[0KRunning with gitlab-runner 13.12.0 (7a6612da)
[0;m[0K  on dsop-shared-gitlab-runner-5fcd8977b8-m6qmr JrExJ6yx
[0;m[0K  feature flags: FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY:false
[0;msection_start:1630941983:resolve_secrets[0K[0K[36;1mResolving secrets[0;m
[0;msection_end:1630941983:resolve_secrets[0Ksection_start:1630941983:prepare_executor[0K[0K[36;1mPreparing the "kubernetes" executor[0;m
[0;m[0KUsing Kubernetes namespace: gitlab-runner-ironbank-dsop
[0;m[0KUsing Kubernetes executor with image registry1.dso.mil/ironbank/ironbank-pipelines/pipeline-runner:0.3 ...
[0;m[0KUsing attach strategy to execute scripts...
[0;msection_end:1630941983:prepare_executor[0Ksection_start:1630941983:prepare_script[0K[0K[36;1mPreparing environment[0;m
[0;mWaiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-1103-concurrent-0qspgt to be running, status is Pending
Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-1103-concurrent-0qspgt to be running, status is Pending
	ContainersNotInitialized: "containers with incomplete status: [init-logs istio-init]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-1103-concurrent-0qspgt to be running, status is Pending
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-1103-concurrent-0qspgt to be running, status is Pending
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
Running on runner-jrexj6yx-project-1103-concurrent-0qspgt via dsop-shared-gitlab-runner-5fcd8977b8-m6qmr...
section_end:1630941995:prepare_script[0Ksection_start:1630941995:get_sources[0K[0K[36;1mGetting source from Git repository[0;m
[0;m[32;1m$ until [ $(curl --fail --silent --output /dev/stderr --write-out "%{http_code}" localhost:15020/healthz/ready) -eq 200 ]; do echo Waiting for Sidecar; sleep 3 ; done ; echo Sidecar available;[0;m
Sidecar available
[32;1mFetching changes with git depth set to 50...[0;m
Initialized empty Git repository in /builds/JrExJ6yx/0/dsop/confluent/replicator/cp-enterprise-replicator-5.5.x/.git/
[32;1mCreated fresh repository.[0;m
[32;1mChecking out be39fe87 as master...[0;m

[32;1mSkipping Git submodules setup[0;m
section_end:1630942000:get_sources[0Ksection_start:1630942000:download_artifacts[0K[0K[36;1mDownloading artifacts[0;m
[0;m[32;1mDownloading artifacts for anchore-scan (6273060)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273060 responseStatus[0;m=200 OK token[0;m=EsGZuCPk
[0;33mWARNING: ci-artifacts/scan-results/anchore/: lchown ci-artifacts/scan-results/anchore/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for hardening-manifest (6273054)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273054 responseStatus[0;m=200 OK token[0;m=asxXT89U
[0;33mWARNING: ci-artifacts/preflight/: lchown ci-artifacts/preflight/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for load-scripts (6273051)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273051 responseStatus[0;m=200 OK token[0;m=FKzrztss
[0;33mWARNING: ci-artifacts/[MASKED]/: lchown ci-artifacts/[MASKED]/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for openscap-compliance (6273061)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273061 responseStatus[0;m=200 OK token[0;m=nEHfygJ2
[0;33mWARNING: ci-artifacts/scan-results/openscap/: lchown ci-artifacts/scan-results/openscap/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for twistlock-scan (6273062)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273062 responseStatus[0;m=200 OK token[0;m=P4XKKd61
[0;33mWARNING: ci-artifacts/scan-results/twistlock/: lchown ci-artifacts/scan-results/twistlock/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for wl-compare-lint (6273055)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6273055 responseStatus[0;m=200 OK token[0;m=7yxTXDyB
[0;33mWARNING: ci-artifacts/lint/: lchown ci-artifacts/lint/: operation not permitted (suppressing repeats)[0;m 
section_end:1630942001:download_artifacts[0Ksection_start:1630942001:step_script[0K[0K[36;1mExecuting "step_script" stage of the job script[0;m
[0;m[32;1m$ pip3 install jsonschema # collapsed multi-line command[0;m
Requirement already satisfied: jsonschema in /usr/local/lib/python3.9/site-packages (3.2.0)
Requirement already satisfied: setuptools in /usr/local/lib/python3.9/site-packages (from jsonschema) (56.1.0)
Requirement already satisfied: attrs>=17.4.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (21.2.0)
Requirement already satisfied: pyrsistent>=0.14.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (0.17.3)
Requirement already satisfied: six>=1.11.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (1.15.0)
WARNING: Running pip as root will break packages and permissions. You should install packages reliably by using venv: https://pip.pypa.io/warnings/venv
WARNING: You are using pip version 21.1.1; however, version 21.2.4 is available.
You should consider upgrading via the '/usr/local/bin/python3.9 -m pip install --upgrade pip' command.
INFO: Log level set to info
INFO: Number of whitelisted vulnerabilities: 160
[0;33mWARNING: Error writing log line to trace: transform: short internal buffer
[0;mibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-36086', package='libsepol-2.9-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22922', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-35942', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='698044205a9c4a6d48b7937e66a6bf4f', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3200', package='libsolv-0.7.16-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-21295', package='io.netty_netty-codec-4.1.48.Final', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-33574', package='glibc-common-2.28-151.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='3456a263793066e9b5063ada6e47917d', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='c2e44319ae5b3b040044d8ae116d1c2f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-36084', package='libsepol-2.9-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-16135', package='libssh-0.9.4-2.el8', package_path=None)}
INFO: Vulnerabilities found in scanning stage: 171
[0;33mWARNING: Error writing log line to trace: transform: short internal buffer
[0;mve_id='CVE-2021-29425', package='commons-io_commons-io-2.5', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-23840', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-minimal-langpack-2.28-151.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-35515', package='org.apache.commons_commons-compress-1.19', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-33574', package='glibc-minimal-langpack-2.28-151.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-17541', package='libjpeg-turbo-1.5.3-10.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='python3-rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35938', package='python3-rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-22923', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-33574', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-36086', package='libsepol-2.9-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-35942', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22922', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='698044205a9c4a6d48b7937e66a6bf4f', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3200', package='libsolv-0.7.16-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-21295', package='io.netty_netty-codec-4.1.48.Final', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-33574', package='glibc-common-2.28-151.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='3456a263793066e9b5063ada6e47917d', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='c2e44319ae5b3b040044d8ae116d1c2f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-36084', package='libsepol-2.9-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-16135', package='libssh-0.9.4-2.el8', package_path=None)}
ERROR: NON-WHITELISTED VULNERABILITIES FOUND
ERROR: Number of non-whitelisted vulnerabilities: 12
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-3712                 openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-33928                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33929                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33930                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33938                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-3712                 openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-35515                org.apache.commons_commons-compress-1.19    None                          
ERROR: twistlock_cve                 CVE-2021-35516                org.apache.commons_commons-compress-1.19    None                          
ERROR: twistlock_cve                 CVE-2021-35517                org.apache.commons_commons-compress-1.19    None                          
ERROR: twistlock_cve                 CVE-2021-36090                org.apache.commons_commons-compress-1.19    None                          
ERROR: twistlock_cve                 CVE-2021-34429                org.eclipse.jetty_jetty-io-9.4.40.v20210413    None                          
ERROR: twistlock_cve                 CVE-2019-10219                org.hibernate.validator_hibernate-validator-6.0.17.Final    None                          
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
100   163    0     0  100   163      0    134  0:00:01  0:00:01 --:--:--   134
100   163    0     0  100   163      0     73  0:00:02  0:00:02 --:--:--    73100   165    0     2  100   163      0     72  0:00:02  0:00:02 --:--:--    73
HTTP/2 200 
content-type: text/plain
vary: Origin
x-request-id: bcxu7y9687yf3edok8mpgfyfdc
x-version-id: 5.36.1.5.36.1.54569ef7a6929df40167a35ad2417543.true
date: Mon, 06 Sep 2021 15:26:45 GMT
content-length: 2
x-envoy-upstream-service-time: 2194
server: istio-envoy

ok
section_end:1630942005:step_script[0Ksection_start:1630942005:cleanup_file_variables[0K[0K[36;1mCleaning up file based variables[0;m
[0;msection_end:1630942006:cleanup_file_variables[0K[31;1mERROR: Job failed: command terminated with exit code 1
[0;m