diff --git a/.github/workflows/complete-workflow.yml b/.github/complete-workflow.yml similarity index 100% rename from .github/workflows/complete-workflow.yml rename to .github/complete-workflow.yml diff --git a/.github/workflows/owasp-zap-scan.yml b/.github/workflows/owasp-zap-scan.yml index 148af3ba..2cf13c64 100644 --- a/.github/workflows/owasp-zap-scan.yml +++ b/.github/workflows/owasp-zap-scan.yml @@ -8,13 +8,13 @@ jobs: name: Scan the web application steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v3 with: - ref: master + ref: main - name: ZAP Scan - uses: zaproxy/action-baseline@v0.6.1 + uses: zaproxy/action-baseline@v0.10.0 with: - docker_name: 'owasp/zap2docker-stable' + docker_name: 'ghcr.io/zaproxy/zaproxy:stable' target: 'http://testphp.vulnweb.com/' rules_file_name: '.zap/rules.tsv' cmd_options: '-a' diff --git a/.github/workflows/sonarqubescan.yml b/.github/workflows/sonarqubescan.yml index bdeea537..184c4b7f 100644 --- a/.github/workflows/sonarqubescan.yml +++ b/.github/workflows/sonarqubescan.yml @@ -1,20 +1,18 @@ name: Run SonarQube with Maven - on: push - jobs: build: runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v3 + steps: + - uses: actions/checkout@v4 - name: Set up JDK 17 - uses: actions/setup-java@v3 + uses: actions/setup-java@v4 with: - java-version: '17' - distribution: 'adopt' + java-version: '21' + distribution: 'temurin' cache: maven - name: Build with Maven cloud - run: mvn -B verify sonar:sonar -Dsonar.projectKey=javaprojectreachability -Dsonar.organization=javaprojectreachability -Dsonar.host.url=https://sonarcloud.io -Dsonar.token=$SONAR_TOKEN + run: mvn -B verify sonar:sonar -Dsonar.projectKey=javaprojectre -Dsonar.organization=javaprojectre -Dsonar.host.url=https://sonarcloud.io -Dsonar.token=$SONAR_TOKEN env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} \ No newline at end of file