fix: add an empty line between warning and final message

Signed-off-by: Junjie Gao <[email protected]>
notaryproject · Feb 11, 2025 · 0485b7f · 0485b7f
1 parent e33dc04
commit 0485b7f
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/cmd/notation/internal/display/metadata/text/verify.go b/cmd/notation/internal/display/metadata/text/verify.go
@@ -32,6 +32,7 @@ type VerifyHandler struct {
 
 	outcome         *notation.VerificationOutcome
 	digestReference string
+	hasWarning      bool
 }
 
 // NewVerifyHandler creates a VerifyHandler to render verification results in
@@ -45,6 +46,7 @@ func NewVerifyHandler(printer *output.Printer) *VerifyHandler {
 // OnResolvingTagReference outputs the tag reference warning.
 func (h *VerifyHandler) OnResolvingTagReference(reference string) {
 	h.printer.PrintErrorf("Warning: Always verify the artifact using digest(@sha256:...) rather than a tag(:%s) because resolved digest may not point to the same signed artifact, as tags are mutable.\n", reference)
+	h.hasWarning = true
 }
 
 // OnVerifySucceeded sets the successful verification result for the handler.
@@ -64,8 +66,13 @@ func (h *VerifyHandler) Render() error {
 			// at this point, the verification action has to be logged and
 			// it's failed
 			h.printer.PrintErrorf("Warning: %v was set to %q and failed with error: %v\n", result.Type, result.Action, result.Error)
+			h.hasWarning = true
 		}
 	}
+	if h.hasWarning {
+		// print a newline to separate the warning from the final message
+		h.printer.Println()
+	}
 	if reflect.DeepEqual(h.outcome.VerificationLevel, trustpolicy.LevelSkip) {
 		h.printer.Println("Trust policy is configured to skip signature verification for", h.digestReference)
 	} else {