From ec3fbcec5bf51168f539e31ba0a782f6e59c9d6c Mon Sep 17 00:00:00 2001
From: silas-x <silas@silas.se>
Date: Thu, 26 Jan 2023 14:59:42 +0000
Subject: [PATCH] add pentest

---
 .github/workflows/ci-code-review.yml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/.github/workflows/ci-code-review.yml b/.github/workflows/ci-code-review.yml
index 56886b0c..1fa6ed83 100644
--- a/.github/workflows/ci-code-review.yml
+++ b/.github/workflows/ci-code-review.yml
@@ -38,6 +38,33 @@ jobs:
         env:
           SEMGREP_RULES: p/typescript
 
+  dast:
+    name: Pentest
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Setup Node
+        uses: actions/setup-node@v3
+        with:
+          node-version: '18'
+          cache: 'yarn'
+
+      - name: Install dependencies
+        run: yarn ci
+
+      - name: Build
+        run: yarn build
+
+      - name: Run
+        run: yarn start
+
+      - name: Run pentest
+        uses: PortSwigger/dastardly-github-action@main
+        with:
+          target-url: 'http://localhost:3000'
+
   sca:
     name: Dependency Scan
     runs-on: ubuntu-latest