DevFW-CICD/spring-petclinic
16
0
Fork 1
mirror of https://github.com/spring-projects/spring-petclinic.git synced 2025-07-15 20:25:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

added project key and org key to sonar.yml

Browse source
This commit is contained in:
Favee 2025-04-11 09:49:51 +01:00
parent fc6ee28f0f
commit 338f6f784a
2 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
.github/workflows/security.yml vendored
View file

@ -20,10 +20,18 @@ jobs:
java-version: '17' java-version: '17'
distribution: 'temurin' distribution: 'temurin'
cache: maven cache: maven
- name: Cache OWASP Dependency-Check data
uses: actions/cache@v2
with:
path: ~/.m2/repository/org/owasp/dependency-check-data
key: ${{ runner.os }}-dependency-check-${{ hashFiles('**/pom.xml') }}
restore-keys: |
${{ runner.os }}-dependency-check-
- name: Run OWASP Dependency Check - name: Run OWASP Dependency Check
run: ./mvnw org.owasp:dependency-check-maven:check run: ./mvnw org.owasp:dependency-check-maven:check
- name: Archive dependency check results - name: Archive dependency check results
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@v4
with: with:
@ -74,6 +82,7 @@ jobs:
uses: zaproxy/action-baseline@v0.7.0 uses: zaproxy/action-baseline@v0.7.0
with: with:
target: 'http://localhost:8080' target: 'http://localhost:8080'
docker_name: 'ghcr.io/zaproxy/zaproxy:stable'
rules_file_name: '.zap/rules.tsv' rules_file_name: '.zap/rules.tsv'
cmd_options: '-a' cmd_options: '-a'

0
.zap/rules.tsv Normal file
View file