[0KRunning with gitlab-runner 13.8.0 (775dd39d)
[0;m[0K  on dsop-shared-gitlab-runner-5f4b468dff-8vfv5 BsbAJu5w
[0;msection_start:1622551421:resolve_secrets[0K[0K[36;1mResolving secrets[0;m
[0;msection_end:1622551421:resolve_secrets[0Ksection_start:1622551421:prepare_executor[0K[0K[36;1mPreparing the "kubernetes" executor[0;m
[0;m[0KUsing Kubernetes namespace: gitlab-runner-ironbank-dsop
[0;m[0;33mWARNING: Pulling GitLab Runner helper image from Docker Hub. Helper image is migrating to registry.gitlab.com, for more information see https://docs.gitlab.com/runner/configuration/advanced-configuration.html#migrating-helper-image-to-registrygitlabcom
[0;m[0KUsing Kubernetes executor with image registry1.dso.mil/ironbank/ironbank-pipelines/pipeline-runner:0.3 ...
[0;msection_end:1622551421:prepare_executor[0Ksection_start:1622551421:prepare_script[0K[0K[36;1mPreparing environment[0;m
[0;mWaiting for pod gitlab-runner-ironbank-dsop/runner-bsbaju5w-project-243-concurrent-0c7q69 to be running, status is Pending
Running on runner-bsbaju5w-project-243-concurrent-0c7q69 via dsop-shared-gitlab-runner-5f4b468dff-8vfv5...
section_end:1622551424:prepare_script[0Ksection_start:1622551424:get_sources[0K[0K[36;1mGetting source from Git repository[0;m
[0;m[32;1mFetching changes with git depth set to 50...[0;m
Initialized empty Git repository in /builds/dsop/opensource/keycloak/keycloak/.git/
[32;1mCreated fresh repository.[0;m
[32;1mChecking out 5a110d39 as master...[0;m

[32;1mSkipping Git submodules setup[0;m
section_end:1622551424:get_sources[0Ksection_start:1622551424:download_artifacts[0K[0K[36;1mDownloading artifacts[0;m
[0;m[32;1mDownloading artifacts for anchore-scan (3738793)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738793 responseStatus[0;m=200 OK token[0;m=d2ptNr_A
[32;1mDownloading artifacts for hardening-manifest (3738788)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738788 responseStatus[0;m=200 OK token[0;m=yKxx-btk
[32;1mDownloading artifacts for load-scripts (3738785)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738785 responseStatus[0;m=200 OK token[0;m=3s_RZwtP
[32;1mDownloading artifacts for openscap-compliance (3738794)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738794 responseStatus[0;m=200 OK token[0;m=48vrfgBv
[32;1mDownloading artifacts for twistlock-scan (3738795)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738795 responseStatus[0;m=200 OK token[0;m=R7xePW47
[32;1mDownloading artifacts for wl-compare-lint (3738789)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=3738789 responseStatus[0;m=200 OK token[0;m=Y1HNQX-M
section_end:1622551425:download_artifacts[0Ksection_start:1622551425:step_script[0K[0K[36;1mExecuting "step_script" stage of the job script[0;m
[0;m[32;1m$ pip3 install jsonschema # collapsed multi-line command[0;m
Requirement already satisfied: jsonschema in /usr/local/lib/python3.9/site-packages (3.2.0)
Requirement already satisfied: setuptools in /usr/local/lib/python3.9/site-packages (from jsonschema) (56.1.0)
Requirement already satisfied: attrs>=17.4.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (21.2.0)
Requirement already satisfied: six>=1.11.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (1.15.0)
Requirement already satisfied: pyrsistent>=0.14.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (0.17.3)
WARNING: Running pip as root will break packages and permissions. You should install packages reliably by using venv: https://pip.pypa.io/warnings/venv
WARNING: You are using pip version 21.1.1; however, version 21.1.2 is available.
You should consider upgrading via the '/usr/local/bin/python3.9 -m pip install --upgrade pip' command.
INFO: Log level set to info
INFO: Number of whitelisted vulnerabilities: 165
INFO: Whitelisted vulnerabilities: {Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='python3-hawkey-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3518', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-util-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='c2e44319ae5b3b040044d8ae116d1c2f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3516', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-util-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-27218', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82959-8', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-16135', package='libssh-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12399', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3541', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3518', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3537', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='e7573262736ef52353cde3bae2617782', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82985-3', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-15945', package='lua-libs-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3520', package='lz4-libs-1.8.3-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3541', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3421', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3517', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12399', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='34de21e516c0ca50a96e5386f163f8bf', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='VULNDB-145331', package='xom-1.2.10', package_path='/opt/jboss/keycloak/modules/system/layers/base/nu/xom/main/xom-1.2.10.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-23840', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82220-5', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-80935-0', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-15945', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82214-8', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='PRISMA-2021-0055', package='commons-codec_commons-codec-1.11', package_path=None), Finding(scan_source='anchore_comp', cve_id='abb121e9621abdd452f65844954cf1c1', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='c4ad80832b361f81df2a31e5b6b09864', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23840', package='openssl-libs-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12399', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-80938-4', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3537', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82474-8', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3468', package='avahi-libs-0.7-20.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2014-2524', package='readline-2.2', package_path='/opt/jboss/keycloak/bin/client/jboss-cli-client.jar:readline'), Finding(scan_source='anchore_cve', cve_id='CVE-2018-20200', package='okhttp-3.9.0', package_path='/opt/jboss/keycloak/modules/system/layers/base/com/squareup/okhttp3/main/okhttp-3.9.0.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27218', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2014-2524', package='readline-2.2', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/aesh/main/readline-2.2.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='bcd159901fe47efddae5c095b4b0d7fd', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='GHSA-gwrp-pvrq-jmwv', package='commons-io-2.5', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/commons/io/main/commons-io-2.5.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82979-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3517', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='320a97c6816565eedf3545833df99dd0', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20222', package='org.keycloak_keycloak-core-13.0.0', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-24370', package='lua-libs-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='3e5fad1c039f3ecfd1dcdc94d2f1f9a0', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-28153', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27219', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3517', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12399', package='nss-softokn-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82168-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23840', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-softokn-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82494-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-10001', package='cups-libs-2.2.6-38.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-24370', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2018-20200', package='com.squareup.okhttp3_okhttp-3.9.0', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-83401-0', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-27219', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='639f6f1177735759703e928c14714a59', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-minimal-langpack-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3537', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='platform-python-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-libs-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-12399', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82472-2', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-15945', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82473-0', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82949-9', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-12401', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12399', package='nss-util-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-28153', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82395-5', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-20838', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3518', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='addbb93c22e9b0988b8b40392a4538cb', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82360-9', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='3456a263793066e9b5063ada6e47917d', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='VULNDB-250398', package='freemarker-2.3.29', package_path='/opt/jboss/keycloak/modules/system/layers/keycloak/org/freemarker/main/freemarker-2.3.29.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82880-6', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82368-2', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3516', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-10172', package='data mapper for jackson json processor_jackson-mapper-asl-1.9.13', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='python3-libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='698044205a9c4a6d48b7937e66a6bf4f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-16135', package='libssh-config-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='python3-libs-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-common-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82267-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='463a9a24225c26f7a5bf3f38908e5cb3', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-24032', package='libzstd-1.4.4-1.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-20838', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None)}
INFO: Vulnerabilities found in scanning stage: 161
HTTP/2 200 
content-type: text/plain
vary: Origin
x-request-id: 6th8z434efdo7k6wnfmbrgmyyo
x-version-id: 5.27.0.5.27.0.537ba890c8203cd248ecdc35284e11e7.true
date: Tue, 01 Jun 2021 12:43:47 GMT
content-length: 2
x-envoy-upstream-service-time: 632
server: istio-envoy

okINFO: {Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='python3-hawkey-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3518', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-util-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='c2e44319ae5b3b040044d8ae116d1c2f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3516', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-util-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-27218', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82959-8', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-16135', package='libssh-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3541', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3537', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3518', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='e7573262736ef52353cde3bae2617782', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82985-3', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-15945', package='lua-libs-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3520', package='lz4-libs-1.8.3-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3541', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3421', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3517', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='34de21e516c0ca50a96e5386f163f8bf', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='VULNDB-145331', package='xom-1.2.10', package_path='/opt/jboss/keycloak/modules/system/layers/base/nu/xom/main/xom-1.2.10.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-23840', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82220-5', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-80935-0', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-15945', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82214-8', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='PRISMA-2021-0055', package='commons-codec_commons-codec-1.11', package_path=None), Finding(scan_source='anchore_comp', cve_id='abb121e9621abdd452f65844954cf1c1', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='c4ad80832b361f81df2a31e5b6b09864', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23840', package='openssl-libs-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-80938-4', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3572', package='python3-pip-wheel-9.0.3-19.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3537', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82474-8', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3468', package='avahi-libs-0.7-20.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2014-2524', package='readline-2.2', package_path='/opt/jboss/keycloak/bin/client/jboss-cli-client.jar:readline'), Finding(scan_source='anchore_cve', cve_id='CVE-2018-20200', package='okhttp-3.9.0', package_path='/opt/jboss/keycloak/modules/system/layers/base/com/squareup/okhttp3/main/okhttp-3.9.0.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-29425', package='commons-io_commons-io-2.5', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-freebl-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27218', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2014-2524', package='readline-2.2', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/aesh/main/readline-2.2.jar'), Finding(scan_source='anchore_comp', cve_id='bcd159901fe47efddae5c095b4b0d7fd', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='GHSA-gwrp-pvrq-jmwv', package='commons-io-2.5', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/commons/io/main/commons-io-2.5.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82979-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3517', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='320a97c6816565eedf3545833df99dd0', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-24370', package='lua-libs-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='3e5fad1c039f3ecfd1dcdc94d2f1f9a0', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-28153', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27219', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3517', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82168-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23840', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-softokn-3.53.1-17.el8_3', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82494-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-10001', package='cups-libs-2.2.6-38.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-25648', package='nss-softokn-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-24370', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2018-20200', package='com.squareup.okhttp3_okhttp-3.9.0', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-83401-0', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-27219', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='639f6f1177735759703e928c14714a59', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-ts-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-13954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-minimal-langpack-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3537', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='platform-python-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-libs-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20266', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82472-2', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-15945', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82473-0', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82949-9', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-12401', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-28153', package='glib2-2.56.4-9.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82395-5', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-20838', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-dv-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-22876', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20271', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3518', package='libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12406', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='addbb93c22e9b0988b8b40392a4538cb', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82360-9', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='3456a263793066e9b5063ada6e47917d', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='VULNDB-250398', package='freemarker-2.3.29', package_path='/opt/jboss/keycloak/modules/system/layers/keycloak/org/freemarker/main/freemarker-2.3.29.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82880-6', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82368-2', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-16135', package='libssh-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3516', package='python3-libxml2-2.9.7-9.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-sysinit-3.53.1-17.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-10172', package='data mapper for jackson json processor_jackson-mapper-asl-1.9.13', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-build-libs-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3445', package='python3-libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-1954', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='698044205a9c4a6d48b7937e66a6bf4f', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='python3-rpm-4.14.3-13.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-16135', package='libssh-config-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3426', package='python3-libs-3.6.8-37.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23841', package='openssl-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-27645', package='glibc-common-2.28-151.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22696', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-3445', package='libdnf-0.55.0-7.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12419', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-boolean-3.3.1.jar'), Finding(scan_source='oscap_comp', cve_id='CCE-82267-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-17573', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-bug986-3.3.1.jar'), Finding(scan_source='anchore_comp', cve_id='463a9a24225c26f7a5bf3f38908e5cb3', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-12423', package='cxf-3.3.1', package_path='/opt/jboss/keycloak/modules/system/layers/base/org/apache/cxf/impl/main/cxf-xjc-runtime-3.3.1.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2020-12401', package='nss-3.53.1-17.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-24032', package='libzstd-1.4.4-1.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2019-20838', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-20232', package='gnutls-3.6.14-8.el8_3', package_path=None)}
ERROR: NON-WHITELISTED VULNERABILITIES FOUND
ERROR: Number of non-whitelisted vulnerabilities: 3
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-3572                 python3-pip-wheel-9.0.3-19.el8    None                          
ERROR: twistlock_cve                 CVE-2021-29425                commons-io_commons-io-2.5     None                          
ERROR: twistlock_cve                 CVE-2020-16135                libssh-0.9.4-2.el8            None                          
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0100   120  100     2  100   118      2    176  0:00:01 --:--:--  0:00:01   178
section_end:1622551429:step_script[0Ksection_start:1622551429:cleanup_file_variables[0K[0K[36;1mCleaning up file based variables[0;m
[0;msection_end:1622551429:cleanup_file_variables[0K[31;1mERROR: Job failed: command terminated with exit code 1
[0;m