUB_TOKEN }}
continue-on-error: true