Make vulnerabilities scanner less strict #669

dnestoro · 2025-09-05T14:35:54Z

What does this PR do?

Make vulnerabilities scanner less strict in order to accept slightly vulnerable images that are less vulnerable than the currently existing allowed images.

Fixes: #540

tests/tck-build-logic/src/main/java/org/graalvm/internal/tck/GrypeTask.java

dnestoro force-pushed the dnestoro/make-vulnerability-scanner-less-strict branch 5 times, most recently from 368d448 to a389f25 Compare September 10, 2025 09:22

dnestoro marked this pull request as ready for review September 10, 2025 09:44

dnestoro requested a review from a team as a code owner September 10, 2025 09:44

dnestoro requested review from vjovanov, matteoldani and matneu and removed request for vjovanov September 10, 2025 09:44

dnestoro self-assigned this Sep 11, 2025

matteoldani reviewed Sep 18, 2025

View reviewed changes

tests/tck-build-logic/src/main/java/org/graalvm/internal/tck/GrypeTask.java Show resolved Hide resolved

tests/tck-build-logic/src/main/java/org/graalvm/internal/tck/GrypeTask.java Show resolved Hide resolved

dnestoro added 3 commits September 23, 2025 14:28

Make vulnerabilities scanner less strict

b2ef772

Only accept images with less critical and less high vulnerabilities

4dd579f

Parse grype output as json

efa2077

dnestoro force-pushed the dnestoro/make-vulnerability-scanner-less-strict branch from a389f25 to efa2077 Compare September 23, 2025 13:24

matteoldani approved these changes Sep 24, 2025

View reviewed changes

dnestoro merged commit e52f7e4 into master Sep 26, 2025
249 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Make vulnerabilities scanner less strict #669

Make vulnerabilities scanner less strict #669

Uh oh!

dnestoro commented Sep 5, 2025 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Make vulnerabilities scanner less strict #669

Make vulnerabilities scanner less strict #669

Uh oh!

Conversation

dnestoro commented Sep 5, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

What does this PR do?

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

dnestoro commented Sep 5, 2025 •

edited

Loading