UNCLASSIFIED

Skip to content

GitLab

Merge branch 'renovate/docker-istio-pilot-1.7.x' into 'development' 

Update istio/pilot Docker tag to v1.7.7

See merge request !17
19 jobs for development in 17 minutes and 23 seconds (queued for 17 minutes and 40 seconds)
27d45fe5
1 related merge request: !18 development
Status Job ID Name Coverage
  .Pre
passed #2170713
ironbank
load scripts

00:00:07

 
  Preflight
passed #2170714
ironbank
folder structure

00:00:06

passed #2170716
ironbank
hardening_manifest

00:02:09

passed #2170715
ironbank
hardening_manifest migration

00:00:06

 
  Lint
passed #2170717
ironbank
wl compare lint

00:00:12

 
  Import Artifacts
passed #2170718
ironbank
import artifacts

00:00:38

 
  Scan Artifacts
passed #2170719
ironbank
clamav scan

00:03:43

 
  Build
passed #2170720
ironbank-isolated
build

00:01:31

 
  Scanning
passed #2170724
ironbank
anchore scan

00:04:45

passed #2170721
ironbank
openscap compliance

00:00:54

passed #2170722
ironbank
openscap cve

00:03:52

passed #2170723
ironbank
twistlock scan

00:00:24

 
  Csv Output
passed #2170725
ironbank
csv output

00:00:52

 
  Check Cves
failed #2170726
ironbank allowed to fail
check cves

00:00:25

 
  Documentation
passed #2170727
ironbank
sign image

00:00:37

passed #2170728
ironbank
sign manifest

00:00:27

passed #2170729
ironbank
write json documentation

00:00:29

 
  Publish
passed #2170730
ironbank
upload to s3

00:01:40

 
  Vat
passed #2170731
ironbank
vat

00:00:37

 
Name Stage Failure
failed
check cves Check Cves 
INFO: Vulnerabilities found in scanning stage: 79
INFO: {'anchorecve_CVE-2020-28196-krb5-libs-1.18.2-5.el8', 'anchorecve_CVE-2020-29363-p11-kit-trust-0.23.14-5.el8_0', 'anchorecve_CVE-2020-13776-systemd-239-41.el8_3.1', 'anchorecve_CVE-2020-8231-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-8286-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2019-25013-glibc-common-2.28-127.el8_3.2', 'oscapcomp_CCE-82214-8', 'anchorecve_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-29361-p11-kit-trust-0.23.14-5.el8_0', 'oscapcomp_CCE-82985-3', 'tl_CVE-2021-3326-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-8284-libcurl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-80938-4', 'anchorecve_CVE-2020-35512-dbus-daemon-1.12.8-12.el8_3', 'anchorecve_CVE-2020-24977-libxml2-2.9.7-8.el8', 'anchorecve_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2021-23840-openssl-libs-1.1.1g-12.el8_3', 'anchorecve_CVE-2021-3326-glibc-2.28-127.el8_3.2', 'oscapcomp_CCE-82168-6', 'anchorecve_CVE-2020-24977-python3-libxml2-2.9.7-8.el8', 'anchorecve_CVE-2020-13776-systemd-pam-239-41.el8_3.1', 'anchorecve_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-8285-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-13434-sqlite-libs-3.26.0-11.el8', 'oscapcomp_CCE-82959-8', 'anchorecve_CVE-2021-3326-glibc-common-2.28-127.el8_3.2', 'oscapcomp_CCE-82473-0', 'anchorecve_CVE-2020-24370-lua-libs-5.3.4-11.el8', 'anchorecve_CVE-2021-23336-platform-python-3.6.8-31.el8', 'anchorecve_CVE-2020-27619-python3-libs-3.6.8-31.el8', 'anchorecve_VULNDB-115884-urllib3-1.24.2', 'oscapcomp_CCE-82880-6', 'anchorecve_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'tl_CVE-2020-8927-brotli-1.0.6-2.el8', 'anchorecve_CVE-2020-35512-dbus-libs-1.12.8-12.el8_3', 'anchorecve_CVE-2020-26137-python3-urllib3-1.24.2-4.el8', 'oscapcomp_CCE-82472-2', 'oscapcomp_CCE-82494-6', 'anchorecve_CVE-2021-3326-glibc-minimal-langpack-2.28-127.el8_3.2', 'anchorecve_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82474-8', 'anchorecve_CVE-2020-27618-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-16135-libssh-0.9.4-2.el8', 'oscapcomp_CCE-82220-5', 'oscapcomp_CCE-82360-9', 'anchorecve_CVE-2020-35512-dbus-common-1.12.8-12.el8_3', 'anchorecve_CVE-2020-29362-p11-kit-trust-0.23.14-5.el8_0', 'anchorecve_CVE-2021-23841-openssl-libs-1.1.1g-12.el8_3', 'tl_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-15358-sqlite-libs-3.26.0-11.el8', 'tl_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'oscapcomp_CCE-82395-5', 'tl_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-27618-glibc-common-2.28-127.el8_3.2', 'anchorecve_CVE-2020-16135-libssh-config-0.9.4-2.el8', 'oscapcomp_CCE-80935-0', 'oscapcomp_CCE-82949-9', 'tl_CVE-2020-13776-systemd-239-41.el8_3.1', 'anchorecve_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'tl_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'tl_CVE-2019-25013-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-13776-systemd-libs-239-41.el8_3.1', 'anchorecve_CVE-2020-27618-glibc-minimal-langpack-2.28-127.el8_3.2', 'tl_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'oscapcomp_CCE-83401-0', 'anchorecve_CVE-2020-35512-dbus-tools-1.12.8-12.el8_3', 'anchorecve_CVE-2020-35512-dbus-1.12.8-12.el8_3', 'anchorecve_CVE-2019-25013-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-27619-platform-python-3.6.8-31.el8', 'oscapcomp_CCE-82267-6', 'anchorecve_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82979-6', 'tl_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2019-25013-glibc-minimal-langpack-2.28-127.el8_3.2', 'anchorecve_CVE-2021-23336-python3-libs-3.6.8-31.el8', 'anchorecve_CVE-2020-8927-brotli-1.0.6-2.el8', 'oscapcomp_CCE-80784-2', 'tl_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82368-2'}
ERROR: NON-WHITELISTED VULNERABILITIES FOUND
ERROR: Number of non-whitelisted vulnerabilities: 2
ERROR: The following vulnerabilities are not whitelisted:
ERROR: Anchore CVE - CVE-2021-23840-openssl-libs-1.1.1g-12.el8_3
ERROR: Anchore CVE - CVE-2021-23841-openssl-libs-1.1.1g-12.el8_3
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1

UNCLASSIFIED