From 729785928163e81613d20b1f0788c68a5a448bee Mon Sep 17 00:00:00 2001
From: Kazuaki Yabu <carbuncle.panic@gmail.com>
Date: Wed, 23 Mar 2022 16:18:49 +0900
Subject: [PATCH] =?UTF-8?q?[OWASP=20ZAP]=20=E4=BC=9A=E5=93=A1=E7=AE=A1?=
 =?UTF-8?q?=E7=90=86=20=E4=BC=9A=E5=93=A1=E6=83=85=E5=A0=B1=E7=B7=A8?=
 =?UTF-8?q?=E9=9B=86?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .github/workflows/penetration-test.yml        |  4 +++
 .../patches/0002-EditCustomer.patch           | 32 +++++++++++++++++++
 2 files changed, 36 insertions(+)
 create mode 100644 zap/selenium/ci/TypeScript/patches/0002-EditCustomer.patch

diff --git a/.github/workflows/penetration-test.yml b/.github/workflows/penetration-test.yml
index 131decf6922..ad7391bf369 100644
--- a/.github/workflows/penetration-test.yml
+++ b/.github/workflows/penetration-test.yml
@@ -48,6 +48,10 @@ jobs:
         if: matrix.group == 'test/admin/content_layout_delete.test.ts'
         working-directory: zap/selenium/ci/TypeScript
         run: git am patches/0001-DeleteLayout.patch
+      - name: Apply patch to edit_customer
+        if: matrix.group == 'test/admin/customer_edit.test.ts'
+        working-directory: zap/selenium/ci/TypeScript
+        run: git am patches/0002-EditCustomer.patch
       - name: Penetration testing
         working-directory: zap/selenium/ci/TypeScript
         env:
diff --git a/zap/selenium/ci/TypeScript/patches/0002-EditCustomer.patch b/zap/selenium/ci/TypeScript/patches/0002-EditCustomer.patch
new file mode 100644
index 00000000000..80c0c867c56
--- /dev/null
+++ b/zap/selenium/ci/TypeScript/patches/0002-EditCustomer.patch
@@ -0,0 +1,32 @@
+From 8ef429a0efe81ef1cebcd778170e14f30d1663eb Mon Sep 17 00:00:00 2001
+From: Kazuaki Yabu <carbuncle.panic@gmail.com>
+Date: Wed, 23 Mar 2022 16:10:44 +0900
+Subject: [PATCH] =?UTF-8?q?[OWASP=20ZAP]=20=E4=BC=9A=E5=93=A1=E7=AE=A1?=
+ =?UTF-8?q?=E7=90=86=20=E4=BC=9A=E5=93=A1=E6=83=85=E5=A0=B1=E7=B7=A8?=
+ =?UTF-8?q?=E9=9B=86?=
+MIME-Version: 1.0
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: 8bit
+
+---
+ .../Controller/Admin/Customer/CustomerEditController.php      | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/src/Eccube/Controller/Admin/Customer/CustomerEditController.php b/src/Eccube/Controller/Admin/Customer/CustomerEditController.php
+index f8beac4f6d..ef55c7fca9 100644
+--- a/src/Eccube/Controller/Admin/Customer/CustomerEditController.php
++++ b/src/Eccube/Controller/Admin/Customer/CustomerEditController.php
+@@ -113,8 +113,8 @@ class CustomerEditController extends AbstractController
+                 $Customer->setEmail(StringUtil::random(60).'@dummy.dummy');
+             }
+ 
+-            $this->entityManager->persist($Customer);
+-            $this->entityManager->flush();
++//            $this->entityManager->persist($Customer);
++//            $this->entityManager->flush();
+ 
+             log_info('会員登録完了', [$Customer->getId()]);
+ 
+-- 
+2.30.2
+