Running with gitlab-runner 13.12.0 (7a6612da)  on dsop-shared-gitlab-runner-5fcd8977b8-m6qmr JrExJ6yx  feature flags: FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY:false section_start:1630709921:resolve_secrets Resolving secrets section_end:1630709921:resolve_secrets section_start:1630709921:prepare_executor Preparing the "kubernetes" executor Using Kubernetes namespace: gitlab-runner-ironbank-dsop Using Kubernetes executor with image registry1.dso.mil/ironbank/ironbank-pipelines/pipeline-runner:0.3 ... Using attach strategy to execute scripts... section_end:1630709921:prepare_executor section_start:1630709921:prepare_script Preparing environment Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-207-concurrent-0xxvb6 to be running, status is Pending Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-207-concurrent-0xxvb6 to be running, status is Pending ContainersNotInitialized: "containers with incomplete status: [istio-init]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" Running on runner-jrexj6yx-project-207-concurrent-0xxvb6 via dsop-shared-gitlab-runner-5fcd8977b8-m6qmr... section_end:1630709927:prepare_script section_start:1630709927:get_sources Getting source from Git repository $ until [ $(curl --fail --silent --output /dev/stderr --write-out "%{http_code}" localhost:15020/healthz/ready) -eq 200 ]; do echo Waiting for Sidecar; sleep 3 ; done ; echo Sidecar available; Sidecar available Fetching changes with git depth set to 50... Initialized empty Git repository in /builds/JrExJ6yx/0/dsop/jfrog/artifactory/artifactory/.git/ Created fresh repository. Checking out 2ac460af as master... Skipping Git submodules setup section_end:1630709928:get_sources section_start:1630709928:download_artifacts Downloading artifacts Downloading artifacts for anchore-scan (6221492)... Downloading artifacts from coordinator... ok  id=6221492 responseStatus=200 OK token=xinkkQFR WARNING: ci-artifacts/scan-results/anchore/: lchown ci-artifacts/scan-results/anchore/: operation not permitted (suppressing repeats) Downloading artifacts for hardening-manifest (6221486)... Downloading artifacts from coordinator... ok  id=6221486 responseStatus=200 OK token=3ocUNofw WARNING: ci-artifacts/preflight/: lchown ci-artifacts/preflight/: operation not permitted (suppressing repeats) Downloading artifacts for load-scripts (6221483)... Downloading artifacts from coordinator... ok  id=6221483 responseStatus=200 OK token=jc7PULdF WARNING: ci-artifacts/[MASKED]/: lchown ci-artifacts/[MASKED]/: operation not permitted (suppressing repeats) Downloading artifacts for openscap-compliance (6221493)... Downloading artifacts from coordinator... ok  id=6221493 responseStatus=200 OK token=oUbvzXF- WARNING: ci-artifacts/scan-results/openscap/: lchown ci-artifacts/scan-results/openscap/: operation not permitted (suppressing repeats) Downloading artifacts for twistlock-scan (6221494)... Downloading artifacts from coordinator... ok  id=6221494 responseStatus=200 OK token=fhY78QeQ WARNING: ci-artifacts/scan-results/twistlock/: lchown ci-artifacts/scan-results/twistlock/: operation not permitted (suppressing repeats) Downloading artifacts for wl-compare-lint (6221487)... Downloading artifacts from coordinator... ok  id=6221487 responseStatus=200 OK token=s1sk85iB WARNING: ci-artifacts/lint/: lchown ci-artifacts/lint/: operation not permitted (suppressing repeats) section_end:1630709929:download_artifacts section_start:1630709929:step_script Executing "step_script" stage of the job script $ pip3 install jsonschema # collapsed multi-line command Requirement already satisfied: jsonschema in /usr/local/lib/python3.9/site-packages (3.2.0) Requirement already satisfied: pyrsistent>=0.14.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (0.17.3) Requirement already satisfied: six>=1.11.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (1.15.0) Requirement already satisfied: setuptools in /usr/local/lib/python3.9/site-packages (from jsonschema) (56.1.0) Requirement already satisfied: attrs>=17.4.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (21.2.0) WARNING: Running pip as root will break packages and permissions. You should install packages reliably by using venv: https://pip.pypa.io/warnings/venv WARNING: You are using pip version 21.1.1; however, version 21.2.4 is available. You should consider upgrading via the '/usr/local/bin/python3.9 -m pip install --upgrade pip' command. INFO: Log level set to info INFO: Number of whitelisted vulnerabilities: 226 WARNING: Error writing log line to trace: transform: short internal buffer WARNING: Error writing log line to trace: transform: short internal buffer 21-22898', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='GHSA-f256-j965-7f32', package='netty-codec-http2-4.1.59.Final', package_path='/opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/netty-codec-http2-4.1.59.Final.jar')} INFO: Vulnerabilities found in scanning stage: 256 WARNING: Error writing log line to trace: transform: short internal buffer WARNING: Error writing log line to trace: transform: short internal buffer WARNING: Error writing log line to trace: transform: short internal buffer ERROR: NON-WHITELISTED VULNERABILITIES FOUND ERROR: Number of non-whitelisted vulnerabilities: 39 ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_cve CVE-2021-3749 axios-0.21.1 /opt/jfrog/artifactory/app/frontend/bin/server/dist/node_modules/axios/package.json ERROR: anchore_cve CVE-2021-35515 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/access.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-35515 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-35516 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-35516 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/access.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-35517 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/access.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-35517 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-36090 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/access.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve CVE-2021-36090 commons_compress-1.20 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/commons-compress-1.20.jar ERROR: anchore_cve VULNDB-266029 jsoup-1.13.1 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/jsoup-1.13.1.jar ERROR: anchore_cve VULNDB-266030 jsoup-1.13.1 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/jsoup-1.13.1.jar ERROR: anchore_cve CVE-2021-30129 sshd-2.6.0 /opt/jfrog/artifactory/app/artifactory/tomcat/webapps/artifactory.war:WEB-INF/lib/sshd-core-2.6.0.jar ERROR: anchore_cve GHSA-5955-9wpr-37jh tar-6.0.5 /opt/jfrog/artifactory/app/frontend/bin/server/dist/node_modules/tar/package.json ERROR: anchore_cve GHSA-9r2w-394v-53qc tar-6.0.5 /opt/jfrog/artifactory/app/frontend/bin/server/dist/node_modules/tar/package.json ERROR: anchore_cve GHSA-qq89-hq3f-393p tar-6.0.5 /opt/jfrog/artifactory/app/frontend/bin/server/dist/node_modules/tar/package.json ERROR: twistlock_cve CVE-2021-3749 axios-0.21.1 None ERROR: twistlock_cve CVE-2021-39139 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39140 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39141 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39144 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39145 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39146 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39147 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39148 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39149 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39150 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39151 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39152 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39153 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-39154 com.thoughtworks.xstream_xstream-1.4.17 None ERROR: twistlock_cve CVE-2021-33928 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33929 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33930 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33938 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-37714 org.jsoup_jsoup-1.13.1 None ERROR: twistlock_cve CVE-2021-37701 tar-6.0.5 None ERROR: twistlock_cve CVE-2021-37712 tar-6.0.5 None ERROR: twistlock_cve CVE-2021-37713 tar-6.0.5 None ERROR: twistlock_cve PRISMA-2021-0096 tar-6.0.5 None % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 122 0 0 100 122 0 570 --:--:-- --:--:-- --:--:-- 567 100 124 100 2 100 122 2 125 0:00:01 --:--:-- 0:00:01 127 HTTP/2 200 content-type: text/plain vary: Origin x-request-id: rkkyy4qkxbrk9dabeboi17ytkh x-version-id: 5.36.1.5.36.1.54569ef7a6929df40167a35ad2417543.true date: Fri, 03 Sep 2021 22:58:51 GMT content-length: 2 x-envoy-upstream-service-time: 929 server: istio-envoy ok section_end:1630709932:step_script section_start:1630709932:cleanup_file_variables Cleaning up file based variables section_end:1630709932:cleanup_file_variables ERROR: Job failed: command terminated with exit code 1