From 45f8f2a73a8c3ba7341646666af7db9d636af70b Mon Sep 17 00:00:00 2001
From: ychung-mot <young-jin.chung@dxcas.com>
Date: Tue, 5 Nov 2024 08:26:30 -0800
Subject: [PATCH] chore: added zap scan

---
 .github/workflows/deploy-test.yml | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/deploy-test.yml b/.github/workflows/deploy-test.yml
index cfc8b8ca..d1deab10 100644
--- a/.github/workflows/deploy-test.yml
+++ b/.github/workflows/deploy-test.yml
@@ -132,4 +132,24 @@ jobs:
           git add .
 
           git commit -m "Update image tag to ${vtag//v} on $datetime"
-          git push origin test
\ No newline at end of file
+          git push origin test
+
+  zap-scan:
+    needs: [deploy-emerald]
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    permissions:
+      contents: read
+      issues: write
+
+    steps:
+    - uses: hmarr/debug-action@a701ed95a46e6f2fb0df25e1a558c16356fae35a
+    - uses: actions/checkout@96f53100ba2a5449eb71d2e6604bbcd94b9449b5
+      with:
+        ref: main
+    - name: ZAP Scan
+      uses: zaproxy/action-full-scan@c8994d4f913cf872ec9964ac2d998c9bec369060
+      with:
+        token: ${{ secrets.GITHUB_TOKEN }}
+        target: https://dev.strdata.gov.bc.ca/
+        rules_file_name: '.zap/rules.tsv'
\ No newline at end of file