UNCLASSIFIED

Skip to content

GitLab

Merge branch 'update-node' into 'development' 

Update Dockerfile, hardening_manifest.yaml files

See merge request !8
14 jobs for test-dev in 9 minutes and 22 seconds (queued for 7 seconds)
c873d708
No related merge requests found.
Status Job ID Name Coverage
  .Pre
passed #2606230
ironbank
load scripts

00:00:06

 
  Preflight
passed #2606231
ironbank
folder structure

00:00:05

passed #2606232
ironbank
hardening_manifest

00:00:14

 
  Lint
passed #2606233
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2606234
ironbank allowed to fail
vat compare

00:00:10

 
  Import Artifacts
passed #2606235
ironbank
import artifacts

00:00:09

 
  Scan Artifacts
passed #2606236
ironbank
clamav scan

00:01:05

 
  Build
passed #2606237
ironbank-isolated
build

00:01:50

 
  Scanning
passed #2606241
ironbank
anchore scan

00:03:10

passed #2606238
ironbank
openscap compliance

00:00:58

passed #2606239
ironbank
openscap cve

00:04:15

passed #2606240
ironbank
twistlock scan

00:00:31

 
  Csv Output
passed #2606242
ironbank
csv output

00:01:00

 
  Check Cves
failed #2606243
ironbank allowed to fail
check cves

00:00:18

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   CVE-2020-28500                lodash-4.17.20                /opt/mountebank/node_modules/lodash/package.json    
ERROR: anchore_cve                   CVE-2021-23337                lodash-4.17.20                /opt/mountebank/node_modules/lodash/package.json    
ERROR: anchore_cve                   CVE-2021-21366                xmldom-0.4.0                  /opt/mountebank/node_modules/xmldom/package.json    
ERROR: anchore_cve                   GHSA-h6q6-9hqw-rwfv           xmldom-0.4.0                  /opt/mountebank/node_modules/xmldom/package.json    
ERROR: twistlock_cve                 CVE-2020-28500                lodash-4.17.20                None                          
ERROR: twistlock_cve                 CVE-2021-23337                lodash-4.17.20                None                          
ERROR: twistlock_cve                 CVE-2021-21366                xmldom-0.4.0                  None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
Findings from direct query not in api
('cbff271f45d32e78dcc1979dbca9c14d', 'anchore_comp', 'User root found as effective user, which is explicity not allowed\n Gate: dockerfile\n Trigger: effective_user\n Policy ID: DoDEffectiveUserChecks', None, None)
('41cb7cdf04850e33a11f80c42bf660b3', 'anchore_comp', "Dockerfile directive 'HEALTHCHECK' not found, matching condition 'not_exists' check\n Gate: dockerfile\n Trigger: instruction\n Policy ID: DoDDockerfileChecks", None, None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2606234 responseStatus=201 Created token=W5vhURM8
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED