Pipeline · Ironbank Containers / Opensource / jenkins / jenkinsfile-runner

Merge branch 'CSpicer-development-patch-06038' into 'development'

Move JFR to opensource

See merge request dsop/solutions-delivery-platform/jenkins/jenkinsfile-runner!6

16 jobs for development in 11 minutes and 14 seconds (queued for 11 minutes and 52 seconds)

7baa2727

Status	Job ID	Name
.Pre
passed	#3493428 ironbank	load scripts	00:00:06 May 21, 2021

Preflight
passed	#3493430 ironbank	folder structure	00:00:05 May 21, 2021
passed	#3493431 ironbank	hardening_manifest	00:00:08 May 21, 2021
passed	#3493429 ironbank	trufflehog	00:00:06 May 21, 2021

Lint
passed	#3493432 ironbank	wl compare lint	00:00:08 May 21, 2021

Import Artifacts
passed	#3493433 ironbank	import artifacts	00:00:19 May 21, 2021

Scan Artifacts
passed	#3493434 ironbank	clamav scan	00:01:17 May 21, 2021

Build
passed	#3493435 ironbank-isolated	build	00:02:09 May 21, 2021

Scanning
passed	#3493436 ironbank	anchore scan	00:03:29 May 21, 2021
passed	#3493437 ironbank	openscap compliance	00:01:10 May 21, 2021
passed	#3493438 ironbank	twistlock scan	00:00:47 May 21, 2021

Csv Output
passed	#3493439 ironbank	csv output	00:00:25 May 21, 2021

Check Cves
failed	#3493440 ironbank allowed to fail	check cves	00:00:08 May 21, 2021

Documentation
passed	#3493441 ironbank	documentation	00:01:14 May 21, 2021

S3 Publish
passed	#3493442 ironbank	upload to s3	00:01:37 May 21, 2021

Vat
passed	#3493443 ironbank	vat	00:00:08 May 21, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_comp 41cb7cdf04850e33a11f80c42bf660b3 None None ERROR: anchore_cve CVE-2021-29505 xstream-1.4.16 /app/jenkins/WEB-INF/lib/xstream-1.4.16.jar ERROR: anchore_cve CVE-2021-29505 xstream-1.4.16 /app/repo/com/thoughtworks/xstream/xstream/1.4.16/xstream-1.4.16.jar ERROR: anchore_cve GHSA-7chv-rrw6-w6fc xstream-1.4.16 /app/jenkins/WEB-INF/lib/xstream-1.4.16.jar ERROR: anchore_cve GHSA-7chv-rrw6-w6fc xstream-1.4.16 /app/repo/com/thoughtworks/xstream/xstream/1.4.16/xstream-1.4.16.jar Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_comp                  41cb7cdf04850e33a11f80c42bf660b3    None                          None                          
ERROR: anchore_cve                   CVE-2021-29505                xstream-1.4.16                /app/jenkins/WEB-INF/lib/xstream-1.4.16.jar    
ERROR: anchore_cve                   CVE-2021-29505                xstream-1.4.16                /app/repo/com/thoughtworks/xstream/xstream/1.4.16/xstream-1.4.16.jar    
ERROR: anchore_cve                   GHSA-7chv-rrw6-w6fc           xstream-1.4.16                /app/jenkins/WEB-INF/lib/xstream-1.4.16.jar    
ERROR: anchore_cve                   GHSA-7chv-rrw6-w6fc           xstream-1.4.16                /app/repo/com/thoughtworks/xstream/xstream/1.4.16/xstream-1.4.16.jar    
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1