add security testing (DAST) of QA website to pipeline (!156) · Merge requests · SIS-CC / Stat Suite / dotstatsuite-data-lifecycle-manager

moksman requested to merge feature--add-quality-assurance into develop Mar 31, 2021

This feature adds a step to the pipeline that triggers the pipeline in the Quality assurance repository.

The job in the Quality assurance pipeline will do a curl request to Netsparker (tool for Dynamic Application Security Testing, DAST/Blackbox testing) which will do a scan of the DLM website on QA.

Please note: The pipeline will only return the http status code of the request to Netsparker (hence pipeline will only fail if there is a issue with the request to the Netsparker web api), the result of the scan can be viewed in the Netsparker webgui.

https://gitlab.com/sis-cc/.stat-suite/dotstatsuite-core-common/-/issues/93

add security testing (DAST) of QA website to pipeline

Merge request reports