docs: update README in scripts and enviroment variables #54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "SecOps: DAST Dynamic Scan" | |
| on: | |
| push: | |
| branches: [ main, master ] | |
| jobs: | |
| zap_scan: | |
| runs-on: ubuntu-latest | |
| name: Scan the live API (Render) | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| - name: ZAP Baseline Scan | |
| # Usamos 'baseline' porque es mejor para explorar URLs activas | |
| uses: zaproxy/action-baseline@v0.12.0 | |
| with: | |
| # REVISA: Esta URL debe ser la que abres en el navegador para ver tu API | |
| target: 'https://auth-mailer-api.onrender.com' | |
| # Importante: fail_action en false para que el pipeline no se ponga rojo | |
| # si solo encuentra alertas informativas o advertencias leves. | |
| fail_action: false |