From 989821c4f162fc91eba2e752ec89a0bfe6dbbd0d Mon Sep 17 00:00:00 2001 From: Yuliani Moreno <37307343+yulianimoreno@users.noreply.github.com> Date: Wed, 6 Jul 2022 12:59:27 -0500 Subject: [PATCH 1/6] Update complete-workflow.yml --- .github/workflows/complete-workflow.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index 304c6d7..0a0daa0 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -14,7 +14,7 @@ jobs: distribution: 'temurin' cache: maven - name: Build with Maven cloud - run: mvn -B verify sonar:sonar -Dsonar.projectKey=javaprojectreachability -Dsonar.organization=javaprojectreachability -Dsonar.host.url=https://sonarcloud.io -Dsonar.login=$SONAR_TOKEN + run: mvn -B verify sonar:sonar -Dsonar.projectKey=javaproject-yuliani -Dsonar.organization=javaproject-yuliani -Dsonar.host.url=https://sonarcloud.io -Dsonar.login=$SONAR_TOKEN env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} @@ -44,4 +44,4 @@ jobs: docker_name: 'owasp/zap2docker-stable' target: 'http://testphp.vulnweb.com/' rules_file_name: '.zap/rules.tsv' - cmd_options: '-a' \ No newline at end of file + cmd_options: '-a' From fc3ba424a23fc2590e6c3e50319074b39687d6eb Mon Sep 17 00:00:00 2001 From: Yuliani Moreno <37307343+yulianimoreno@users.noreply.github.com> Date: Wed, 6 Jul 2022 13:07:56 -0500 Subject: [PATCH 2/6] Update complete-workflow.yml --- .github/workflows/complete-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index 0a0daa0..f9df77a 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -20,7 +20,7 @@ jobs: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} security: runs-on: ubuntu-latest - needs: build + #needs: build name: Run the SCA scan on the source code steps: - uses: actions/checkout@master From 5336871dc83e3795db5f211c2fa5e14d3262cd49 Mon Sep 17 00:00:00 2001 From: yulianim Date: Wed, 6 Jul 2022 17:41:39 -0500 Subject: [PATCH 3/6] Testing --- .github/workflows/complete-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index f9df77a..91e3cd5 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -1,4 +1,4 @@ -name: Build code, run unit test, run SAST, SCA, DAST security scans +name: Build code, run unit test, run SAST, SCA, DAST security scans. on: push jobs: From 1b5322b98d2ee17eaf622041edeed979e084e019 Mon Sep 17 00:00:00 2001 From: Yuliani Moreno <37307343+yulianimoreno@users.noreply.github.com> Date: Wed, 6 Jul 2022 17:49:13 -0500 Subject: [PATCH 4/6] Update complete-workflow.yml --- .github/workflows/complete-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index 91e3cd5..0371ee3 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -37,7 +37,7 @@ jobs: - name: Checkout uses: actions/checkout@v2 with: - ref: master + ref: main - name: ZAP Scan uses: zaproxy/action-baseline@v0.6.1 with: From 0fad065af07e414c98f1167c2b750f9887c6c38d Mon Sep 17 00:00:00 2001 From: yulianim Date: Wed, 6 Jul 2022 17:52:10 -0500 Subject: [PATCH 5/6] Testing --- .github/workflows/complete-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index 91e3cd5..527f715 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -1,4 +1,4 @@ -name: Build code, run unit test, run SAST, SCA, DAST security scans. +name: Build code, run unit test, run SAST, SCA, DAST security scans... on: push jobs: From f45bcd94d2bcd1b9c23cd1094880f16769b76ef7 Mon Sep 17 00:00:00 2001 From: yulianim Date: Wed, 6 Jul 2022 17:56:28 -0500 Subject: [PATCH 6/6] Testing --- .github/workflows/complete-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/complete-workflow.yml b/.github/workflows/complete-workflow.yml index daad606..527f715 100644 --- a/.github/workflows/complete-workflow.yml +++ b/.github/workflows/complete-workflow.yml @@ -37,7 +37,7 @@ jobs: - name: Checkout uses: actions/checkout@v2 with: - ref: main + ref: master - name: ZAP Scan uses: zaproxy/action-baseline@v0.6.1 with: