Infrastructure/zot
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2024-12-30 22:34:13 -05:00
Code Issues Activity
zot/.github/workflows
History
Andrei Aaron 5968e7199f
test(ui): add owasp zap scanner in ci/cd (#1224) 
(cherry picked from commit 6d03ce5f2d)

Additional changes on top of: 6d03ce5f2d
- Build and use zot from the same branch
do not use a container image as scan target, use the binary
- Fix typo in rules filename
- Add the full rule list to the rules config file
- Ignore some of the specific rules and add reasons
- Add security-related headers to fix some of the issues identified by the scan
- Update UI it includes the latest fixes for zap scan issues

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
Co-authored-by: Ramkumar Chinchani <rchincha@cisco.com>
2023-02-27 11:25:47 -08:00
..
benchmark.yaml chore(deps): fix dependabot alerts (#965) 2022-11-08 00:39:06 -08:00
branch-cov.yml build(tags): remove redundant build tag ui_base (#857) 2022-10-10 15:05:55 +03:00
ci-cd.yml build(ui): the ui is now included in the zot binary by default (#1202) 2023-02-23 22:28:08 +02:00
cloc.yml Update go version to 1.19 (#829) 2022-10-05 13:21:14 +03:00
cluster.yaml chore(trivy): update trivy version and enforce OCI compliant repo names in local image storage (#1068) 2023-01-18 08:24:44 -08:00
codeql-analysis.yml ci: remove superfluous parts of github workflows (#1050) 2022-12-07 12:46:50 -08:00
commit-msg.yaml chore(deps): fix dependabot alerts (#919) 2022-10-24 15:18:48 -07:00
dco.yml dco: enable DCO checks only on PRs (#812) 2022-09-22 20:13:53 +03:00
ecosystem-tools.yaml chore(trivy): update trivy version and enforce OCI compliant repo names in local image storage (#1068) 2023-01-18 08:24:44 -08:00
golangci-lint.yaml build(tags): remove redundant build tag ui_base (#857) 2022-10-10 15:05:55 +03:00
gqlgen.yaml chore(go.mod): fix dependabot alerts (#1210) 2023-02-17 13:54:49 -08:00
license.yaml Update go version to 1.19 (#829) 2022-10-05 13:21:14 +03:00
oci-conformance-action.yml Update go version to 1.19 (#829) 2022-10-05 13:21:14 +03:00
scorecards.yml chore(deps): fix dependabot alerts (#1090) 2022-12-29 10:05:22 +02:00
stale.yaml chore(deps): fix dependabot alerts (#1090) 2022-12-29 10:05:22 +02:00
sync-3rdparty-images.yaml ci(golang): fix syncing build image golang 1.20 (#1205) 2023-02-17 10:02:30 -08:00
tls.yaml Update go version to 1.19 (#829) 2022-10-05 13:21:14 +03:00
web-scan.yml test(ui): add owasp zap scanner in ci/cd (#1224) 2023-02-27 11:25:47 -08:00