Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JFrog plugin not marking build/stage/step as unstable based on jfrog CLI Scan result #20

Open
Ceddaerrix opened this issue Jan 23, 2023 · 1 comment
Open

JFrog plugin not marking build/stage/step as unstable based on jfrog CLI Scan result #20

Ceddaerrix opened this issue Jan 23, 2023 · 1 comment
Assignees
@yahavi
Labels
bug Something isn't working

Comments

@Ceddaerrix
Copy link

Describe the bug

I have a Jenkins pipeline building a maven project and then executing the following stage:

stage('Apply JFrog X-Ray Scanning') {
tools { jfrog 'jfrog-cli' }
steps {
	script {					
		// Show the installed version of JFrog CLI.
		jf '-v'
		
		// Show the configured JFrog Platform instances.
		jf 'c show'
		
		// Ping Artifactory.
		jf 'rt ping'

		// Start local X-Ray scan
		jf "s ${WORKSPACE}/**/my-artifact.tar.gz"
	}
}

Despite the fact that the scan summary displays every level of severities (from unknown to critical) in my case, the step and the stage are still marked as successful by Jenkins. (I have also tried using the --fail=true option into the command).
See attachments...

jenkins-pipeline-jfrog-cli-xray-scan
jfrog-cli-xray-scan-1
jfrog-cli-xray-scan-2

Current behavior

jf "s ${WORKSPACE}/**/my-artifact.tar.gz" does not mark the build/stage/step as unstable.

Reproduction steps

No response

Expected behavior

jf "s ${WORKSPACE}/**/my-artifact.tar.gz" to mark the build/stage/step as unstable (at least if an occurence of a medium or higher severity).

JFrog plugin version

1.0.5

JFrog CLI version

2.32.0

Operating system type and version

RHEL 7.7

JFrog Artifactory version

No response

JFrog Xray version

No response
@Ceddaerrix Ceddaerrix added the bug Something isn't working label Jan 23, 2023
@Ceddaerrix Ceddaerrix changed the title JFrog plugin not marking stage as unstable JFrog plugin not marking build/stage/step as unstable Jan 23, 2023
@Ceddaerrix Ceddaerrix changed the title JFrog plugin not marking build/stage/step as unstable JFrog plugin not marking build/stage/step as unstable based on JF Scan result Jan 23, 2023
@Ceddaerrix Ceddaerrix changed the title JFrog plugin not marking build/stage/step as unstable based on JF Scan result JFrog plugin not marking build/stage/step as unstable based on jfrog CLI Scan result Jan 23, 2023
@yahavi
Copy link
Member

yahavi commented Mar 7, 2023

Thanks for reporting this issue, @Ceddaerrix!
We'll look into it soon.

@yahavi yahavi self-assigned this Mar 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@yahavi yahavi

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@yahavi @Ceddaerrix