cafuego
commented
5 years ago I've created https://github.com/optiopay/klar/pull/118 - which I think is the only change needed for this.
Open cafuego opened 5 years ago
cafuego
commented
5 years ago I've created https://github.com/optiopay/klar/pull/118 - which I think is the only change needed for this.
It's not currently possible to distinguish between an error (unable to pull an image) and finding a vulnerability based on the exit status of the klar process.
It would be lovely if it was possible to do this. For example, exit with a status of 1 if there was an error and a status of 2 if vulnerabilities were found.
This would help to notify the correct people in our organisation when a klar scan fails.