-
Notifications
You must be signed in to change notification settings - Fork 43
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add Dockerfile for OWASP ZAP tool (#2693)
- Loading branch information
1 parent
75c4b6c
commit 4527785
Showing
1 changed file
with
21 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
# Dockerfile for building the OWASP ZAP image used by the OWASP ZAP scan job in the pipeline. | ||
# This image is already available in the OpenShift imagestream and does not need to be rebuilt unless changes are necessary. | ||
# The OWASP ZAP scan job is triggered by Argo CD after the application's deployment is complete and will use the image from the imagestream to run the scan. | ||
# Only modify this file and rebuild the image if updates to the image are required. | ||
|
||
# Use the official OWASP ZAP stable image as the base | ||
FROM zaproxy/zap-stable:latest | ||
|
||
# Switch to root user for permission changes | ||
USER root | ||
|
||
# Set permissions for /zap and /home/zap directories | ||
RUN chown -R zap:zap /zap && \ | ||
chmod -R 777 /zap && \ | ||
chmod -R 777 /home/zap | ||
|
||
# Set /zap as the working directory | ||
WORKDIR /zap | ||
|
||
# Switch back to the zap user | ||
USER zap |