post: commit 2a51f30 in bojemoi

2026-03-26 18:51:18 +01:00
parent 8b3df064e1
commit b5273f3480
1 changed files with 54 additions and 0 deletions
--- a/content/posts/commits/2026-03-26-commit-2a51f30.md
+++ b/content/posts/commits/2026-03-26-commit-2a51f30.md
@@ -0,0 +1,54 @@
+---
+title: "[bojemoi] refactor(zap-scanner): Redis queue + zap_scan_log + Faraday + concurrency"
+date: 2026-03-26T18:51:18+01:00
+draft: false
+tags: ["commit", "bojemoi", "main"]
+categories: ["Git Activity"]
+summary: "Commit 2a51f30 par Betty dans bojemoi"
+author: "Betty"
+---
+
+## Commit `2a51f30`
+
+| | |
+|---|---|
+| **Repository** | bojemoi |
+| **Branch** | `main` |
+| **Author** | Betty |
+| **Hash** | `2a51f3001b29121a572207ae8f42aa46964ac772` |
+
+
+### Description
+
+Architecture v2:
+- DbFeeder thread: charge hosts web non scannés depuis msf.hosts
+  (NOT IN zap_scan_log) → Redis queue zap:targets toutes les 300s
+- ScanWorker: N scans ZAP concurrents (défaut 3), spider→active scan,
+  DOES_NOT_EXIST/timeout gérés proprement
+- zap_scan_log table: tracking persistant (host_id PK, alerts, status)
+  — plus de rescans aléatoires des mêmes hosts
+- Faraday export: POST vulns via API v3 après chaque scan
+- Fix: DB_NAME 'msg' → 'msf', Redis connection error ne crashe plus
+- Stack: add REDIS_HOST/PORT, ZAP_CONCURRENCY, FARADAY_WORKSPACE,
+  scanner sur réseau pentest+backend pour atteindre Redis et ZAP
+
+Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
+
+### Files Changed
+
+```
+M	oblast-1/Dockerfile.oblast-1
+M	oblast-1/requirements.txt
+M	oblast-1/zap_scanner.py
+M	stack/40-service-borodino.yml
+```
+
+### Diff Summary
+
+```
+ oblast-1/Dockerfile.oblast-1  |  31 +-
+ oblast-1/requirements.txt     |   2 +-
+ oblast-1/zap_scanner.py       | 737 ++++++++++++++++++++----------------------
+ stack/40-service-borodino.yml |  42 ++-
+ 4 files changed, 388 insertions(+), 424 deletions(-)
+```