Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 14 additions & 0 deletions .github/workflows/ci-scan.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,20 @@ jobs:
stop-on-processing-error: true
severity-at-least: medium

- name: Verify scanReport output is set and valid
if: success() || failure()
run: |
REPORT="${{ steps.scan.outputs.scanReport }}"
if [ -z "$REPORT" ]; then
echo "scanReport output is empty."
exit 1
fi
if [ ! -f "$REPORT" ]; then
echo "scanReport file does not exist: $REPORT"
exit 1
fi
echo "scanReport output OK: $REPORT"

- name: Upload SARIF file
if: success() || failure() # Upload results regardless previous step fails
uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
Expand Down
3 changes: 2 additions & 1 deletion dist/index.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion dist/index.js.map

Large diffs are not rendered by default.

4 changes: 2 additions & 2 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "secure-inline-scan-action",
"version": "6.3.4",
"version": "6.3.5",
"description": "This actions performs image analysis on locally built container image and posts the result of the analysis to Sysdig Secure.",
"main": "index.js",
"scripts": {
Expand Down
1 change: 1 addition & 0 deletions src/infrastructure/sysdig/SysdigCliScanner.ts
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,7 @@ export class SysdigCliScanner implements IScanner {
// VM mode: Parse JSON output
if (retCode == 0 || retCode == 1) {
await exec.exec(`cat ./${cliScannerResult}`, undefined, catOptions);
core.setOutput("scanReport", `./${cliScannerResult}`);
}

try {
Expand Down
Loading