SIMS icon indicating copy to clipboard operation
SIMS copied to clipboard
verified publisher icon bcgov

Automated Vulnerability Scanning

Open ninosamson opened this issue 1 year ago • 1 comments

User Story As a SIMS team, we need to be able to scan our application for security vulnerabilities regularly after each deployment and provide a report to our security officer.

Acceptance Criteria

  • [ ] research and implement a vulnerability scanning tool such as Owasp zap (https://www.zaproxy.org/)
  • [ ] automated scan that scans TEST after deployment and can be triggered from GitHub

ninosamson avatar Aug 15 '24 21:08 ninosamson

@ninosamson to confirm priority of this ticket.

sslaws avatar Sep 27 '24 17:09 sslaws

Moving to post MVP - can continue with WAVA scans requested from OCIO.

ninosamson avatar Jan 10 '25 17:01 ninosamson