Pipeline · Ironbank Containers / Opensource / goharbor / harbor-db

Merge branch 'bump-pg' into 'development'

bump postgres

See merge request !23

19 jobs for development in 13 minutes and 39 seconds (queued for 14 minutes and 46 seconds)

7ca5446c

Status	Job ID	Name
.Pre
passed	#2575107 ironbank	load scripts	00:00:07 Apr 02, 2021

Preflight
passed	#2575108 ironbank	folder structure	00:00:05 Apr 02, 2021
passed	#2575109 ironbank	hardening_manifest	00:00:10 Apr 02, 2021

Lint
passed	#2575110 ironbank	wl compare lint	00:00:10 Apr 02, 2021

Finding Compare
failed	#2575111 ironbank allowed to fail	vat compare	00:00:07 Apr 02, 2021

Import Artifacts
passed	#2575112 ironbank	import artifacts	00:00:32 Apr 02, 2021

Scan Artifacts
passed	#2575113 ironbank	clamav scan	00:02:11 Apr 02, 2021

Build
passed	#2575114 ironbank-isolated	build	00:02:04 Apr 02, 2021

Scanning
passed	#2575118 ironbank	anchore scan	00:01:51 Apr 02, 2021
passed	#2575115 ironbank	openscap compliance	00:00:53 Apr 02, 2021
passed	#2575116 ironbank	openscap cve	00:04:08 Apr 02, 2021
passed	#2575117 ironbank	twistlock scan	00:00:20 Apr 02, 2021

Csv Output
passed	#2575119 ironbank	csv output	00:00:49 Apr 02, 2021

Check Cves
passed	#2575120 ironbank	check cves	00:00:15 Apr 02, 2021

Documentation
passed	#2575121 ironbank	sign image	00:00:26 Apr 02, 2021
passed	#2575122 ironbank	sign manifest	00:00:20 Apr 02, 2021
passed	#2575123 ironbank	write json documentation	00:01:13 Apr 02, 2021

Publish
passed	#2575124 ironbank	upload to s3	00:01:18 Apr 02, 2021

Vat
passed	#2575125 ironbank	vat	00:00:28 Apr 02, 2021

Name Stage Failure

	Name	Stage	Failure
failed	vat compare	Finding Compare
	('CVE-2021-23841', 'anchore_cve', 'openssl-libs-1.1.1g-12.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-23841', 'openssl-libs-1.1.1g-12.el8_3', None) ('CVE-2021-22876', 'twistlock_cve', 'curl 7.1.1 to and including 7.75.0 is vulnerable to an \\"Exposure of Private Personal Information to an Unauthorized Actor\\" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.', 'curl-7.61.1-14.el8_3.1', None) ('CVE-2021-3449', 'anchore_cve', 'openssl-libs-1.1.1g-12.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-3449', 'openssl-libs-1.1.1g-12.el8_3', None) Uploading artifacts for failed job Uploading artifacts... ci-artifacts/compare/: found 2 matching files and directories Uploading artifacts as "archive" to coordinator... ok id=2575111 responseStatus=201 Created token=pGsjVFd9 Cleaning up file based variables ERROR: Job failed: command terminated with exit code 4

failed

vat compare

Finding Compare

('CVE-2021-23841', 'anchore_cve', 'openssl-libs-1.1.1g-12.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-23841', 'openssl-libs-1.1.1g-12.el8_3', None)
('CVE-2021-22876', 'twistlock_cve', 'curl 7.1.1 to and including 7.75.0 is vulnerable to an \\"Exposure of Private Personal Information to an Unauthorized Actor\\" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.', 'curl-7.61.1-14.el8_3.1', None)
('CVE-2021-3449', 'anchore_cve', 'openssl-libs-1.1.1g-12.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-3449', 'openssl-libs-1.1.1g-12.el8_3', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2575111 responseStatus=201 Created token=pGsjVFd9
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4