ci: fix vuln count parsing in harbor scan

2026-01-19 22:54:42 +01:00
parent 9302939890
commit 89b019d7df
1 changed files with 2 additions and 2 deletions
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -421,8 +421,8 @@ jobs:
              -u "$HARBOR_USER" -p "$HARBOR_PASS" \
              vulns library flaskpaste -d ${tag} -s high -l 100 > /tmp/high-${tag}.txt 2>&1 || true

-            CRITICAL=$(grep -v "N/A *$" /tmp/critical-${tag}.txt | grep -c "^CVE\|^GHSA" || echo 0)
-            HIGH=$(grep -v "N/A *$" /tmp/high-${tag}.txt | grep -c "^CVE\|^GHSA" || echo 0)
+            CRITICAL=$(grep -v "N/A *$" /tmp/critical-${tag}.txt 2>/dev/null | grep -c "^CVE\|^GHSA" 2>/dev/null) || CRITICAL=0
+            HIGH=$(grep -v "N/A *$" /tmp/high-${tag}.txt 2>/dev/null | grep -c "^CVE\|^GHSA" 2>/dev/null) || HIGH=0

            echo "  :${tag} - Critical fixable: $CRITICAL, High fixable: $HIGH"