Debug the OSV-scanner workflow failure

Signed-off-by: tdruez <[email protected]>

Author: tdruez

.github/workflows/sca-integration-osv-scanner.yml

@@ -10,6 +10,7 @@ name: Generate SBOM with OSV-Scanner and load into ScanCode.io
 
 on:
   workflow_dispatch:
+  pull_request:
   schedule:
     # Run once a week (every 7 days) at 00:00 UTC on Sunday
     - cron: "0 0 * * 0"
@@ -19,6 +20,9 @@ permissions:
 
 env:
   IMAGE_REFERENCE: "python:3.13.0-slim"
+  EXPECTED_PACKAGE_COUNT: 100
+  EXPECTED_VULNERABLE_PACKAGE_COUNT: 0
+  EXPECTED_DEPENDENCY_COUNT: 100
 
 jobs:
   generate-and-load-sbom:
@@ -56,4 +60,4 @@ jobs:
       - name: Verify SBOM Analysis Results in ScanCode.io
         shell: bash
         run: |
-          scanpipe shell --command "from scanpipe.models import DiscoveredPackage, DiscoveredDependency; package_manager = DiscoveredPackage.objects; assert package_manager.count() >= 100; assert package_manager.vulnerable().count() == 0; assert DiscoveredDependency.objects.count() >= 100"
+          scanpipe shell --command "from scanpipe.models import DiscoveredPackage, DiscoveredDependency; package_manager = DiscoveredPackage.objects; assert package_manager.count() >= int('${{ env.EXPECTED_PACKAGE_COUNT }}'), str(package_manager.count()); assert package_manager.vulnerable().count() >= int('${{ env.EXPECTED_VULNERABLE_PACKAGE_COUNT }}'), str(package_manager.vulnerable().count()); assert DiscoveredDependency.objects.count() >= int('${{ env.EXPECTED_DEPENDENCY_COUNT }}'), str(DiscoveredDependency.objects.count())"