Pipeline · Ironbank Containers / cluster-auditor / opa-collector

Merge branch 'andersen.pinckney-development-patch-55642' into 'development'

Update hardening_manifest.yaml with additional assignee

See merge request !20

16 jobs for development in 18 minutes and 12 seconds (queued for 19 minutes and 26 seconds)

d80f0b5c

Status	Job ID	Name
.Pre
passed	#5328305	load-scripts	00:00:13 Aug 02, 2021

Preflight
passed	#5328307	folder-structure	00:00:08 Aug 02, 2021
passed	#5328308	hardening-manifest	00:00:11 Aug 02, 2021
passed	#5328306	trufflehog	00:00:09 Aug 02, 2021

Lint
passed	#5328309	wl-compare-lint	00:00:14 Aug 02, 2021

Import Artifacts
passed	#5328310	import-artifacts	00:00:12 Aug 02, 2021

Scan Artifacts
passed	#5328311	clamav-scan	00:08:18 Aug 02, 2021

Build
passed	#5328312	build	00:02:48 Aug 02, 2021

Scanning
passed	#5328313	anchore-scan	00:03:05 Aug 02, 2021
passed	#5328314 ironbank-dsop-privileged	openscap-compliance	00:01:11 Aug 02, 2021
passed	#5328315	twistlock-scan	00:01:04 Aug 02, 2021

Csv Output
passed	#5328316	csv-output	00:00:35 Aug 02, 2021

Check Cves
failed	#5328317 allowed to fail	check-cves	00:00:12 Aug 02, 2021

Documentation
passed	#5328318	documentation	00:00:46 Aug 02, 2021

S3 Publish
passed	#5328319	upload-to-s3	00:01:11 Aug 02, 2021

Vat
passed	#5328320	vat	00:00:14 Aug 02, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check-cves	Check Cves
	ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_cve CVE-2021-32740 addressable-2.7.0 /usr/local/bundle/specifications/addressable-2.7.0.gemspec ERROR: anchore_cve GHSA-jxhc-q857-3j6g addressable-2.7.0 /usr/local/bundle/specifications/addressable-2.7.0.gemspec ERROR: anchore_cve CVE-2021-22145 elasticsearch-7.12.0 /usr/local/bundle/specifications/elasticsearch-7.12.0.gemspec ERROR: anchore_cve CVE-2021-22146 elasticsearch-7.13.3 /usr/local/bundle/specifications/elasticsearch-7.13.3.gemspec ERROR: twistlock_cve CVE-2021-32740 addressable-2.7.0 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check-cves

Check Cves

ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-32740                addressable-2.7.0             /usr/local/bundle/specifications/addressable-2.7.0.gemspec    
ERROR: anchore_cve                   GHSA-jxhc-q857-3j6g           addressable-2.7.0             /usr/local/bundle/specifications/addressable-2.7.0.gemspec    
ERROR: anchore_cve                   CVE-2021-22145                elasticsearch-7.12.0          /usr/local/bundle/specifications/elasticsearch-7.12.0.gemspec    
ERROR: anchore_cve                   CVE-2021-22146                elasticsearch-7.13.3          /usr/local/bundle/specifications/elasticsearch-7.13.3.gemspec    
ERROR: twistlock_cve                 CVE-2021-32740                addressable-2.7.0             None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1