From b40ff1040da7b6a470006e0a6e1abeac5c49a24d Mon Sep 17 00:00:00 2001 From: gipo355 <91525512+gipo355@users.noreply.github.com> Date: Mon, 10 Jun 2024 10:02:41 +0200 Subject: [PATCH] docs: update readme --- README.md | 17 +++++++++++++++-- 1 file changed, 15 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 690c8db..c5079d1 100644 --- a/README.md +++ b/README.md @@ -24,7 +24,7 @@ test ### Github Actions -Must be buildable and pass all checks with `gradlew buildWaf` +Must be buildable and pass all checks with `gradlew buildWar` Verifies the war is runnable with a health check http request on the container. @@ -43,7 +43,9 @@ Verifies the war is runnable with a health check http request on the container. - codeql - dependency review - dependabot security alerts -- snyk +- snyk open source +- snyk container +- snyk code ### Dynamic Application Security Testing (DAST) @@ -59,6 +61,17 @@ Verifies the war is runnable with a health check http request on the container. - wapiti - others +### Sarif Reports + +sarif reports can be uploaded to github with the `upload-sarif` action + +they provide a standard format for static analysis tools, and can be used in github security tab +to have a better overview of the vulnerabilities and identify the tools that generated them + +👷 In progress: sarif reports + +Must convert manually zap, nmap, fix snyk + ### Auto upload images - dockerhub (gipo999/tomcat-webapp-boilerplate)