Skip to content

Commit

Permalink
ci/live: test for sid 1 existence, not in last position
Browse files Browse the repository at this point in the history
  • Loading branch information
@catenacyber
catenacyber committed Oct 15, 2024
1 parent 378f678 commit 3364ed9
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/live/afp-ids.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -65,7 +65,7 @@ if [ $STATSCHECK = false ]; then
echo "ERROR no packets captured"
RES=1
fi
SID1CHECK=$(jq -c 'select(.event_type == "alert")' ./eve.json | tail -n1 | jq '.alert.signature_id == 1')
SID1CHECK=$(jq -c 'select(.alert.signature_id == 1)' ./eve.json | wc -l)
if [ $SID1CHECK = false ]; then
echo "ERROR no alerts for sid 1"
RES=1
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/live/pcap.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,7 @@ if [ $STATSCHECK = false ]; then
echo "ERROR no packets captured"
RES=1
fi
SID1CHECK=$(jq -c 'select(.event_type == "alert")' ./eve.json | tail -n1 | jq '.alert.signature_id == 1')
SID1CHECK=$(jq -c 'select(.alert.signature_id == 1)' ./eve.json | wc -l)
if [ $SID1CHECK = false ]; then
echo "ERROR no alerts for sid 1"
RES=1
Expand Down

0 comments on commit 3364ed9

Please sign in to comment.