Running with gitlab-runner 13.8.0 (775dd39d)
  on global-shared-gitlab-runner-5c65bf4fbc-r4d8h xjiuspDK
section_start:1621866940:resolve_secrets
Resolving secrets
section_end:1621866940:resolve_secrets
section_start:1621866940:prepare_executor
Preparing the "kubernetes" executor
Using Kubernetes namespace: gitlab-runner
WARNING: Pulling GitLab Runner helper image from Docker Hub. Helper image is migrating to registry.gitlab.com, for more information see https://docs.gitlab.com/runner/configuration/advanced-configuration.html#migrating-helper-image-to-registrygitlabcom
Using Kubernetes executor with image registry1.dso.mil/ironbank/anchore/cli/cli:0.9.1 ...
section_end:1621866940:prepare_executor
section_start:1621866940:prepare_script
Preparing environment
Waiting for pod gitlab-runner/runner-xjiuspdk-project-3812-concurrent-06j5qb to be running, status is Pending
Running on runner-xjiuspdk-project-3812-concurrent-06j5qb via global-shared-gitlab-runner-5c65bf4fbc-r4d8h...
section_end:1621866943:prepare_script
section_start:1621866943:get_sources
Getting source from Git repository
Fetching changes with git depth set to 50...
Initialized empty Git repository in /builds/dsop/aqua-security/enterprise/scanner-5.3/.git/
Created fresh repository.
Checking out e34df490 as development...

Skipping Git submodules setup
section_end:1621866943:get_sources
section_start:1621866943:download_artifacts
Downloading artifacts
Downloading artifacts for build (3553592)...
Downloading artifacts from coordinator... ok        id=3553592 responseStatus=200 OK token=PLmuVtjH
Downloading artifacts for load scripts (3553585)...
Downloading artifacts from coordinator... ok        id=3553585 responseStatus=200 OK token=dFhFJcRa
section_end:1621866944:download_artifacts
section_start:1621866944:step_script
Executing "step_script" stage of the job script
$ python3 "${PIPELINE_REPO_DIR}/stages/scanning/anchore/anchore_scan.py"
INFO: Log level set to info
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image add --noautosubscribe --dockerfile ./Dockerfile --force registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3:275368
INFO: registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3:275368 added to Anchore
INFO: [
    {
        "analysis_status": "not_analyzed",
        "analyzed_at": null,
        "annotations": {},
        "created_at": "2021-05-24T14:35:45Z",
        "imageDigest": "sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3",
        "image_content": {
            "metadata": {
                "arch": null,
                "distro": null,
                "distro_version": null,
                "dockerfile_mode": "Actual",
                "image_size": null,
                "layer_count": null
            }
        },
        "image_detail": [
            {
                "created_at": "2021-05-24T14:35:45Z",
                "digest": "sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3",
                "dockerfile": "IyBUaGVzZSB0aHJlZSBBUkdzIG11c3QgcG9pbnQgdG8gYW4gSXJvbiBCYW5rIGltYWdlIC0gdGhlIEJBU0VfUkVHSVNUUlkgc2hvdWxkIGFsd2F5cyBiZSB3aGF0IGlzIHdyaXR0ZW4gYmVsb3c7IHBsZWFzZSB1c2UgXAojICctLWJ1aWxkLWFyZycgd2hlbiBidWlsZGluZyBsb2NhbGx5IHRvIHJlcGxhY2UgdGhlc2UgdmFsdWVzCiMgSWYgeW91ciBjb250YWluZXIgaXMgbm90IGJhc2VkIG9uIGVpdGhlciB0aGUgdWJpNy91Ymk4IElyb24gQmFuayBpbWFnZXMsIHRoZW4gaXQgc2hvdWxkIGJlIGJhc2VkIG9uIGEgZGlmZmVyZW50IElyb24gQmFuayBpbWFnZQojIE5vdGUgdGhhdCB5b3Ugd2lsbCBub3QgYmUgYWJsZSB0byBwdWxsIGNvbnRhaW5lcnMgZnJvbSBuZXh1cy1kb2NrZXItc2VjdXJlLmxldmVsdXAtZGV2LmlvIGludG8geW91ciBsb2NhbCBkZXYgbWFjaGluZQpBUkcgQkFTRV9SRUdJU1RSWT1yZWdpc3RyeTEuZHNvcC5pbwpBUkcgQkFTRV9JTUFHRT1pcm9uYmFuay9yZWRoYXQvdWJpL3ViaTgtbWluaW1hbApBUkcgQkFTRV9UQUc9OC40CgojIEZST00gc3RhdGVtZW50IG11c3QgcmVmZXJlbmNlIHRoZSBiYXNlIGltYWdlIHVzaW5nIHRoZSB0aHJlZSBBUkdzIGVzdGFibGlzaGVkCkZST00gJHtCQVNFX1JFR0lTVFJZfS8ke0JBU0VfSU1BR0V9OiR7QkFTRV9UQUd9CgpFTlYgQlVJTERfT05MWV9QQUNLQUdFUz0idGFyIGd6aXAgc2hhZG93LXV0aWxzIgpSVU4gbWljcm9kbmYgaW5zdGFsbCAkQlVJTERfT05MWV9QQUNLQUdFUwoKQVJHIFRBUkJBTEw9ImFxdWFzZWMtc2Nhbm5lci01LjMuMjExMzAtdWJpOC50YXIuZ3oiCgpSVU4gbWtkaXIgLXAgL2J1aWxkIC9vcHQvYXF1YXNjYW5zCgpDT1BZICR7VEFSQkFMTH0gL2J1aWxkLwoKUlVOIGNkIC9idWlsZCAmJiBcCiAgICB0YXIgLXp4dmYgJHtUQVJCQUxMfSAmJiBcCiAgICBjZCAtCgpSVU4gaWYgW1sgLWQgL2J1aWxkL2xpY2Vuc2VzIF1dOyB0aGVuIGNwIC1yIC9idWlsZC9saWNlbnNlcy8gL2xpY2Vuc2VzLzsgZmkKUlVOIGNkIC9idWlsZC8gJiYgXAogICAgY3AgLXIgYXF1YXNlYyAvb3B0LwpSVU4gcm0gLXJmIC9idWlsZAoKCgpSVU4gZ3JvdXBhZGQgLWcgMTE0MzMgLS1zeXN0ZW0gYXF1YSAmJiBcCiAgYWRkdXNlciAtbSAtLWhvbWUtZGlyIC9ob21lL2FxdWEgLS1jb21tZW50ICJhcXVhIHVzZXIiIC0tc2hlbGwgL3NiaW4vbm9sb2dpbiAtZyBhcXVhIC0tc3lzdGVtIC11IDExNDMxIGFxdWEgJiYgXAogIGNob3duIC1SIGFxdWE6cm9vdCAvb3B0L2FxdWFzZWMgJiYgY2hvd24gLVIgYXF1YTpyb290IC9vcHQvYXF1YXNjYW5zCgpSVU4gbWljcm9kbmYgcmVtb3ZlICR7QlVJTERfT05MWV9QQUNLQUdFU30KUlVOIG1pY3JvZG5mIGNsZWFuIGFsbAoKIyBkb2RUT0RPOiBwZW5kaW5nIFNMSy0yODI4MwojIFJlbW92aW5nIG9mIG1pY3JvZG5mIG11c3QgYmUgYWZ0ZXIgd2UgdXNlIGl0CiNDT1BZIF9wYWNrYWdlL3JlbW92ZS12dWxuZXJhYmxlLXBhY2thZ2VzIC8KI1JVTiBjaG1vZCAreCAvcmVtb3ZlLXZ1bG5lcmFibGUtcGFja2FnZXMgJiYgc3luYyAmJiAvcmVtb3ZlLXZ1bG5lcmFibGUtcGFja2FnZXMgJHt1Yml2ZXJ9CiNSVU4gcm0gL3JlbW92ZS12dWxuZXJhYmxlLXBhY2thZ2VzCgpWT0xVTUUgL29wdC9hcXVhc2NhbnMKV09SS0RJUiAvb3B0L2FxdWFzZWMvCgpIRUFMVEhDSEVDSyAtLXRpbWVvdXQ9NXMgQ01EIC9vcHQvYXF1YXNlYy9zY2FubmVyY2xpIHZlcnNpb24gfHwgZXhpdCAxClVTRVIgMTE0MzEKRU5UUllQT0lOVCBbIi9vcHQvYXF1YXNlYy9zY2FubmVyY2xpIl0K",
                "fulldigest": "registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3@sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3",
                "fulltag": "registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3:275368",
                "imageDigest": "sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3",
                "imageId": "220de57e3bccf1b49a81b6bead870c173c09748f352e0321149702e8fea84ba5",
                "last_updated": "2021-05-24T14:35:45Z",
                "registry": "registry1.dso.mil",
                "repo": "ironbank-staging/aqua-security/enterprise/scanner-5.3",
                "tag": "275368",
                "tag_detected_at": "2021-05-24T14:35:45Z",
                "userId": "ironbank-users"
            }
        ],
        "image_status": "active",
        "image_type": "docker",
        "last_updated": "2021-05-24T14:35:45Z",
        "parentDigest": "sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3",
        "userId": "ironbank-users"
    }
]

INFO: Waiting for Anchore to scan sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3
INFO: anchore-cli --u [MASKED] --url [MASKED] image wait --timeout 3600 sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3599
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3593
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3588
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3582
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3577
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3571
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3565
INFO: Status: analyzing
INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3560
INFO: Image Digest: sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3
INFO: Parent Digest: sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3
INFO: Analysis Status: analyzed
INFO: Image Type: docker
INFO: Analyzed At: 2021-05-24T14:36:25Z
INFO: Image ID: 220de57e3bccf1b49a81b6bead870c173c09748f352e0321149702e8fea84ba5
INFO: Dockerfile Mode: Actual
INFO: Distro: rhel
INFO: Distro Version: 8.4
INFO: Size: 230174720
INFO: Architecture: amd64
INFO: Layer Count: 4
INFO: Full Tag: registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3:275368
INFO: Tag Detected At: 2021-05-24T14:35:45Z
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 os
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 files
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 npm
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 gem
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 python
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 java
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 binary
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 go
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 malware
INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3 nuget
INFO: Getting vulnerability results
INFO: Fetching [MASKED]/enterprise/images/sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3/ancestors
INFO: Fetching [MASKED]/enterprise/images/sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3/vuln/all?base_digest=sha256:bf206dcb83a2edd1a4eb2b9bbdea62b7e731e015e795dce8ce3c8769c47e1806
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-22876
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-22876
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27218
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27218
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27219
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27219
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-28153
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-28153
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20231
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20231
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20232
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20232
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-22876
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-22876
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3445
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3445
INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-16135
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-16135
INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-16135
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-16135
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3516
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3516
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3517
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3517
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3518
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3518
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3537
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3537
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3541
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3541
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-24032
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-24032
INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-15945
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-15945
INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-24370
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-24370
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3520
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3520
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23840
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23840
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23841
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23841
INFO: [MASKED]/query/vulnerabilities?id=CVE-2019-20838
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2019-20838
INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-14155
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-14155
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3426
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3426
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3426
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3426
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271
INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421
INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421
INFO: Getting compliance results
INFO: Fetching [MASKED]/enterprise/images/sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3/ancestors
INFO: Fetching [MASKED]/enterprise/images/sha256:0f18b7b0bfdc61f809bf3a67f5806933f162b33f5e679907fcb543e9cdafa9b3/check?tag=registry1.dso.mil/ironbank-staging/aqua-security/enterprise/scanner-5.3:275368&detail=true&base_digest=sha256:bf206dcb83a2edd1a4eb2b9bbdea62b7e731e015e795dce8ce3c8769c47e1806
INFO: Getting Anchore version
INFO: Fetching [MASKED]/version
section_end:1621867014:step_script
section_start:1621867014:upload_artifacts_on_success
Uploading artifacts for successful job
Uploading artifacts...
ci-artifacts/scan-results/anchore/: found 17 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=3553593 responseStatus=201 Created token=yvnun_dx
section_end:1621867016:upload_artifacts_on_success
section_start:1621867016:cleanup_file_variables
Cleaning up file based variables
section_end:1621867016:cleanup_file_variables
Job succeeded