OK, we need root but what about sudo

CDCgov · Jun 21, 2023 · 84fca73 · 84fca73
1 parent 95848e7
commit 84fca73
Showing 1 changed file with 1 addition and 7 deletions.
diff --git a/.github/workflows/dast.yml b/.github/workflows/dast.yml
@@ -40,14 +40,8 @@ jobs:
       - name: Check API Health
         run: ./health-check.sh
 
-#      - name: Pull ZAP OWASP Image
-#        run: docker pull owasp/zap2docker-weekly
-#
-#      - name: Create docker network
-#        run: docker network create zapnet
-
       - name: Run ZAP API Scan
-        run: sudo docker run -v $(pwd):/zap/wrk/:rw -t owasp/zap2docker-weekly zap-api-scan.py -t http://$(ip -f inet -o addr show docker0 | awk '{print $4}' | cut -d '/' -f 1):8080/openapi -f openapi -r api-scan-report.html
+        run: docker run -v $(pwd):/zap/wrk/:rw --user root -t owasp/zap2docker-weekly zap-api-scan.py -t http://$(ip -f inet -o addr show docker0 | awk '{print $4}' | cut -d '/' -f 1):8080/openapi -f openapi -r api-scan-report.html
 
       - name: Upload Report
         uses: actions/upload-artifact@v3