ci: fix harbor-ctl scan/vulns command syntax

2026-01-19 22:49:18 +01:00
parent c81988fc1a
commit 9302939890
1 changed files with 4 additions and 4 deletions
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -394,13 +394,13 @@ jobs:
          echo "Triggering vulnerability scan for standard image..."
          python harbor-ctl.py --url https://harbor.mymx.me \
            -u "$HARBOR_USER" -p "$HARBOR_PASS" \
-            scan library flaskpaste:latest --wait --timeout 180
+            scan library flaskpaste -d latest --wait --timeout 180

          # Scan slim image
          echo "Triggering vulnerability scan for slim image..."
          python harbor-ctl.py --url https://harbor.mymx.me \
            -u "$HARBOR_USER" -p "$HARBOR_PASS" \
-            scan library flaskpaste:slim --wait --timeout 180
+            scan library flaskpaste -d slim --wait --timeout 180

      - name: Check for critical vulnerabilities
        env:
@@ -415,11 +415,11 @@ jobs:

            python harbor-ctl.py --url https://harbor.mymx.me \
              -u "$HARBOR_USER" -p "$HARBOR_PASS" \
-              vulns library flaskpaste:${tag} -s critical -l 100 > /tmp/critical-${tag}.txt 2>&1 || true
+              vulns library flaskpaste -d ${tag} -s critical -l 100 > /tmp/critical-${tag}.txt 2>&1 || true

            python harbor-ctl.py --url https://harbor.mymx.me \
              -u "$HARBOR_USER" -p "$HARBOR_PASS" \
-              vulns library flaskpaste:${tag} -s high -l 100 > /tmp/high-${tag}.txt 2>&1 || true
+              vulns library flaskpaste -d ${tag} -s high -l 100 > /tmp/high-${tag}.txt 2>&1 || true

            CRITICAL=$(grep -v "N/A *$" /tmp/critical-${tag}.txt | grep -c "^CVE\|^GHSA" || echo 0)
            HIGH=$(grep -v "N/A *$" /tmp/high-${tag}.txt | grep -c "^CVE\|^GHSA" || echo 0)