UNCLASSIFIED

Skip to content

GitLab

You need to sign in or sign up before continuing.

Merge branch 'al' into 'development' 

conflicts

See merge request !14
19 jobs for development in 21 minutes and 54 seconds (queued for 23 minutes and 4 seconds)
449a1ee8
2 related merge requests: !16 Development 2 related merge requests: !16 Development, !13 Development
Status Job ID Name Coverage
  .Pre
passed #2652827
ironbank
load scripts

00:00:08

 
  Preflight
passed #2652828
ironbank
folder structure

00:00:05

passed #2652829
ironbank
hardening_manifest

00:00:10

 
  Lint
passed #2652830
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2652831
ironbank allowed to fail
vat compare

00:00:07

 
  Import Artifacts
passed #2652832
ironbank
import artifacts

00:00:09

 
  Scan Artifacts
passed #2652833
ironbank
clamav scan

00:09:30

 
  Build
passed #2652834
ironbank-isolated
build

00:03:29

 
  Scanning
passed #2652838
ironbank
anchore scan

00:02:28

passed #2652835
ironbank
openscap compliance

00:01:12

passed #2652836
ironbank
openscap cve

00:04:16

passed #2652837
ironbank
twistlock scan

00:00:44

 
  Csv Output
passed #2652839
ironbank
csv output

00:01:01

 
  Check Cves
failed #2652840
ironbank allowed to fail
check cves

00:00:16

 
  Documentation
passed #2652841
ironbank
sign image

00:00:37

passed #2652842
ironbank
sign manifest

00:00:25

passed #2652843
ironbank
write json documentation

00:00:23

 
  S3 Publish
passed #2652844
ironbank
upload to s3

00:01:45

 
  Vat
passed #2652845
ironbank
vat

00:00:08

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
ERROR: anchore_cve                   CVE-2020-13776                systemd-239-41.el8_3.1        None                          
ERROR: anchore_cve                   CVE-2020-13776                systemd-libs-239-41.el8_3.1    None                          
ERROR: anchore_cve                   CVE-2020-13776                systemd-pam-239-41.el8_3.1    None                          
ERROR: twistlock_cve                 CVE-2021-23840                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2020-13776                systemd-239-41.el8_3.1        None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
('CVE-2020-10663', 'twistlock_cve', 'The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent.', 'json-2.1.0', None)
('CVE-2020-13776', 'anchore_cve', 'systemd-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-239-41.el8_3.2', None)
('CVE-2020-13776', 'twistlock_cve', 'systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.', 'systemd-239-41.el8_3.2', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2652831 responseStatus=201 Created token=3Vj1xaoM
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED