dast scan with zap

halekammoun · halekammoun · commit 14c09ca3b41e · 2024-11-25T21:29:42.000+01:00
diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
@@ -96,17 +96,17 @@ jobs:
         run: |
           docker compose up -d
       # Step 4: Start ZAP container and run scan
-    - name: Run OWASP ZAP Baseline Scan
-      run: |
-        docker run --rm -u zap \
-          --network="host" \
-          -v $(pwd):/zap/wrk \
-          ghcr.io/zaproxy/zaproxy:latest \
-          zap-baseline.py -t http://localhost:8000 -r zap-report.html 
+      - name: Run OWASP ZAP Baseline Scan
+        run: |
+          docker run --rm -u zap \
+            --network="host" \
+            -v $(pwd):/zap/wrk \
+            ghcr.io/zaproxy/zaproxy:latest \
+            zap-baseline.py -t http://localhost:8000 -r zap-report.html 
 
-    # Step 5: Upload ZAP Report
-    - name: Upload ZAP Report
-      uses: actions/upload-artifact@v3
-      with:
-        name: ZAP Report
-        path: zap-report.html
+      # Step 5: Upload ZAP Report
+      - name: Upload ZAP Report
+        uses: actions/upload-artifact@v3
+        with:
+          name: ZAP Report
+          path: zap-report.html
