You have a GitHub repository named Repo1 and an app named App1. Repo1 stores the source code for App1.You need to perform the following test: Run a ZAP spider against App1 for one minute and wait for passive scanning to complete. The test must NOT perform active attacks. Which GitHub action should you use for the above test?