Infrastructure/zot
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2024-12-30 22:34:13 -05:00
Code Issues Activity

fix(cve): blackbox cve tests now verifying actual cves (#1300)

Browse source 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
This commit is contained in:
Lisca Ana-Roberta 2023-03-23 20:11:29 +02:00 committed by GitHub
parent 91e14bee00
commit 5c76c11bb2
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
test/blackbox/cve.bats
View file

@ -64,4 +64,14 @@ function teardown_file() {
[ $(echo "${lines[-1]}" | jq '.tags[]') = '"1.20"' ]
run ${ZLI_PATH} cve ${REGISTRY_NAME} -I golang:1.20
[ "$status" -eq 0 ]
found=0
for i in "${lines[@]}"
do
if [[ "$i" = *"CVE-2021-29921 CRITICAL python-ipaddress: Improper input validation o..."* ]]; then
found=1
fi
done
[ "$found" -eq 1 ]
}