From 208d4da3ee74fca8da59308c6b2545587addf01f Mon Sep 17 00:00:00 2001
From: Jesse Lee <gatsby1118@gmail.com>
Date: Sun, 21 Jan 2024 10:22:54 -0500
Subject: [PATCH] build docker script changes

---
 .github/workflows/build-docker.yml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/build-docker.yml b/.github/workflows/build-docker.yml
index 73bb8cda..532b5cc6 100644
--- a/.github/workflows/build-docker.yml
+++ b/.github/workflows/build-docker.yml
@@ -75,8 +75,13 @@ jobs:
                           "$(cat ./scan_id.txt)" \
                           --format="value(vulnerability.effectiveSeverity)")
           # Check if CRITICAL vulnerability is found
-          echo "$severity"
-          echo "$severity" | grep -c "CRITICAL"
+          if [ $(echo "$severity" | grep -c "CRITICAL") -gt 5 ]; then
+              echo "Failed vulnerability check for CRITICAL level"
+              exit 1
+          else
+              echo "No CRITICAL vulnerability found. Congratulations."
+              exit 0
+          fi
 
       - name: Sign the docker image
         run: |-