Commit 33194693 authored by hashworks's avatar hashworks
Browse files

Update .gitlab-ci.yml

parent 91131792
Pipeline #733 passed with stages
in 3 minutes and 24 seconds
......@@ -47,13 +47,15 @@ test:
- docker -v
- id -u http
- locale | grep -q UTF-8
- arch-audit --color never --recursive
- AUDIT="$(arch-audit --color never --recursive)"
- if [ -n "$AUDIT" ]; then
- echo '{"version":"3.0.1","scanner":{"id":"arch_audit","name":"arch-audit","vendor":{"name":"ilpianista"},"url":"https:\/\/gitlab.com\/ilpianista\/arch-audit","version":"'"$(arch-audit --version | cut -d\ -f2)"'"},"vulnerabilities":['
$(arch-audit --color never --recursive --format '{"category":"Dependency Scanning","id":"%n","name":"%n","message":"Package %n is affected by known CVEs. It is required by %r.","scanner":{"id":"arch_audit","name":"arch-audit"},"identifiers":[%c],"links":[{"name":"Package on Arch Security Tracker","url":"https://security.archlinux.org/package/%n"}]},')
'],"dependency_files":[]}'
| sed 's/\(CVE-[0-9]\{4\}-[0-9]\{1,\}\)/{"type":"cve","name":"\1","value":"\1","url":"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=\1"}/g'
| sed 's/,]\s*/]/g'
| sed 's/,\s*]/]/g'
| jq > arch-audit.json
- fi
artifacts:
reports:
dependency_scanning: arch-audit.json
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment