Skip to content

test job dependency #70

test job dependency

test job dependency #70

Workflow file for this run

name: OWASP Zap Scan and Report
on:
push:
branches:
- "pull-url-zap"
schedule:
- cron: '0 0 * * *' # run every day at midnight
jobs:
zap_scan:
name: Run Zap Scan for PR
runs-on: ubuntu-latest
needs: deploy

Check failure on line 15 in .github/workflows/zap-scan.yml

View workflow run for this annotation

GitHub Actions / OWASP Zap Scan and Report

Invalid workflow file

The workflow is not valid. .github/workflows/zap-scan.yml (Line: 15, Col: 12): Job 'zap_scan' depends on unknown job 'deploy'.
if: github.event_name == 'push'
steps:
- name: Checkout
uses: actions/checkout@v2
- id: endpoint
run: echo ::set-output name=application_endpoint::$(./output.sh ui ApplicationEndpointUrl $STAGE_PREFIX$branch_name)
working-directory: services
- name: OWASP ZAP Baseline Scan
continue-on-error: true
uses: zaproxy/action-baseline@v0.3.0
with:
target: "${{ steps.endpoint.outputs.application_endpoint }}"
nightly_zap_scan:
runs-on: ubuntu-latest
if: github.event_name == 'schedule'
steps:
- name: Checkout repository
uses: actions/checkout@v2
- name: OWASP ZAP Baseline Scan
continue-on-error: true
uses: zaproxy/action-baseline@v0.7.0
with:
target: ""
- name: Run Jira Ticket Creator
uses: Enterprise-CMCS/macfc-security-scan-report@v1.0.2
with:
jira-username: ${{ secrets.JIRA_SERVICE_USERNAME }}
jira-token: ${{ secrets.JIRA_SERVICE_USER_TOKEN }}
jira-host: 'qmacbis.atlassian.net'
jira-project-key: 'MDCT'
jira-issue-type: 'Task'
jira-custom-field-key-value: '{ "customfield_10007" : "MDCT-2280" }'
jira-labels: 'MCR,zap'
jira-title-prefix: '[MCR] - zap :'
scan-output-path: 'report_json.json'
scan-type: 'zap'