Closed JeannedArk closed 1 year ago
Hi @JeannedArk .
Notice, you are running the actions with continue-on-error: true
.
This means, that also if the step fails, GitHub actions will continue to the next step without failing.
I advise you to remove the line or set the value to false
. e.g.
name: Kubescape scanning for misconfigurations
on: [push, pull_request]
jobs:
kubescape:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: kubescape/github-action@main
continue-on-error: false # GitHub actions should fail in case kubescape exists with a none 0 code
with:
format: sarif
outputFile: results
files: "kubernetes/**.yaml"
severityThreshold: low
Hi @dwertent ,
Oh my. I totally missed that. Thank you!
Hi,
first of all thanks for the action and the great tool.
The GH action is not failing based on the
severityThreshold
. For example:I am setting up the tool and there are multiple high severity issues in my project. The according log output is:
As you can see from the logs the threshold is passed to kubescape and the last line confirms
result exceeds severity threshold
. However, the action is not failing.