Update module.yaml

stlef14 · web-flow · commit 9bbd2a9c6526 · 2025-10-23T23:11:51.000-04:00
Signed-off-by: stlef14 &lt;stlef14@users.noreply.github.com&gt;
diff --git a/scanners/boostsecurityio/trivy-sbom/module.yaml b/scanners/boostsecurityio/trivy-sbom/module.yaml
@@ -34,8 +34,29 @@ steps:
           TEMP_SOLN_FILE="temp"
           SCAN_TARGET=$TEMP_SOLN_FILE".sln"
           
-          # Find all .csproj files once (search up to depth 5 for performance)
-          PROJECT_LIST=$(find . -maxdepth 5 -name "*.csproj" -type f)
+          # Find all .csproj files (excluding test directories)
+          ALL_PROJECTS=$(find . -maxdepth 5 -name "*.csproj" -type f)
+          
+          if [ -z "$ALL_PROJECTS" ]; then
+              echo "{}"
+              exit 0
+          fi
+          
+          # Test each project - only include ones that restore successfully
+          # This filters out template projects or any broken projects
+          VALID_PROJECTS_FILE=$(mktemp)
+          
+          while IFS= read -r proj; do
+              if [ -n "$proj" ] && dotnet restore "$proj" --ignore-failed-sources --no-cache >/dev/null 2>&1; then
+                  echo "$proj" >> "$VALID_PROJECTS_FILE"
+              fi
+          done <<EOF
+          $ALL_PROJECTS
+          EOF
+          
+          PROJECT_LIST=$(cat "$VALID_PROJECTS_FILE")
+          rm -f "$VALID_PROJECTS_FILE"
+
           
           if [ -z "$PROJECT_LIST" ]; then
               echo "No projects found."
