From f22fca36ee021caedc8d6ee04a5f1e3e50f6c040 Mon Sep 17 00:00:00 2001 From: cx-Margarita-LevitM Date: Thu, 13 Nov 2025 15:06:35 +0200 Subject: [PATCH] Resolve AST-116522 by replacing read with readarray for robust argument parsing --- GitlabCICD/v1/CheckmarxCLI.gitlab-ci.yml | 2 +- GitlabCICD/v2/CheckmarxCLI.gitlab-ci.yml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/GitlabCICD/v1/CheckmarxCLI.gitlab-ci.yml b/GitlabCICD/v1/CheckmarxCLI.gitlab-ci.yml index 54750e4..c8cfeca 100644 --- a/GitlabCICD/v1/CheckmarxCLI.gitlab-ci.yml +++ b/GitlabCICD/v1/CheckmarxCLI.gitlab-ci.yml @@ -23,7 +23,7 @@ checkmarx-scan: name: checkmarx/${CHECKMARX_DOCKER_IMAGE} entrypoint: [''] script: - - read -r -a args <<< "$CX_ADDITIONAL_PARAMS" + - readarray -t args < <(xargs -n1 <<< "$CX_ADDITIONAL_PARAMS") - >- /app/bin/cx scan create diff --git a/GitlabCICD/v2/CheckmarxCLI.gitlab-ci.yml b/GitlabCICD/v2/CheckmarxCLI.gitlab-ci.yml index 1c25a87..f4f4024 100644 --- a/GitlabCICD/v2/CheckmarxCLI.gitlab-ci.yml +++ b/GitlabCICD/v2/CheckmarxCLI.gitlab-ci.yml @@ -49,7 +49,7 @@ mr-checkmarx-scan: name: checkmarx/${CHECKMARX_DOCKER_IMAGE} entrypoint: [''] script: - - read -r -a args <<< "$CX_ADDITIONAL_PARAMS" + - readarray -t args < <(xargs -n1 <<< "$CX_ADDITIONAL_PARAMS") - output_file=./output.log - > if [ -n "$CX_LINK_SERVER_HOST" ]; then @@ -89,7 +89,7 @@ mr-checkmarx-scan-security-dashboard: name: checkmarx/${CHECKMARX_DOCKER_IMAGE} entrypoint: [''] script: - - read -r -a args <<< "$CX_ADDITIONAL_PARAMS" + - readarray -t args < <(xargs -n1 <<< "$CX_ADDITIONAL_PARAMS") - output_file=./output.log - > if [ -n "$CX_LINK_SERVER_HOST" ]; then @@ -134,7 +134,7 @@ checkmarx-scan-security-dashboard: name: checkmarx/${CHECKMARX_DOCKER_IMAGE} entrypoint: [''] script: - - read -r -a args <<< "$CX_ADDITIONAL_PARAMS" + - readarray -t args < <(xargs -n1 <<< "$CX_ADDITIONAL_PARAMS") - >- /app/bin/cx scan create