From 71741a6304d37a04236a741e5de2db404f83affb Mon Sep 17 00:00:00 2001
From: Douglas Barahona <douglas.barahona@get10up.com>
Date: Fri, 11 Oct 2024 00:48:48 -0600
Subject: [PATCH] Fix wordpress path for themes and plugins WPCLI vuln scan
 command

---
 image/entrypoint.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/image/entrypoint.sh b/image/entrypoint.sh
index 17f5f95..07af950 100755
--- a/image/entrypoint.sh
+++ b/image/entrypoint.sh
@@ -137,7 +137,7 @@ function wp_themes_vuln_scan {
   if [ -z "${THEMES_SCAN_OUTPUT}" ]; then
     shell_green "No theme vulnerabilities found"
   else
-    wp --allow-root vuln theme-status --reference --format=yaml
+    wp --allow-root --path=wordpress/ vuln theme-status --reference --format=yaml
     shell_red "**** THEME VULNERABILITIES FOUND!!! **** PLEASE SEE REPORT ABOVE ****"
     # If no_fail input is set to true, exit without failure even if there are errors
     if [ "${INPUT_NO_FAIL}" = "true" ]; then
@@ -155,7 +155,7 @@ function wp_plugins_vuln_scan {
   if [ -z "${PLUGINS_SCAN_OUTPUT}" ]; then
     shell_green "No plugin vulnerabilities found"
   else
-    wp --allow-root vuln plugin-status --reference --format=yaml
+    wp --allow-root --path=wordpress/ vuln plugin-status --reference --format=yaml
     shell_red "**** PLUGIN VULNERABILITIES FOUND!!! **** PLEASE SEE REPORT ABOVE ****"
     # If no_fail input is set to true, exit without failure even if there are errors
     if [ "${INPUT_NO_FAIL}" = "true" ]; then