[0KRunning with gitlab-runner 13.12.0 (7a6612da)
[0;m[0K  on dsop-shared-gitlab-runner-5fcd8977b8-m6qmr JrExJ6yx
[0;m[0K  feature flags: FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY:false
[0;msection_start:1630980014:resolve_secrets[0K[0K[36;1mResolving secrets[0;m
[0;msection_end:1630980014:resolve_secrets[0Ksection_start:1630980014:prepare_executor[0K[0K[36;1mPreparing the "kubernetes" executor[0;m
[0;m[0KUsing Kubernetes namespace: gitlab-runner-ironbank-dsop
[0;m[0KUsing Kubernetes executor with image registry1.dso.mil/ironbank/ironbank-pipelines/pipeline-runner:0.3 ...
[0;m[0KUsing attach strategy to execute scripts...
[0;msection_end:1630980014:prepare_executor[0Ksection_start:1630980014:prepare_script[0K[0K[36;1mPreparing environment[0;m
[0;mWaiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-2229-concurrent-0v5t97 to be running, status is Pending
Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-2229-concurrent-0v5t97 to be running, status is Pending
	ContainersNotInitialized: "containers with incomplete status: [istio-init]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-2229-concurrent-0v5t97 to be running, status is Pending
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
	ContainersNotReady: "containers with unready status: [build helper istio-proxy]"
Running on runner-jrexj6yx-project-2229-concurrent-0v5t97 via dsop-shared-gitlab-runner-5fcd8977b8-m6qmr...
section_end:1630980024:prepare_script[0Ksection_start:1630980024:get_sources[0K[0K[36;1mGetting source from Git repository[0;m
[0;m[32;1m$ until [ $(curl --fail --silent --output /dev/stderr --write-out "%{http_code}" localhost:15020/healthz/ready) -eq 200 ]; do echo Waiting for Sidecar; sleep 3 ; done ; echo Sidecar available;[0;m
Waiting for Sidecar
Sidecar available
[32;1mFetching changes with git depth set to 50...[0;m
Initialized empty Git repository in /builds/JrExJ6yx/0/dsop/galvanize/galvanize/java-code-evaluator/.git/
[32;1mCreated fresh repository.[0;m
[32;1mChecking out f8fd9f2f as master...[0;m

[32;1mSkipping Git submodules setup[0;m
section_end:1630980028:get_sources[0Ksection_start:1630980028:download_artifacts[0K[0K[36;1mDownloading artifacts[0;m
[0;m[32;1mDownloading artifacts for anchore-scan (6283824)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283824 responseStatus[0;m=200 OK token[0;m=_Wh4jE_v
[0;33mWARNING: ci-artifacts/scan-results/anchore/: lchown ci-artifacts/scan-results/anchore/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for hardening-manifest (6283818)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283818 responseStatus[0;m=200 OK token[0;m=XsSPgZwx
[0;33mWARNING: ci-artifacts/preflight/: lchown ci-artifacts/preflight/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for load-scripts (6283815)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283815 responseStatus[0;m=200 OK token[0;m=mVXs_aua
[0;33mWARNING: ci-artifacts/[MASKED]/: lchown ci-artifacts/[MASKED]/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for openscap-compliance (6283825)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283825 responseStatus[0;m=200 OK token[0;m=NGxUZEHi
[0;33mWARNING: ci-artifacts/scan-results/openscap/: lchown ci-artifacts/scan-results/openscap/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for twistlock-scan (6283826)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283826 responseStatus[0;m=200 OK token[0;m=3zxbr-x9
[0;33mWARNING: ci-artifacts/scan-results/twistlock/: lchown ci-artifacts/scan-results/twistlock/: operation not permitted (suppressing repeats)[0;m 
[32;1mDownloading artifacts for wl-compare-lint (6283819)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=6283819 responseStatus[0;m=200 OK token[0;m=-Bhjxx4n
[0;33mWARNING: ci-artifacts/lint/: lchown ci-artifacts/lint/: operation not permitted (suppressing repeats)[0;m 
section_end:1630980029:download_artifacts[0Ksection_start:1630980029:step_script[0K[0K[36;1mExecuting "step_script" stage of the job script[0;m
[0;m[32;1m$ pip3 install jsonschema # collapsed multi-line command[0;m
Requirement already satisfied: jsonschema in /usr/local/lib/python3.9/site-packages (3.2.0)
Requirement already satisfied: pyrsistent>=0.14.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (0.17.3)
Requirement already satisfied: six>=1.11.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (1.15.0)
Requirement already satisfied: setuptools in /usr/local/lib/python3.9/site-packages (from jsonschema) (56.1.0)
Requirement already satisfied: attrs>=17.4.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (21.2.0)
WARNING: Running pip as root will break packages and permissions. You should install packages reliably by using venv: https://pip.pypa.io/warnings/venv
WARNING: You are using pip version 21.1.1; however, version 21.2.4 is available.
You should consider upgrading via the '/usr/local/bin/python3.9 -m pip install --upgrade pip' command.
INFO: Log level set to info
INFO: Number of whitelisted vulnerabilities: 166
[0;33mWARNING: Error writing log line to trace: transform: short internal buffer
[0;mkage='libsolv-0.7.16-2.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='320a97c6816565eedf3545833df99dd0', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='addbb93c22e9b0988b8b40392a4538cb', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35515', package='commons_compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35939', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='python3-libs-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35516', package='commons-compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35937', package='rpm-build-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-36373', package='ant-1.10.9', package_path='/opt/gradle/gradle/lib/ant-1.10.9.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-10001', package='cups-libs-2.2.6-38.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82959-8', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='3e5fad1c039f3ecfd1dcdc94d2f1f9a0', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-8908', package='com.google.guava_guava-27.1-android', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='abb121e9621abdd452f65844954cf1c1', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3580', package='nettle-3.4.1-4.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35942', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3634', package='libssh-config-0.9.4-2.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82985-3', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='bcd159901fe47efddae5c095b4b0d7fd', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35516', package='commons_compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar')}
INFO: Vulnerabilities found in scanning stage: 170
[0;33mWARNING: Error writing log line to trace: transform: short internal buffer
[0;m.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35938', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-22898', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3200', package='libsolv-0.7.16-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22924', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='320a97c6816565eedf3545833df99dd0', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='addbb93c22e9b0988b8b40392a4538cb', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35939', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35515', package='commons_compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='python3-libs-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35937', package='rpm-build-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35516', package='commons-compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-36373', package='ant-1.10.9', package_path='/opt/gradle/gradle/lib/ant-1.10.9.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3634', package='libssh-config-0.9.4-2.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82959-8', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-10001', package='cups-libs-2.2.6-38.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-8908', package='com.google.guava_guava-27.1-android', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3580', package='nettle-3.4.1-4.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35942', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='3e5fad1c039f3ecfd1dcdc94d2f1f9a0', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='abb121e9621abdd452f65844954cf1c1', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82985-3', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='bcd159901fe47efddae5c095b4b0d7fd', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35516', package='commons_compress-1.20', package_path='/opt/gradle/gradle/lib/commons-compress-1.20.jar')}
ERROR: NON-WHITELISTED VULNERABILITIES FOUND
ERROR: Number of non-whitelisted vulnerabilities: 4
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: twistlock_cve                 CVE-2021-33928                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33929                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33930                libsolv-0.7.16-2.el8          None                          
ERROR: twistlock_cve                 CVE-2021-33938                libsolv-0.7.16-2.el8          None                          
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
100   140    0     0  100   140      0    115  0:00:01  0:00:01 --:--:--   115
100   142  100     2  100   140      1     84  0:00:02  0:00:01  0:00:01    85
HTTP/2 200 
content-type: text/plain
vary: Origin
x-request-id: yrj8aisi5jfap8hocd7tufoqny
x-version-id: 5.36.1.5.36.1.54569ef7a6929df40167a35ad2417543.true
date: Tue, 07 Sep 2021 02:00:32 GMT
content-length: 2
x-envoy-upstream-service-time: 1617
server: istio-envoy

ok
section_end:1630980033:step_script[0Ksection_start:1630980033:cleanup_file_variables[0K[0K[36;1mCleaning up file based variables[0;m
[0;msection_end:1630980033:cleanup_file_variables[0K[31;1mERROR: Job failed: command terminated with exit code 1
[0;m