Pipeline · Ironbank Containers / GitLab / Gitlab / git-base

You need to sign in or sign up before continuing.

Merge branch 'release-gitlab-13-11-2' into 'development'

Update GitLab to the 13.11.2 Security Release

See merge request !83

17 jobs for development in 43 minutes and 26 seconds (queued for 43 minutes and 47 seconds)

33d88b65

Status	Job ID	Name
.Pre
passed	#3089090 ironbank	load scripts	00:01:02 May 03, 2021

Preflight
passed	#3089092 ironbank	folder structure	00:01:03 May 03, 2021
passed	#3089093 ironbank	hardening_manifest	00:00:44 May 03, 2021
passed	#3089091 ironbank	trufflehog	00:00:35 May 03, 2021

Lint
passed	#3089094 ironbank	wl compare lint	00:00:35 May 03, 2021

Import Artifacts
passed	#3089095 ironbank	import artifacts	00:00:34 May 03, 2021

Scan Artifacts
passed	#3089096 ironbank	clamav scan	00:04:09 May 03, 2021

Build
passed	#3089097 ironbank-isolated	build	00:14:10 May 03, 2021

Scanning
passed	#3089098 ironbank	anchore scan	00:02:36 May 03, 2021
passed	#3089099 ironbank	openscap compliance	00:12:07 May 03, 2021
passed	#3089100 ironbank	openscap cve	00:15:55 May 03, 2021
passed	#3089101 ironbank	twistlock scan	00:00:49 May 03, 2021

Csv Output
passed	#3089102 ironbank	csv output	00:01:21 May 03, 2021

Check Cves
failed	#3089103 ironbank allowed to fail	check cves	00:00:46 May 03, 2021

Documentation
passed	#3089104 ironbank	documentation	00:01:18 May 03, 2021

S3 Publish
passed	#3089105 ironbank	upload to s3	00:01:57 May 03, 2021

Vat
passed	#3089106 ironbank	vat	00:00:28 May 03, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: Number of non-whitelisted vulnerabilities: 4 ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_comp 578705177de3f2e8b884b2f614277b39 None None ERROR: anchore_cve CVE-2021-31799 rdoc-6.2.1 /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec ERROR: anchore_cve GHSA-8cr8-4vfw-mr7h rexml-3.2.3 /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec ERROR: twistlock_cve CVE-2021-28965 rexml-3.2.3 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: Number of non-whitelisted vulnerabilities: 4
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_comp                  578705177de3f2e8b884b2f614277b39    None                          None                          
ERROR: anchore_cve                   CVE-2021-31799                rdoc-6.2.1                    /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec    
ERROR: anchore_cve                   GHSA-8cr8-4vfw-mr7h           rexml-3.2.3                   /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec    
ERROR: twistlock_cve                 CVE-2021-28965                rexml-3.2.3                   None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1