Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Scanning docker images and setting watches not consider the ignored rules and fail build on github #1754

Open
amitblumshtien opened this issue Nov 13, 2022 · 1 comment
Open

Scanning docker images and setting watches not consider the ignored rules and fail build on github #1754

amitblumshtien opened this issue Nov 13, 2022 · 1 comment
Labels
question Further information is requested

Comments

@amitblumshtien
Copy link

Hey I am new to jfrog CLI,
I am trying to scan the docker image using the CLI and set my defined watch as an argument.
I ignored all the violations and still my build is failing and the table output is the ignored rules.
What I am doing wrong here?
or should I use another way to scan the images?
I used to work with Jenkins and the x-ray plugin and it works like a charm, now I am trying it with GitHub actions and Jfrog CLI.
@amitblumshtien amitblumshtien added the question Further information is requested label Nov 13, 2022
@fbartnitzek
Copy link

The problem still persists:
On a docker build with 2 ignored vulnerabilities in XRay, the XRay Status in the jfrog UI is a green done while the jf rt build-scan --fail=true command fails with the (not) ignored vulnerabilities.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@fbartnitzek @amitblumshtien