UNCLASSIFIED

Skip to content

GitLab

You need to sign in or sign up before continuing.

Merge branch '2.277.2.1-ra' into 'development' 

2.277.2.1-ra

See merge request !51
19 jobs for development in 22 minutes and 23 seconds (queued for 22 minutes and 52 seconds)
0f4b20ea
1 related merge request: !53 Development
Status Job ID Name Coverage
  .Pre
passed #2667955
ironbank
load scripts

00:00:08

 
  Preflight
passed #2667956
ironbank
folder structure

00:00:05

passed #2667957
ironbank
hardening_manifest

00:00:10

 
  Lint
passed #2667958
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2667959
ironbank allowed to fail
vat compare

00:00:08

 
  Import Artifacts
passed #2667960
ironbank
import artifacts

00:00:35

 
  Scan Artifacts
passed #2667961
ironbank
clamav scan

00:03:10

 
  Build
passed #2667962
ironbank-isolated
build

00:03:54

 
  Scanning
passed #2667966
ironbank
anchore scan

00:07:42

passed #2667963
ironbank
openscap compliance

00:01:20

passed #2667964
ironbank
openscap cve

00:04:39

passed #2667965
ironbank
twistlock scan

00:01:12

 
  Csv Output
passed #2667967
ironbank
csv output

00:01:09

 
  Check Cves
failed #2667968
ironbank allowed to fail
check cves

00:00:41

 
  Documentation
passed #2667969
ironbank
sign image

00:01:10

passed #2667970
ironbank
sign manifest

00:00:28

passed #2667971
ironbank
write json documentation

00:00:28

 
  S3 Publish
passed #2667972
ironbank
upload to s3

00:03:01

 
  Vat
passed #2667973
ironbank
vat

00:00:16

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   CVE-2007-5198                 plugins-1.4                   /usr/share/jenkins/jenkins.war:WEB-INF/plugins/authentication-tokens.hpi    
ERROR: anchore_cve                   CVE-2007-5198                 plugins-1.4                   /usr/share/jenkins/jenkins.war:WEB-INF/plugins/variant.hpi:WEB-INF/lib/variant.jar    
ERROR: anchore_cve                   CVE-2007-5198                 plugins-1.4                   /usr/share/jenkins/jenkins.war:WEB-INF/plugins/authentication-tokens.hpi:WEB-INF/lib/authentication-tokens.jar    
ERROR: anchore_cve                   VULNDB-103918                 velocity-1.7                  /usr/share/jenkins/jenkins.war:WEB-INF/plugins/saml.hpi:WEB-INF/lib/velocity-1.7.jar    
ERROR: twistlock_cve                 CVE-2021-23840                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-28163                org.eclipse.jetty_jetty-io-9.4.38.v20210224    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
('41cb7cdf04850e33a11f80c42bf660b3', 'anchore_comp', "Dockerfile directive 'HEALTHCHECK' not found, matching condition 'not_exists' check\n Gate: dockerfile\n Trigger: instruction\n Policy ID: DoDDockerfileChecks", None, None)
('CVE-2020-13776', 'anchore_cve', 'systemd-libs-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-libs-239-41.el8_3.2', None)
('cbff271f45d32e78dcc1979dbca9c14d', 'anchore_comp', 'User root found as effective user, which is explicity not allowed\n Gate: dockerfile\n Trigger: effective_user\n Policy ID: DoDEffectiveUserChecks', None, None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2667959 responseStatus=201 Created token=8QpWUGsA
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED