Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add workflow/script to generate scan policies based on rule tags #5962

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add workflow/script to generate scan policies based on rule tags #5962

wants to merge 1 commit into from
+133 −0

Conversation

kingthorin
Copy link
Member

@kingthorin kingthorin commented Nov 29, 2024
edited
Loading

Overview

  • generate-scan-policies.js > ZAP standalone script to be used by a nightly docker image to craft the scan policies.
  • generate_policies.yml > The new workflow. Triggered by cron every Friday morning or manually via workflow_dispatch.

Related Issues

#5930

Checklist

  • [na] Update help
  • [na] Update changelog
  • [na] Run ./gradlew spotlessApply for code formatting (I did format the script based on the community-script formatter)
  • [na] Write tests (Tested in another repo)
  • [na] Check code coverage
  • Sign-off commits
  • Squash commits
  • Use a descriptive title

@kingthorin kingthorin force-pushed the scanpol-wf branch 2 times, most recently from 3d4f0a7 to 517d5c0 Compare November 29, 2024 11:23
kingthorin
kingthorin commented Nov 29, 2024
View reviewed changes
.github/workflows/generate_policies.yml
Comment on lines +39 to +42
git remote remove origin
git remote add origin https://github.com/zapbot/zap-extensions.git
git remote add upstream https://github.com/zaproxy/zap-extensions.git
SRC_BASE="zaproxy/zap-extensions@"$(git log -1 --format=format:%h)
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is different from the test repo impl. Please let me know if anything seems wrong.

@thc202 thc202 changed the title scanpolicies: Add workflow/script to generate updates based on rule tags Add workflow/script to generate scan policies based on rule tags Nov 29, 2024
@kingthorin kingthorin force-pushed the scanpol-wf branch 4 times, most recently from 5a1f92f to 7d7b587 Compare November 29, 2024 12:14
@psiinon

This comment was marked as resolved.

Sign in to view
@kingthorin
scanpolicies: Add workflow/script to generate updates based on rule tags
069d64b 
- generate-scan-policies.js > ZAP standalone script to be used by a
nightly docker image to craft the scan policies.
- generate_policies.yml > The new workflow. Triggered by cron every
Friday morning or manually via workflow_dispatch.

Signed-off-by: kingthorin <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kingthorin @psiinon