Skip to content

Feature/lab9#1337

Open
03sano30 wants to merge 2 commits into
inno-devops-labs:mainfrom
03sano30:feature/lab9
Open

Feature/lab9#1337
03sano30 wants to merge 2 commits into
inno-devops-labs:mainfrom
03sano30:feature/lab9

Conversation

@03sano30

@03sano30 03sano30 commented Jul 5, 2026

Copy link
Copy Markdown

Goal

Run security scans (Trivy + ZAP) on QuickNotes, triage findings, and fix at least one vulnerability.

Changes

  • Added Trivy image, filesystem, and config scans
  • Generated CycloneDX SBOM
  • Added security headers middleware (X-Content-Type-Options, X-Frame-Options, CSP)
  • Added unit test for security headers
  • ZAP report before/after fix: 10021 (X-Content-Type-Options) removed

Testing

  • ✅ Trivy scans completed (0 HIGH/CRITICAL in base image)
  • ✅ ZAP before fix: 10021 present
  • ✅ Headers verified with curl -v
  • ✅ ZAP after fix: 10021 gone

Checklist

  • Title is clear
  • Commits are signed
  • submissions/lab9.md updated

03sano30 added 2 commits July 5, 2026 10:33
Signed-off-by: 03sano30 <8961sasha@mail.ru>
Signed-off-by: 03sano30 <8961sasha@mail.ru>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant