Pipeline · Ironbank Containers / GitLab / Gitlab / gitaly

Merge branch 'release-gitlab-14-1-2' into 'development'

Update GitLab to the 14.1.2 Security Release

See merge request !96

16 jobs for development in 14 minutes and 45 seconds (queued for 15 minutes and 20 seconds)

a5961665

Status	Job ID	Name
.Pre
passed	#5405024	load-scripts	00:00:11 Aug 05, 2021

Preflight
passed	#5405026	folder-structure	00:00:11 Aug 05, 2021
passed	#5405027	hardening-manifest	00:00:11 Aug 05, 2021
passed	#5405025	trufflehog	00:00:13 Aug 05, 2021

Lint
passed	#5405028	wl-compare-lint	00:00:13 Aug 05, 2021

Import Artifacts
passed	#5405029	import-artifacts	00:00:28 Aug 05, 2021

Scan Artifacts
passed	#5405030	clamav-scan	00:02:11 Aug 05, 2021

Build
passed	#5405031	build	00:02:48 Aug 05, 2021

Scanning
passed	#5405032	anchore-scan	00:04:02 Aug 05, 2021
passed	#5405033 ironbank-dsop-privileged	openscap-compliance	00:01:32 Aug 05, 2021
passed	#5405034	twistlock-scan	00:01:44 Aug 05, 2021

Csv Output
passed	#5405035	csv-output	00:00:41 Aug 05, 2021

Check Cves
failed	#5405036 allowed to fail	check-cves	00:00:13 Aug 05, 2021

Documentation
passed	#5405037	documentation	00:01:22 Aug 05, 2021

S3 Publish
passed	#5405038	upload-to-s3	00:02:04 Aug 05, 2021

Vat
passed	#5405039	vat	00:00:14 Aug 05, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check-cves	Check Cves
	ERROR: anchore_cve GHSA-jxhc-q857-3j6g addressable-2.7.0 /usr/lib64/ruby/gems/2.7.0/specifications/addressable-2.7.0.gemspec ERROR: anchore_cve VULNDB-255039 rack-2.2.3 /usr/lib64/ruby/gems/2.7.0/specifications/rack-2.2.3.gemspec ERROR: anchore_cve CVE-2021-31799 rdoc-6.2.0 /usr/lib64/ruby/gems/2.7.0/specifications/rdoc-6.2.0.gemspec ERROR: anchore_cve CVE-2020-4054 sanitize-4.6.6 /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec ERROR: anchore_cve GHSA-p4x4-rw2p-8j8m sanitize-4.6.6 /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec ERROR: twistlock_cve CVE-2021-32740 addressable-2.7.0 None ERROR: twistlock_cve CVE-2020-4054 sanitize-4.6.6 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check-cves

Check Cves

ERROR: anchore_cve                   GHSA-jxhc-q857-3j6g           addressable-2.7.0             /usr/lib64/ruby/gems/2.7.0/specifications/addressable-2.7.0.gemspec    
ERROR: anchore_cve                   VULNDB-255039                 rack-2.2.3                    /usr/lib64/ruby/gems/2.7.0/specifications/rack-2.2.3.gemspec    
ERROR: anchore_cve                   CVE-2021-31799                rdoc-6.2.0                    /usr/lib64/ruby/gems/2.7.0/specifications/rdoc-6.2.0.gemspec    
ERROR: anchore_cve                   CVE-2020-4054                 sanitize-4.6.6                /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec    
ERROR: anchore_cve                   GHSA-p4x4-rw2p-8j8m           sanitize-4.6.6                /usr/lib64/ruby/gems/2.7.0/specifications/sanitize-4.6.6.gemspec    
ERROR: twistlock_cve                 CVE-2021-32740                addressable-2.7.0             None                          
ERROR: twistlock_cve                 CVE-2020-4054                 sanitize-4.6.6                None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1