Pipeline · Ironbank Containers / cypress / browsers-nodejs14-chrome

Merge branch 'cve-fixes' into 'development'

Cve fixes

See merge request !21

16 jobs for development in 20 minutes and 5 seconds (queued for 21 minutes and 10 seconds)

186bd0d3

Status	Job ID	Name
.Pre
passed	#3311669 ironbank	load scripts	00:00:07 May 13, 2021

Preflight
passed	#3311671 ironbank	folder structure	00:00:05 May 13, 2021
passed	#3311672 ironbank	hardening_manifest	00:00:10 May 13, 2021
passed	#3311670 ironbank	trufflehog	00:00:07 May 13, 2021

Lint
passed	#3311673 ironbank	wl compare lint	00:00:10 May 13, 2021

Import Artifacts
passed	#3311674 ironbank	import artifacts	00:00:36 May 13, 2021

Scan Artifacts
passed	#3311675 ironbank	clamav scan	00:06:11 May 13, 2021

Build
passed	#3311676 ironbank-isolated	build	00:03:23 May 13, 2021

Scanning
passed	#3311677 ironbank	anchore scan	00:04:45 May 13, 2021
passed	#3311678 ironbank	openscap compliance	00:01:38 May 13, 2021
passed	#3311679 ironbank	twistlock scan	00:01:07 May 13, 2021

Csv Output
passed	#3311680 ironbank	csv output	00:00:44 May 13, 2021

Check Cves
failed	#3311681 ironbank allowed to fail	check cves	00:00:12 May 13, 2021

Documentation
passed	#3311682 ironbank	documentation	00:01:29 May 13, 2021

S3 Publish
passed	#3311683 ironbank	upload to s3	00:02:04 May 13, 2021

Vat
passed	#3311684 ironbank	vat	00:00:08 May 13, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: anchore_cve GHSA-vx3p-948g-6vhq ssri-6.0.1 /usr/local/lib/node_modules/npm/node_modules/ssri/package.json ERROR: anchore_cve CVE-2020-7774 y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json ERROR: anchore_cve GHSA-c4w7-xm78-47vh y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json ERROR: twistlock_cve CVE-2020-35522 libtiff-4.0.9-18.el8 None ERROR: twistlock_cve CVE-2020-35523 libtiff-4.0.9-18.el8 None ERROR: twistlock_cve CVE-2020-35524 libtiff-4.0.9-18.el8 None ERROR: twistlock_cve CVE-2020-7774 y18n-4.0.0 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: anchore_cve                   GHSA-vx3p-948g-6vhq           ssri-6.0.1                    /usr/local/lib/node_modules/npm/node_modules/ssri/package.json    
ERROR: anchore_cve                   CVE-2020-7774                 y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: anchore_cve                   GHSA-c4w7-xm78-47vh           y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: twistlock_cve                 CVE-2020-35522                libtiff-4.0.9-18.el8          None                          
ERROR: twistlock_cve                 CVE-2020-35523                libtiff-4.0.9-18.el8          None                          
ERROR: twistlock_cve                 CVE-2020-35524                libtiff-4.0.9-18.el8          None                          
ERROR: twistlock_cve                 CVE-2020-7774                 y18n-4.0.0                    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1