UNCLASSIFIED

Merge branch 'release-gitlab-13-10-3' into 'development'

Update GitLab to the 13.10.3 Security Release

See merge request !73
19 jobs for development in 19 minutes and 25 seconds (queued for 17 minutes and 56 seconds)
Status Job ID Name Coverage
  .Pre
passed #2738460
ironbank
load scripts

00:00:06

 
  Preflight
passed #2738461
ironbank
folder structure

00:00:09

passed #2738462
ironbank
hardening_manifest

00:00:12

 
  Lint
passed #2738463
ironbank
wl compare lint

00:00:18

 
  Finding Compare
failed #2738464
ironbank allowed to fail
vat compare

00:00:10

 
  Import Artifacts
passed #2738465
ironbank
import artifacts

00:00:24

 
  Scan Artifacts
passed #2738466
ironbank
clamav scan

00:02:55

 
  Build
passed #2738467
ironbank-isolated
build

00:03:38

 
  Scanning
passed #2738471
ironbank
anchore scan

00:03:23

passed #2738468
ironbank
openscap compliance

00:01:41

passed #2738469
ironbank
openscap cve

00:04:43

passed #2738470
ironbank
twistlock scan

00:01:14

 
  Csv Output
passed #2738472
ironbank
csv output

00:01:14

 
  Check Cves
failed #2738473
ironbank allowed to fail
check cves

00:00:21

 
  Documentation
passed #2738474
ironbank
sign image

00:01:02

passed #2738475
ironbank
sign manifest

00:00:28

passed #2738476
ironbank
write json documentation

00:00:35

 
  S3 Publish
passed #2738477
ironbank
upload to s3

00:03:59

 
  Vat
passed #2738478
ironbank
vat

00:00:15

 
Name Stage Failure
failed
check cves Check Cves
ERROR: anchore_cve                   CVE-2021-22881                actionpack-6.0.3.4            /usr/lib64/ruby/gems/2.7.0/specifications/actionpack-6.0.3.4.gemspec    
ERROR: anchore_cve GHSA-8877-prq4-9xfw actionpack-6.0.3.4 /usr/lib64/ruby/gems/2.7.0/specifications/actionpack-6.0.3.4.gemspec
ERROR: anchore_cve CVE-2020-4054 sanitize-4.6.6 /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec
ERROR: anchore_cve GHSA-p4x4-rw2p-8j8m sanitize-4.6.6 /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec
ERROR: anchore_cve CVE-2020-13949 thrift-0.13.0 /usr/lib64/ruby/gems/2.7.0/specifications/thrift-0.13.0.gemspec
ERROR: twistlock_cve CVE-2021-22881 actionpack-6.0.3.4 None
ERROR: twistlock_cve CVE-2020-4054 sanitize-4.6.6 None
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare
$ python3 "${PIPELINE_REPO_DIR}/stages/vat-finding-compare/vat_findings.py"
INFO: Log level set to info
INFO: File does not currently exist.
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 1 matching files and directories

Uploading artifacts as "archive" to coordinator... ok
id=2738464 responseStatus=201 Created token=_AdU5VVz
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 3