Commit 17c0127a authored by FulcrandG's avatar FulcrandG
Browse files

Testing report for zaproxy job

parent 250c1bbd
Loading
Loading
Loading
Loading
+2 −0
Original line number Diff line number Diff line
@@ -50,3 +50,5 @@ use it as a service (we recommend using our [Docker](https://r2deveops.io/jobs/b
| `ZAP_OPTIONS` <img width=100/> | ZAP command line options e.g. `-z "-config aaa=bbb -config ccc=ddd"` <img width=175/>| ` ` <img width=100/>|
| `ZAP_CONTEXT` | Path for the context file for authenticated scans | ` ` |
| `ZAP_TARGET` | Target for Zaproxy to scan, default using alias of the docker image used as a service | `http://app` |
| `ZAP_REPORT_FILE` | Filename for the zaproxy report | `zap-report` |
| `ZAP_REPORT_FORMAT` | Format for the zaproxy report (html, xml, or json) | `html` |
+4 −3
Original line number Diff line number Diff line
@@ -8,7 +8,8 @@ zaproxy:
    ZAP_SCANNERS: ""
    ZAP_CONTEXT: ""
    ZAP_TARGET: "http://app"
    ZAP_REPORT: "zap-report.html"
    ZAP_REPORT_FILE: "zap-report"
    ZAP_REPORT_FORMAT: "html"
  script:
    - zap-cli start --start-options '-config api.disablekey=true'
    - if [ ! -z ${ZAP_CONTEXT} ]; then
@@ -29,9 +30,9 @@ zaproxy:
    -     zap-cli active-scan --recursive ${ZAP_TARGET}
    -   fi
    - fi
    - zap-cli report -o ${CI_PROJECT_DIR}/${ZAP_REPORT} -f html
    - zap-cli report -o ${CI_PROJECT_DIR}/${ZAP_REPORT_FILE}.${ZAP_REPORT_FORMAT} -f ${ZAP_REPORT_FORMAT}
  artifacts:
    paths:
      - "${ZAP_REPORT}"
      - "${ZAP_REPORT_FILE}.${ZAP_REPORT_FORMAT}"
    expire_in: 30 days
    when: always
 No newline at end of file