-
Notifications
You must be signed in to change notification settings - Fork 223
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Build scan shows passing when xray fails #606
Comments
Thanks for reporting this issue, @jasonmcintosh. |
@jasonmcintosh, |
@eyalbe4 Umm, did you read the command args up there?
Note on the build-scan. NO "--fail" option. Just tried this again and got similar behavior:
Ran with:
I checked the UI. Initially it showed no vulnerabilities, yet after about 15 seconds or so, I refreshed the page and then vulnerabilities DID show up. This means jfrog CLI is pasisng builds that SHOULD be failing. With NO CHANGES on artifactory or x-ray, i reran the build-scan and the 2nd run fails. |
@jasonmcintosh, |
Yeah it's incorrect - that's the FIRST run. I modified the github action to do a build scan, sleep 30 seconds, then trigger another build scan. Here's the output...
|
Here's the relevant workflow steps:
|
However, looking at x-ray it shows that the build has a number of issues. Workflow steps (with most things masked):
The text was updated successfully, but these errors were encountered: