Skip to content

Commit 259fc41

Browse files
strtgbbMyroTk
strtgbb
authored and
MyroTk
committed
update grype path
1 parent a1c4e5e commit 259fc41

File tree

2 files changed

+27
-7
lines changed

2 files changed

+27
-7
lines changed

.github/actions/create_workflow_report/create_workflow_report.py

Lines changed: 19 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -386,7 +386,7 @@ def get_cached_job(job_name: str) -> dict:
386386
return workflow_config["cache_jobs"].get(job_name, {})
387387

388388

389-
def get_cves(pr_number, commit_sha):
389+
def get_cves(pr_number, commit_sha, branch):
390390
"""
391391
Fetch Grype results from S3.
392392
@@ -395,19 +395,33 @@ def get_cves(pr_number, commit_sha):
395395
s3_client = boto3.client("s3", endpoint_url=os.getenv("S3_URL"))
396396
prefixes_to_check = set()
397397

398+
def format_prefix(pr_number, commit_sha, branch):
399+
if pr_number == 0:
400+
return f"REFs/{branch}/{commit_sha}/grype/"
401+
else:
402+
return f"PRs/{pr_number}/{commit_sha}/grype/"
403+
398404
cached_server_job = get_cached_job("Docker server image")
399405
if cached_server_job:
400406
prefixes_to_check.add(
401-
f"{cached_server_job['pr_number']}/{cached_server_job['sha']}/grype/"
407+
format_prefix(
408+
cached_server_job["pr_number"],
409+
cached_server_job["sha"],
410+
cached_server_job["branch"],
411+
)
402412
)
403413
cached_keeper_job = get_cached_job("Docker keeper image")
404414
if cached_keeper_job:
405415
prefixes_to_check.add(
406-
f"{cached_keeper_job['pr_number']}/{cached_keeper_job['sha']}/grype/"
416+
format_prefix(
417+
cached_keeper_job["pr_number"],
418+
cached_keeper_job["sha"],
419+
cached_keeper_job["branch"],
420+
)
407421
)
408422

409423
if not prefixes_to_check:
410-
prefixes_to_check = {f"{pr_number}/{commit_sha}/grype/"}
424+
prefixes_to_check = {format_prefix(pr_number, commit_sha, branch)}
411425

412426
grype_result_dirs = []
413427
for s3_prefix in prefixes_to_check:
@@ -690,7 +704,7 @@ def create_workflow_report(
690704
"checks_errors": get_checks_errors(db_client, commit_sha, branch_name),
691705
"regression_fails": get_regression_fails(db_client, actions_run_url),
692706
"docker_images_cves": (
693-
[] if not check_cves else get_cves(pr_number, commit_sha)
707+
[] if not check_cves else get_cves(pr_number, commit_sha, branch_name)
694708
),
695709
}
696710

.github/grype/transform_and_upload_results_s3.sh

Lines changed: 8 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,13 @@
11
DOCKER_IMAGE=$(echo "$DOCKER_IMAGE" | sed 's/[\/:]/_/g')
22

3-
S3_PATH="s3://$S3_BUCKET/$PR_NUMBER/$COMMIT_SHA/grype/$DOCKER_IMAGE"
4-
HTTPS_S3_PATH="https://s3.amazonaws.com/$S3_BUCKET/$PR_NUMBER/$COMMIT_SHA/grype/$DOCKER_IMAGE"
3+
if [ "$PR_NUMBER" -eq 0 ]; then
4+
PREFIX="REFs/$BRANCH/$COMMIT_SHA"
5+
else
6+
PREFIX="PRs/$PR_NUMBER/$COMMIT_SHA"
7+
fi
8+
9+
S3_PATH="s3://$S3_BUCKET/$PREFIX/grype/$DOCKER_IMAGE"
10+
HTTPS_S3_PATH="https://s3.amazonaws.com/$S3_BUCKET/$PREFIX/grype/$DOCKER_IMAGE"
511
echo "https_s3_path=$HTTPS_S3_PATH" >> $GITHUB_OUTPUT
612

713
tfs --no-colors transform nice raw.log nice.log.txt

0 commit comments

Comments
 (0)