Pipeline · Ironbank Containers / Galvanize / galvanize / python-code-evaluator

Merge branch 'repo1-mirror' into 'development'

Changes to use s3 for dependencies.

See merge request !3

15 jobs for upgrade-python in 9 minutes and 24 seconds (queued for 61 minutes and 5 seconds)

4442f637

Status	Job ID	Name
.Pre
passed	#2854212 ironbank	load scripts	00:01:15 Apr 21, 2021

Preflight
passed	#2854214 ironbank	folder structure	00:01:04 Apr 21, 2021
passed	#2854215 ironbank	hardening_manifest	00:01:34 Apr 21, 2021
passed	#2854213 ironbank	trufflehog	00:01:07 Apr 21, 2021

Lint
passed	#2854216 ironbank	wl compare lint	00:01:17 Apr 21, 2021

Finding Compare
failed	#2854217 ironbank allowed to fail	vat compare	00:02:07 Apr 21, 2021

Import Artifacts
passed	#2854218 ironbank	import artifacts	00:01:21 Apr 21, 2021

Scan Artifacts
passed	#2854219 ironbank	clamav scan	00:01:34 Apr 21, 2021

Build
failed	#2854220 ironbank-isolated	build	00:00:08 Apr 21, 2021

Scanning
skipped	#2854221 ironbank	anchore scan
skipped	#2854222 ironbank	openscap compliance
skipped	#2854223 ironbank	openscap cve
skipped	#2854224 ironbank	twistlock scan

Csv Output
skipped	#2854225 ironbank	csv output

Check Cves
skipped	#2854226 ironbank allowed to fail	check cves

	Name	Stage
failed	build	Build
	`Uploading artifacts for failed job Uploading artifacts... ci-artifacts/build/: found 1 matching files and directories Uploading artifacts as "archive" to coordinator... ok id=2854220 responseStatus=201 Created token=m9v8Xbp5 Uploading artifacts... WARNING: build.env: no matching files ERROR: No files to upload Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1`
failed	vat compare	Finding Compare
	INFO: ('CVE-2020-13776', 'anchore_cve', 'systemd-pam-239-41.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-pam-239-41.el8_3.1', None) INFO: ('VULNDB-247315', 'anchore_cve', 'python-3.8.7\nCVE ID: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3177\nVendor Specific Solution URL: https://github.com/python/cpython/pull/24239\nBug Tracker: https://bugs.python.org/issue42938\nVendor Specific Advisory URL: https://python-security.readthedocs.io/vuln/ctypes-buffer-overflow-pycarg_repr.html\nVendor Specific Solution URL: https://github.com/python/cpython/commit/916610ef90a0d0761f08747f7b0905541f0977c7\nVendor Specific Solution URL: https://github.com/python/cpython/pull/24250\nVendor Specific Solution URL: https://github.com/python/cpython/commit/34df10a9a16b38d54421eeeaf73ec89828563be7\nVendor Specific Solution URL: https://github.com/python/cpython/pull/24249\nVendor Specific Solution URL: https://github.com/python/cpython/commit/d9b8f138b7df3b455b54653ca59f491b4840d6fa\nVendor Specific Solution URL: https://github.com/python/cpython/pull/24248\nVendor Specific Solution URL: https://github.com/python/cpython/commit/ece5dfd403dac211f8d3c72701fe7ba7b7aa5b5f\nVendor Specific Solution URL: https://github.com/python/cpython/pull/24247\nVendor Specific Solution URL: https://github.com/python/cpython/commit/c347cbe694743cee120457aa6626712f7799a932\nVendor Specific Advisory URL: https://access.redhat.com/security/cve/cve-2021-3177\nBug Tracker: https://bugzilla.redhat.com/show_bug.cgi?id=1918168\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MGSV6BJQLRQ6RKVUXK7JGU7TP4QFGQXC/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NQPARTLNSFQVMMQHPNBFOCOZOO3TMQNA/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/MGSV6BJQLRQ6RKVUXK7JGU7TP4QFGQXC/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/NQPARTLNSFQVMMQHPNBFOCOZOO3TMQNA/\nVendor Specific Solution URL: https://security.gentoo.org/glsa/202101-18\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/Z7GZV74KM72O2PEJN2C4XP3V5Q5MZUOO/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z7GZV74KM72O2PEJN2C4XP3V5Q5MZUOO/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BRHOCQYX3QLDGDQGTWQAUUT2GGIZCZUO/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCFZMVRQUKCBQIG5F2CBVADK63NFSE4A/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/BRHOCQYX3QLDGDQGTWQAUUT2GGIZCZUO/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/CCFZMVRQUKCBQIG5F2CBVADK63NFSE4A/\nBug Tracker: https://bugzilla.redhat.com/show_bug.cgi?id=1918175\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6XJAULOS5JVB2L67NCKKMJ5NTKZJBSD/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXSMBHES3ANXXS2RSO5G6Q24BR4B2PWK/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/V6XJAULOS5JVB2L67NCKKMJ5NTKZJBSD/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/NXSMBHES3ANXXS2RSO5G6Q24BR4B2PWK/\nVendor Specific Advisory URL: https://www.suse.com/support/update/announcement/2021/suse-su-20210355-1/\nBug Tracker: https://bugzilla.suse.com/show_bug.cgi?id=1181126\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/Y4KSYYWMGAKOA2JVCQA422OINT6CKQ7O/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/YDTZVGSXQ7HR7OCGSUHTRNTMBG43OMKU/\nVendor Specific Advisory URL: https://forums.opensuse.org/showthread.php/549975-openSUSE-SU-2021-0270-1-important-Security-update-for-python\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y4KSYYWMGAKOA2JVCQA422OINT6CKQ7O/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YDTZVGSXQ7HR7OCGSUHTRNTMBG43OMKU/\nVendor Specific Advisory URL: https://www.suse.com/support/update/announcement/2021/suse-su-20210428-1/\nVendor Specific Advisory URL: https://www.suse.com/support/update/announcement/2021/suse-su-20210432-1/\nOther Advisory URL: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FPE7SMXYUIWPOIZV4DQYXODRXMFX3C5E/\nMail List Post: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/FPE7SMXYUIWPOIZV4DQYXODRXMFX3C5E/\n', 'python-3.8.7', '/usr/local/bin/python3.8') INFO: ('CVE-2020-26116', 'anchore_cve', 'platform-python-3.6.8-31.el8\nhttps://access.redhat.com/security/cve/CVE-2020-26116', 'platform-python-3.6.8-31.el8', None) Uploading artifacts for failed job ci-artifacts/compare/: found 2 matching files and directories Uploading artifacts... Uploading artifacts as "archive" to coordinator... ok id=2854217 responseStatus=201 Created token=ysxAhT8w Cleaning up file based variables ERROR: Job failed: command terminated with exit code 4