Pipeline · Ironbank Containers / GitLab / Gitlab / gitlab-shell

Merge branch 'release-gitlab-13-11-2' into 'development'

Update GitLab to the 13.11.2 Security Release

See merge request !87

17 jobs for development in 27 minutes and 48 seconds (queued for 28 minutes and 33 seconds)

c0924a59

Status	Job ID	Name
.Pre
passed	#3089216 ironbank	load scripts	00:00:22 May 03, 2021

Preflight
passed	#3089218 ironbank	folder structure	00:00:24 May 03, 2021
passed	#3089219 ironbank	hardening_manifest	00:00:38 May 03, 2021
passed	#3089217 ironbank	trufflehog	00:00:29 May 03, 2021

Lint
passed	#3089220 ironbank	wl compare lint	00:00:43 May 03, 2021

Import Artifacts
passed	#3089221 ironbank	import artifacts	00:00:32 May 03, 2021

Scan Artifacts
passed	#3089222 ironbank	clamav scan	00:06:17 May 03, 2021

Build
passed	#3089223 ironbank-isolated	build	00:06:17 May 03, 2021

Scanning
passed	#3089224 ironbank	anchore scan	00:02:40 May 03, 2021
passed	#3089225 ironbank	openscap compliance	00:08:26 May 03, 2021
passed	#3089226 ironbank	openscap cve	00:08:21 May 03, 2021
passed	#3089227 ironbank	twistlock scan	00:02:16 May 03, 2021

Csv Output
passed	#3089228 ironbank	csv output	00:01:06 May 03, 2021

Check Cves
failed	#3089229 ironbank allowed to fail	check cves	00:00:43 May 03, 2021

Documentation
passed	#3089230 ironbank	documentation	00:00:53 May 03, 2021

S3 Publish
passed	#3089231 ironbank	upload to s3	00:01:27 May 03, 2021

Vat
passed	#3089232 ironbank	vat	00:00:17 May 03, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_comp 3752db4f702a5d0ca7d6ab35e09b44bd None None ERROR: anchore_comp fbfb22b68d356635a55049f927c8bd46 None None ERROR: anchore_cve CVE-2021-31799 rdoc-6.2.1 /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec ERROR: anchore_cve GHSA-8cr8-4vfw-mr7h rexml-3.2.3 /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec ERROR: twistlock_cve CVE-2021-28965 rexml-3.2.3 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_comp                  3752db4f702a5d0ca7d6ab35e09b44bd    None                          None                          
ERROR: anchore_comp                  fbfb22b68d356635a55049f927c8bd46    None                          None                          
ERROR: anchore_cve                   CVE-2021-31799                rdoc-6.2.1                    /usr/lib64/ruby/gems/2.7.0/specifications/default/rdoc-6.2.1.gemspec    
ERROR: anchore_cve                   GHSA-8cr8-4vfw-mr7h           rexml-3.2.3                   /usr/lib64/ruby/gems/2.7.0/specifications/default/rexml-3.2.3.gemspec    
ERROR: twistlock_cve                 CVE-2021-28965                rexml-3.2.3                   None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1