{"id":18765749,"url":"https://github.com/andersonshatch/terracotta-bank","last_synced_at":"2025-12-08T00:30:13.404Z","repository":{"id":244095379,"uuid":"814255867","full_name":"andersonshatch/terracotta-bank","owner":"andersonshatch","description":null,"archived":false,"fork":false,"pushed_at":"2024-09-05T07:55:39.000Z","size":3520,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2024-12-29T06:09:21.456Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/andersonshatch.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-06-12T16:32:26.000Z","updated_at":"2024-09-05T07:55:43.000Z","dependencies_parsed_at":"2024-06-12T22:45:11.356Z","dependency_job_id":"5ae08067-f3d2-4080-8dcd-4eed97a05e42","html_url":"https://github.com/andersonshatch/terracotta-bank","commit_stats":null,"previous_names":["andersonshatch/terracotta-bank"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andersonshatch%2Fterracotta-bank","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andersonshatch%2Fterracotta-bank/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andersonshatch%2Fterracotta-bank/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andersonshatch%2Fterracotta-bank/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/andersonshatch","download_url":"https://codeload.github.com/andersonshatch/terracotta-bank/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239665157,"owners_count":19676879,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-07T18:35:05.404Z","updated_at":"2025-12-08T00:30:13.372Z","avatar_url":"https://github.com/andersonshatch.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Terracotta Bank: A deliberately insecure Java web application\n\nThis sample application is based on https://github.com/terracotta-bank/terracotta-bank\n\n**Warning**: The computer running this application will be vulnerable to attacks, please take appropriate precautions.\n\n# Running standalone\n\nYou can run Terracotta Bank locally on any machine with Java 1.8 RE installed.\n\n1. Place a `contrast_security.yaml` file into the application's root folder.\n1. Place a `contrast.jar` into the application's root folder.\n1. Run the application using ./gradlew bootRun\n1. Browse the application at http://localhost:8080/\n\n# Running in Docker\n\nYou can run Terracotta Bank within a Docker container. \n\n1. Place a `contrast_security.yaml` file into the application's root folder.\n1. Build the Terracotta Bank container image using `./1-Build-Docker-Image.sh`. The Contrast agent is added automatically during the Docker build process.\n1. Run the container using `docker run -v $PWD/contrast_security.yaml:/etc/contrast/java/contrast_security.yaml -p 8080:8080 terracotta-bank:1.0`\n1. Browse the application at http://localhost:8080/\n\n# Running in Azure (Azure Container Instance):\n\n## Pre-Requisites\n\n1. Place a `contrast_security.yaml` file into the application's root folder.\n1. Install Terraform from here: https://www.terraform.io/downloads.html.\n1. Install PyYAML using `pip install PyYAML`.\n1. Install the Azure cli tools using `brew update \u0026\u0026 brew install azure-cli`.\n1. Log into Azure to make sure you cache your credentials using `az login`.\n1. Edit the [variables.tf](variables.tf) file (or add a terraform.tfvars) to add your initials, preferred Azure location, app name, server name and environment.\n1. Run `terraform init` to download the required plugins.\n1. Run `terraform plan` and check the output for errors.\n1. Run `terraform apply` to build the infrastructure that you need in Azure, this will output the web address for the application.\n1. Run `terraform destroy` when you would like to stop the app service and release the resources.\n\n# Running automated tests\n\nThere are a number of Seleneum tests which you can use to reveal vulnerabilities.\n\n1. Place a `contrast_security.yaml` file into the application's root folder.\n1. Place a `contrast.jar` into the application's root folder.\n1. Ensure you have the Firefox browser installed.\n1. Run the application using `./gradlew cleanTest test`\n\n# Running automated tests in Docker\n \nThere are a number of Seleneum tests which you can use to reveal vulnerabilities in a Docker container.\n \n 1. Place a `contrast_security.yaml` file into the application's root folder.\n 1. Build the Docker container using `docker build . -f Dockerfile.test -t terracotta-test`\n 1. Run the container using `docker run -v $PWD/contrast_security.yaml:/etc/contrast/java/contrast_security.yaml terracotta-test:latest`\n\n## Updating the Docker Image\n\nYou can re-build the docker image (used by Terraform) by running two scripts in order:\n\n* 1-Build-Docker-Image.sh\n* 2-Deploy-Docker-Image-To-Docker-Hub.sh\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fandersonshatch%2Fterracotta-bank","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fandersonshatch%2Fterracotta-bank","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fandersonshatch%2Fterracotta-bank/lists"}