Issue Description
When using failure-threshold: info, the hadolint-action reports outcome: failure but conclusion: success, causing GitHub Actions workflows to pass even when info-level violations are detected.
Expected Behavior
When failure-threshold: info is set and info-level violations are found, the action should:
- Report
outcome: failure
- Report
conclusion: failure
- Cause the workflow to fail
Actual Behavior
The action reports:
outcome: failure ✓conclusion: success ✗ (should be failure)- Workflow passes ✗ (should fail)
Reproduction
Workflow Configuration
- name: Lint Dockerfiles
id: hadolint
uses: hadolint/hadolint-action@v3.3.0
with:
dockerfile: "docker/app/Dockerfile"
failure-threshold: infoDockerfile (with info-level violation)
FROM php:8.2-fpm-bullseye
RUN apt-get update && \
apt-get -y install git unzip # Missing --no-install-recommends (DL3015)
Workflow Results
Conclusion: success # Should be failure
Outcome: failure # Correct
HADOLINT_RESULTS: docker/app/Dockerfile:9 DL3015 info: Avoid additional packages by specifying `--no-install-recommends`
Verification
Running hadolint directly works as expected:
$ docker run --rm -i hadolint/hadolint:v2.14.0-debian hadolint --failure-threshold info - < Dockerfile
-:9 DL3015 info: Avoid additional packages by specifying `--no-install-recommends`
$ echo $?
1 # Correct: non-zero exit code
Environment
- hadolint-action version: v3.3.0
- hadolint version: v2.14.0-debian
- GitHub Actions runner: ubuntu-latest
Additional Context
The discrepancy between outcome (failure) and conclusion (success) suggests the Docker container's exit code may not be properly propagated to the GitHub Actions step result.
Workaround
Use hadolint directly instead of the action:
- name: Lint Dockerfiles
run: |
docker run --rm -i hadolint/hadolint:v2.14.0-debian \
hadolint --failure-threshold info - < docker/app/Dockerfile
Issue Description
When using
failure-threshold: info, the hadolint-action reportsoutcome: failurebutconclusion: success, causing GitHub Actions workflows to pass even when info-level violations are detected.Expected Behavior
When
failure-threshold: infois set and info-level violations are found, the action should:outcome: failureconclusion: failureActual Behavior
The action reports:
outcome: failure✓conclusion: success✗ (should be failure)Reproduction
Workflow Configuration
Dockerfile (with info-level violation)
Workflow Results
Verification
Running hadolint directly works as expected:
Environment
Additional Context
The discrepancy between
outcome(failure) andconclusion(success) suggests the Docker container's exit code may not be properly propagated to the GitHub Actions step result.Workaround
Use hadolint directly instead of the action: