Running with gitlab-runner 13.8.0 (775dd39d)  on global-shared-gitlab-runner-89dbd4db8-mnp6b RKzCU9YR section_start:1617283481:resolve_secrets Resolving secrets section_end:1617283481:resolve_secrets section_start:1617283481:prepare_executor Preparing the "kubernetes" executor Using Kubernetes namespace: gitlab-runner WARNING: Pulling GitLab Runner helper image from Docker Hub. Helper image is migrating to registry.gitlab.com, for more information see https://docs.gitlab.com/runner/configuration/advanced-configuration.html#migrating-helper-image-to-registrygitlabcom Using Kubernetes executor with image registry1.dso.mil/ironbank/anchore/cli/cli:0.9.1 ... section_end:1617283481:prepare_executor section_start:1617283481:prepare_script Preparing environment Waiting for pod gitlab-runner/runner-rkzcu9yr-project-5682-concurrent-35lg5z to be running, status is Pending Running on runner-rkzcu9yr-project-5682-concurrent-35lg5z via global-shared-gitlab-runner-89dbd4db8-mnp6b... section_end:1617283484:prepare_script section_start:1617283484:get_sources Getting source from Git repository Fetching changes with git depth set to 50... Initialized empty Git repository in /builds/dsop/opensource/jupyter/jupyterhub-k8s-network-tools/.git/ Created fresh repository. Checking out 0996fabe as initial-hardening... Skipping Git submodules setup section_end:1617283485:get_sources section_start:1617283485:download_artifacts Downloading artifacts Downloading artifacts for build (2559265)... Downloading artifacts from coordinator... ok  id=2559265 responseStatus=200 OK token=u8YjyWXB Downloading artifacts for load scripts (2559258)... Downloading artifacts from coordinator... ok  id=2559258 responseStatus=200 OK token=tCrshnQR section_end:1617283488:download_artifacts section_start:1617283488:step_script Executing "step_script" stage of the job script $ python3 "${PIPELINE_REPO_DIR}/stages/scanning/anchore/anchore_scan.py" INFO: Log level set to info INFO: anchore-cli --json --u [MASKED] --url [MASKED] image add --noautosubscribe --dockerfile ./Dockerfile --force registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools:207461 INFO: registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools:207461 added to Anchore INFO: [ { "analysis_status": "not_analyzed", "analyzed_at": null, "annotations": {}, "created_at": "2021-04-01T13:24:49Z", "imageDigest": "sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247", "image_content": { "metadata": { "arch": null, "distro": null, "distro_version": null, "dockerfile_mode": "Actual", "image_size": null, "layer_count": null } }, "image_detail": [ { "created_at": "2021-04-01T13:24:49Z", "digest": "sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247", "dockerfile": "QVJHIEJBU0VfUkVHSVNUUlk9cmVnaXN0cnkxLmRzby5taWwKQVJHIEJBU0VfSU1BR0U9aXJvbmJhbmsvcmVkaGF0L3ViaS91Ymk4CkFSRyBCQVNFX1RBRz04LjMKCkZST00gJHtCQVNFX1JFR0lTVFJZfS8ke0JBU0VfSU1BR0V9OiR7QkFTRV9UQUd9", "fulldigest": "registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools@sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247", "fulltag": "registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools:207461", "imageDigest": "sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247", "imageId": "d89f8255fb41f023edac9b68808b563d7a40a6d21b6448b6c08bdda057b827ea", "last_updated": "2021-04-01T13:24:49Z", "registry": "registry1.dso.mil", "repo": "ironbank-staging/opensource/jupyterhub/k8s-network-tools", "tag": "207461", "tag_detected_at": "2021-04-01T13:24:49Z", "userId": "ironbank-users" } ], "image_status": "active", "image_type": "docker", "last_updated": "2021-04-01T13:24:49Z", "parentDigest": "sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247", "userId": "ironbank-users" } ] INFO: Waiting for Anchore to scan sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 INFO: anchore-cli --u [MASKED] --url [MASKED] image wait --timeout 3600 sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 INFO: Status: not_analyzed INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3599 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3593 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3588 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3582 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3577 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3571 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3566 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3559 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3554 INFO: Status: analyzing INFO: Waiting 5.0 seconds for next retry. Total timeout remaining: 3548 INFO: Image Digest: sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 INFO: Parent Digest: sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 INFO: Analysis Status: analyzed INFO: Image Type: docker INFO: Analyzed At: 2021-04-01T13:25:46Z INFO: Image ID: d89f8255fb41f023edac9b68808b563d7a40a6d21b6448b6c08bdda057b827ea INFO: Dockerfile Mode: Actual INFO: Distro: rhel INFO: Distro Version: 8.3 INFO: Size: 228720640 INFO: Architecture: amd64 INFO: Layer Count: 3 INFO: Full Tag: registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools:207461 INFO: Tag Detected At: 2021-04-01T13:24:49Z INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 os INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 files INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 npm INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 gem INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 python INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 java INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 binary INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 go INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 malware INFO: anchore-cli --json --u [MASKED] --url [MASKED] image content sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247 nuget INFO: Getting vulnerability results INFO: Fetching [MASKED]/enterprise/images/sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247/ancestors INFO: Fetching [MASKED]/enterprise/images/sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247/vuln/all INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8927 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8927 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8231 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8231 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8284 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8284 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8285 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8285 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8286 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8286 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-22876 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-22876 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-35512 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27218 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27218 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27219 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27219 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-28153 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-28153 INFO: [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2019-25013 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-27618 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-27645 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3326 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20231 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20231 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20232 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20232 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20305 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20305 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-28196 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-28196 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8231 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8231 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8284 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8284 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8285 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8285 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-8286 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-8286 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-22876 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-22876 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-16135 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-16135 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-16135 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-16135 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-24977 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-24977 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-24370 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-24370 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20305 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20305 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23840 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23840 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23841 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23841 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23840 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23840 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23841 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23841 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29361 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29361 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29362 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29362 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29363 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29363 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29361 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29361 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29362 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29362 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-29363 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-29363 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-27619 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-27619 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23336 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23336 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3177 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3177 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3426 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3426 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3445 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-27619 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-27619 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-23336 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-23336 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3177 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3177 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3426 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3426 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-24977 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-24977 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20266 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-20271 INFO: [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2021-3421 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-13434 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-13434 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-15358 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-15358 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: Fetching [MASKED]/query/vulnerabilities?id=CVE-2020-13776 INFO: Getting compliance results INFO: Fetching [MASKED]/enterprise/images/sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247/ancestors INFO: Fetching [MASKED]/enterprise/images/sha256:75e8899d693fa5cd79eb6606668002096cb88ac04dbdb4b46955dff0f908b247/check?tag=registry1.dso.mil/ironbank-staging/opensource/jupyterhub/k8s-network-tools:207461&detail=true INFO: Getting Anchore version INFO: Fetching [MASKED]/version section_end:1617283572:step_script section_start:1617283572:upload_artifacts_on_success Uploading artifacts for successful job Uploading artifacts... ci-artifacts/scan-results/anchore/: found 17 matching files and directories Uploading artifacts as "archive" to coordinator... ok id=2559269 responseStatus=201 Created token=RRS7DGFr section_end:1617283573:upload_artifacts_on_success section_start:1617283573:cleanup_file_variables Cleaning up file based variables section_end:1617283573:cleanup_file_variables Job succeeded