Remove bundle-audit ignore for a CVE we've addressed

cloudfoundry · Nov 7, 2024 · 8fd2ab3 · 8fd2ab3
1 parent 30c2636
commit 8fd2ab3
Showing 1 changed file with 7 additions and 5 deletions.
diff --git a/ci/pipeline.yml b/ci/pipeline.yml
@@ -295,12 +295,14 @@ jobs:
             args:
               - -exc
               - |
-                set -eux;
-                cd bosh-src/src;
+                set -euo pipefail
+                set -x
+                cd bosh-src/src
                 gem install bundler:"$(grep -A 1 'BUNDLED WITH' Gemfile.lock | tail -n 1 | awk '{$1=$1};1')";
-                bundle install;
-                bundle exec bundle-audit update;
-                bundle exec bundle-audit check --ignore 'CVE-2019-17383';
+                bundle install
+                bundle exec bundle-audit version
+                bundle exec bundle-audit update
+                bundle exec bundle-audit check
 
   - name: integration-postgres
     public: true