UNCLASSIFIED

Skip to content

GitLab

Merge branch 'renovate/docker-vault-1.7.0' into 'development' 

Update vault:1.7.0 Docker digest to b374bf9

See merge request !39
19 jobs for development in 55 minutes and 19 seconds (queued for 63 minutes and 36 seconds)
e09fd414
1 related merge request: !40 bump v1.7.0
Status Job ID Name Coverage
  .Pre
passed #2621176
ironbank
load scripts

00:00:59

 
  Preflight
passed #2621177
ironbank
folder structure

00:01:01

passed #2621178
ironbank
hardening_manifest

00:01:16

 
  Lint
passed #2621179
ironbank
wl compare lint

00:01:27

 
  Finding Compare
failed #2621180
ironbank allowed to fail
vat compare

00:01:04

 
  Import Artifacts
passed #2621181
ironbank
import artifacts

00:01:34

 
  Scan Artifacts
passed #2621182
ironbank
clamav scan

00:02:54

 
  Build
passed #2621183
ironbank-isolated
build

00:02:53

 
  Scanning
passed #2621187
ironbank
anchore scan

00:04:25

passed #2621184
ironbank
openscap compliance

00:08:18

passed #2621185
ironbank
openscap cve

00:37:26

passed #2621186
ironbank
twistlock scan

00:02:06

 
  Csv Output
passed #2621188
ironbank
csv output

00:01:19

 
  Check Cves
failed #2621189
ironbank allowed to fail
check cves

00:01:22

 
  Documentation
passed #2621190
ironbank
sign image

00:00:44

passed #2621191
ironbank
sign manifest

00:00:26

passed #2621192
ironbank
write json documentation

00:00:27

 
  S3 Publish
passed #2621193
ironbank
upload to s3

00:01:34

 
  Vat
passed #2621194
ironbank
vat

00:00:09

 
Name Stage Failure
failed
check cves Check Cves 
Successfully built pyrsistent
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
Installing collected packages: zipp, typing-extensions, importlib-metadata, attrs, pyrsistent, jsonschema
ERROR: twistlock_cve                 CVE-2021-20305                gnutls-3.6.14-7.el8_3         None                          
ERROR: twistlock_cve                 CVE-2021-20305                nettle-3.4.1-2.el8            None                          
Successfully installed attrs-20.3.0 importlib-metadata-3.10.0 jsonschema-3.2.0 pyrsistent-0.17.3 typing-extensions-3.7.4.3 zipp-3.4.1
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
Findings from direct query not in api
('41cb7cdf04850e33a11f80c42bf660b3', 'anchore_comp', "Dockerfile directive 'HEALTHCHECK' not found, matching condition 'not_exists' check\n Gate: dockerfile\n Trigger: instruction\n Policy ID: DoDDockerfileChecks", None, None)
('cbff271f45d32e78dcc1979dbca9c14d', 'anchore_comp', 'User root found as effective user, which is explicity not allowed\n Gate: dockerfile\n Trigger: effective_user\n Policy ID: DoDEffectiveUserChecks', None, None)
Uploading artifacts for failed job
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2621180 responseStatus=201 Created token=kn2cYsD1
Uploading artifacts...
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED