fixed xxs vul

dcoder13 · web-flow · commit 7d64927cd7f8 · 2025-07-24T16:30:23.000+05:30
diff --git a/.github/workflows/actions.yml b/.github/workflows/actions.yml
@@ -51,17 +51,33 @@ jobs:
     - name: Install Dependency
       run: |
         sudo apt-get install -y wkhtmltopdf
-    - name: Generate PDF
+    - name: Generate PDFs
       run: |
-        cat ${{ github.workspace }}/sbom.json | jq '.' > ${{ github.workspace }}/sbom_pretty.json
-        echo "<html><body><pre>$(cat ${{ github.workspace }}/sbom_pretty.json)</pre></body></html>" > ${{ github.workspace }}/sbom.html
-        wkhtmltopdf --enable-local-file-access file://${{ github.workspace }}/sbom.html ${{ github.workspace }}/sbom.pdf
+        if [ -f "${{ github.workspace }}/sbom.json" ]; then
+          cat ${{ github.workspace }}/sbom.json | jq '.' > ${{ github.workspace }}/sbom_pretty.json
+          echo "<html><body><pre>$(cat ${{ github.workspace }}/sbom_pretty.json)</pre></body></html>" > ${{ github.workspace }}/sbom.html
+          # Removed --enable-local-file-access as it's just a local file
+          wkhtmltopdf "${{ github.workspace }}/sbom.html" "${{ github.workspace }}/sbom.pdf"
+        else
+          echo "sbom.json not found, skipping SBOM PDF generation."
+        fi
+    
+        if [ -f "${{ github.workspace }}/sbom.vdr.json" ]; then
+          cat ${{ github.workspace }}/sbom.vdr.json | jq '.' > ${{ github.workspace }}/sbomv_pretty.json
+          echo "<html><body><pre>$(cat ${{ github.workspace }}/sbomv_pretty.json)</pre></body></html>" > ${{ github.workspace }}/sbomv.html
+          wkhtmltopdf "${{ github.workspace }}/sbomv.html" "${{ github.workspace }}/sbomv.pdf"
+        else
+          echo "sbom.vdr.json not found, skipping VDR PDF generation."
+          touch ${{ github.workspace }}/sbomv.pdf
+        fi
+    
+        if [ -f "${{ github.workspace }}/vulRep.html" ]; then
+          wkhtmltopdf --disable-javascript --enable-local-file-access "${{ github.workspace }}/vulRep.html" "${{ github.workspace }}/vulRep.pdf"
+        else
+          echo "vulRep.html not found, skipping HTML report PDF generation."
+          touch ${{ github.workspace }}/vulRep.pdf
+        fi
 
-        cat ${{ github.workspace }}/sbom.vdr.json | jq '.' > ${{ github.workspace }}/sbomv_pretty.json
-        echo "<html><body><pre>$(cat ${{ github.workspace }}/sbomv_pretty.json)</pre></body></html>" > ${{ github.workspace }}/sbomv.html
-        wkhtmltopdf --enable-local-file-access file://${{ github.workspace }}/sbomv.html ${{ github.workspace }}/sbomv.pdf
-
-        wkhtmltopdf --enable-local-file-access file://${{ github.workspace }}/vulRep.html ${{ github.workspace }}/vulRep.pdf
     # - name: Mail Reports
     #   uses: dawidd6/action-send-mail@v3
     #   with:
