From bebf93688a98c93ad539c02536d57a9bfc2888c0 Mon Sep 17 00:00:00 2001
From: Jean-Paul Calderone <exarkun@twistedmatrix.com>
Date: Mon, 22 Mar 2021 14:20:24 -0400
Subject: [PATCH] Allow the vulnix pipeline to fail but propagate the code

---
 ci-tools/vulnerability-scan | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ci-tools/vulnerability-scan b/ci-tools/vulnerability-scan
index c252a303..a2b2d6c9 100755
--- a/ci-tools/vulnerability-scan
+++ b/ci-tools/vulnerability-scan
@@ -35,4 +35,5 @@ fi
 # GitLab to allow this by setting `allow_failure` to true in the GitLab CI
 # config.
 set +eo pipefail
-nix-shell -p vulnix --run 'vulnix ./scan-target/' | tee "$OUTPUT"
+status=$(nix-shell -p vulnix --run 'vulnix ./scan-target/' | tee "$OUTPUT")
+exit $status
-- 
GitLab