[CVE Scan] Fix regexp for CVE_Scan for release tags (#54)

penul4ik · Maxim Konovalenko · web-flow · commit 9112c9738af2 · 2025-11-01T15:49:21.000+03:00
* add echo

Signed-off-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;

* add echo

Signed-off-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;

* fix regexp for release tags

Signed-off-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;

* fix regexp for release tags

Signed-off-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;

---------

Signed-off-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;
Co-authored-by: Maxim Konovalenko &lt;maxim.konovalenko@flant.com&gt;
diff --git a/templates/CVE_Scan.gitlab-ci.yml b/templates/CVE_Scan.gitlab-ci.yml
@@ -84,7 +84,7 @@
       fi
       echo "Getting tags to scan"
       # Check if provided tag is a semver minor, and if so - get image from prod registry
-      if echo "${TAG}" | grep -q "[0-9]*\.[0-9]*"; then
+      if echo "${TAG}" | grep -qE "[0-9]+\.[0-9]+"; then
         module_tags=($(crane ls "${PROD_REGISTRY_MODULE_BASEDIR}/${MODULE_NAME}" | grep "^v${TAG}\.[0-9]*" | sort -V -r | head -n 1))
       fi
       if [ "${SCAN_SEVERAL_LASTEST_RELEASES}" == "true" ]; then
