Mercurial > p > roundup > code

changeset 7939:383560895329

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
test: update trivy options ignore-unifixed and exit-code 1 From article: https://pythonspeed.com/articles/docker-python-security-scan/
author John Rouillard <rouilj@ieee.org>
date Thu, 09 May 2024 21:56:02 -0400
parents ce5a554b2f88
children 85c47edfc383
files RELEASE.txt
diffstat 1 files changed, 2 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/RELEASE.txt	Mon May 06 01:33:49 2024 -0400
+++ b/RELEASE.txt	Thu May 09 21:56:02 2024 -0400
@@ -238,7 +238,8 @@
 
         docker run -it --rm --volume \
 	/var/run/docker.sock:/var/run/docker.sock \
-          --name trivy aquasec/trivy:latest image rounduptracker/roundup:2.2.0
+          --name trivy aquasec/trivy:latest image --exit-code 1 \
+          --ignore-unfixed rounduptracker/roundup:2.2.0
 
      You may need to explicitly update/refresh the scanners with:
      "docker pull anchore/grype:latest" and similarly for
Roundup Issue Tracker: http://roundup-tracker.org/