From bebf93688a98c93ad539c02536d57a9bfc2888c0 Mon Sep 17 00:00:00 2001 From: Jean-Paul Calderone <exarkun@twistedmatrix.com> Date: Mon, 22 Mar 2021 14:20:24 -0400 Subject: [PATCH] Allow the vulnix pipeline to fail but propagate the code --- ci-tools/vulnerability-scan | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/ci-tools/vulnerability-scan b/ci-tools/vulnerability-scan index c252a303..a2b2d6c9 100755 --- a/ci-tools/vulnerability-scan +++ b/ci-tools/vulnerability-scan @@ -35,4 +35,5 @@ fi # GitLab to allow this by setting `allow_failure` to true in the GitLab CI # config. set +eo pipefail -nix-shell -p vulnix --run 'vulnix ./scan-target/' | tee "$OUTPUT" +status=$(nix-shell -p vulnix --run 'vulnix ./scan-target/' | tee "$OUTPUT") +exit $status -- GitLab