Pipeline · Ironbank Containers / cypress / browsers-nodejs14-chrome

Merge branch 'andymaks-development-patch-20543' into 'development'

Update hardening_manifest.yaml

See merge request !23

16 jobs for development in 21 minutes and 48 seconds (queued for 21 minutes and 11 seconds)

63e985f7

Status	Job ID	Name
.Pre
passed	#3312175 ironbank	load scripts	00:00:06 May 13, 2021

Preflight
passed	#3312177 ironbank	folder structure	00:00:05 May 13, 2021
passed	#3312178 ironbank	hardening_manifest	00:00:10 May 13, 2021
passed	#3312176 ironbank	trufflehog	00:00:07 May 13, 2021

Lint
passed	#3312179 ironbank	wl compare lint	00:00:10 May 13, 2021

Import Artifacts
passed	#3312180 ironbank	import artifacts	00:00:28 May 13, 2021

Scan Artifacts
passed	#3312181 ironbank	clamav scan	00:06:06 May 13, 2021

Build
passed	#3312182 ironbank-isolated	build	00:03:46 May 13, 2021

Scanning
passed	#3312183 ironbank	anchore scan	00:06:03 May 13, 2021
passed	#3312184 ironbank	openscap compliance	00:01:45 May 13, 2021
passed	#3312185 ironbank	twistlock scan	00:01:41 May 13, 2021

Csv Output
passed	#3312186 ironbank	csv output	00:00:46 May 13, 2021

Check Cves
failed	#3312187 ironbank allowed to fail	check cves	00:00:13 May 13, 2021

Documentation
passed	#3312188 ironbank	documentation	00:01:37 May 13, 2021

S3 Publish
passed	#3312189 ironbank	upload to s3	00:02:08 May 13, 2021

Vat
passed	#3312190 ironbank	vat	00:00:09 May 13, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_cve CVE-2021-27290 ssri-6.0.1 /usr/local/lib/node_modules/npm/node_modules/ssri/package.json ERROR: anchore_cve GHSA-vx3p-948g-6vhq ssri-6.0.1 /usr/local/lib/node_modules/npm/node_modules/ssri/package.json ERROR: anchore_cve CVE-2020-7774 y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json ERROR: anchore_cve GHSA-c4w7-xm78-47vh y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json ERROR: twistlock_cve CVE-2020-7774 y18n-4.0.0 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-27290                ssri-6.0.1                    /usr/local/lib/node_modules/npm/node_modules/ssri/package.json    
ERROR: anchore_cve                   GHSA-vx3p-948g-6vhq           ssri-6.0.1                    /usr/local/lib/node_modules/npm/node_modules/ssri/package.json    
ERROR: anchore_cve                   CVE-2020-7774                 y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: anchore_cve                   GHSA-c4w7-xm78-47vh           y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: twistlock_cve                 CVE-2020-7774                 y18n-4.0.0                    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1