Pipeline · Ironbank Containers / GitLab / Gitlab / gitlab-mailroom

Merge branch 'release-gitlab-13-11-2' into 'development'

Update GitLab to the 13.11.2 Security Release

See merge request !78

17 jobs for development in 28 minutes (queued for 28 minutes and 36 seconds)

1072b792

Status	Job ID	Name
.Pre
passed	#3089264 ironbank	load scripts	00:00:28 May 03, 2021

Preflight
passed	#3089266 ironbank	folder structure	00:00:26 May 03, 2021
passed	#3089267 ironbank	hardening_manifest	00:01:42 May 03, 2021
passed	#3089265 ironbank	trufflehog	00:01:28 May 03, 2021

Lint
passed	#3089268 ironbank	wl compare lint	00:00:41 May 03, 2021

Import Artifacts
passed	#3089269 ironbank	import artifacts	00:00:37 May 03, 2021

Scan Artifacts
passed	#3089270 ironbank	clamav scan	00:01:49 May 03, 2021

Build
passed	#3089271 ironbank-isolated	build	00:14:15 May 03, 2021

Scanning
passed	#3089272 ironbank	anchore scan	00:02:17 May 03, 2021
passed	#3089273 ironbank	openscap compliance	00:02:55 May 03, 2021
passed	#3089274 ironbank	openscap cve	00:04:55 May 03, 2021
passed	#3089275 ironbank	twistlock scan	00:00:33 May 03, 2021

Csv Output
passed	#3089276 ironbank	csv output	00:00:59 May 03, 2021

Check Cves
failed	#3089277 ironbank allowed to fail	check cves	00:00:18 May 03, 2021

Documentation
passed	#3089278 ironbank	documentation	00:00:40 May 03, 2021

S3 Publish
passed	#3089279 ironbank	upload to s3	00:01:05 May 03, 2021

Vat
passed	#3089280 ironbank	vat	00:00:22 May 03, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: Number of non-whitelisted vulnerabilities: 4 ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_comp b316cbcdd48048c73d7e5724b8927f92 None None ERROR: anchore_cve CVE-2021-31799 rdoc-6.2.1 /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec ERROR: anchore_cve GHSA-8cr8-4vfw-mr7h rexml-3.2.3 /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec ERROR: twistlock_cve CVE-2021-28965 rexml-3.2.3 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: Number of non-whitelisted vulnerabilities: 4
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_comp                  b316cbcdd48048c73d7e5724b8927f92    None                          None                          
ERROR: anchore_cve                   CVE-2021-31799                rdoc-6.2.1                    /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec    
ERROR: anchore_cve                   GHSA-8cr8-4vfw-mr7h           rexml-3.2.3                   /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec    
ERROR: twistlock_cve                 CVE-2021-28965                rexml-3.2.3                   None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1