build docker script changes

0xPolygon · Jan 21, 2024 · 208d4da · 208d4da
1 parent 3fc3ef3
commit 208d4da
Showing 1 changed file with 7 additions and 2 deletions.
diff --git a/.github/workflows/build-docker.yml b/.github/workflows/build-docker.yml
@@ -75,8 +75,13 @@ jobs:
                           "$(cat ./scan_id.txt)" \
                           --format="value(vulnerability.effectiveSeverity)")
           # Check if CRITICAL vulnerability is found
-          echo "$severity"
-          echo "$severity" | grep -c "CRITICAL"
+          if [ $(echo "$severity" | grep -c "CRITICAL") -gt 5 ]; then
+              echo "Failed vulnerability check for CRITICAL level"
+              exit 1
+          else
+              echo "No CRITICAL vulnerability found. Congratulations."
+              exit 0
+          fi
 
       - name: Sign the docker image
         run: |-