UNCLASSIFIED

Skip to content

GitLab

changing version for now

15 jobs for upgrade-gradle-base in 9 minutes and 53 seconds (queued for 24 seconds)
39fbe2e2
1 related merge request: !4 Upgrade gradle base image.
Status Job ID Name Coverage
  .Pre
passed #2786597
ironbank
load scripts

00:00:07

 
  Preflight
passed #2786599
ironbank
folder structure

00:00:05

passed #2786600
ironbank
hardening_manifest

00:00:10

passed #2786598
ironbank
trufflehog

00:00:06

 
  Lint
passed #2786601
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2786602
ironbank allowed to fail
vat compare

00:00:07

 
  Import Artifacts
passed #2786603
ironbank
import artifacts

00:00:08

 
  Scan Artifacts
passed #2786604
ironbank
clamav scan

00:00:52

 
  Build
passed #2786605
ironbank-isolated
build

00:03:00

 
  Scanning
passed #2786609
ironbank
anchore scan

00:02:54

passed #2786606
ironbank
openscap compliance

00:01:10

passed #2786607
ironbank
openscap cve

00:04:02

passed #2786608
ironbank
twistlock scan

00:00:45

 
  Csv Output
passed #2786610
ironbank
csv output

00:00:56

 
  Check Cves
failed #2786611
ironbank allowed to fail
check cves

00:00:15

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   CVE-2020-9548                 jackson-databind-2.10.2       /opt/gradle/gradle-6.7.1/lib/plugins/jackson-databind-2.10.2.jar    
ERROR: anchore_cve                   CVE-2021-23840                openssl-1.1.1g-15.el8_3       None                          
ERROR: anchore_cve                   CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
ERROR: oscap_cve                     CVE-2021-20305                gnutls                        None                          
ERROR: oscap_cve                     RHSA-2021:1206                gnutls                        None                          
ERROR: twistlock_cve                 CVE-2021-23840                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
INFO: ('CVE-2021-23841', 'anchore_cve', 'openssl-1.1.1g-15.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-23841', 'openssl-1.1.1g-15.el8_3', None)
INFO: ('CVE-2020-13776', 'anchore_cve', 'systemd-239-41.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-239-41.el8_3.1', None)
INFO: ('CVE-2020-13776', 'twistlock_cve', 'systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.', 'systemd-239-41.el8_3.1', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2786602 responseStatus=201 Created token=PMFVxHbg
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED