UNCLASSIFIED

Merge branch 'renovate/node' into 'development'

Update node:10.24 Docker digest to 3817b91

See merge request !16
19 jobs for development in 26 minutes and 56 seconds (queued for 28 minutes and 22 seconds)
Status Job ID Name Coverage
  .Pre
passed #2649781
ironbank
load scripts

00:00:15

 
  Preflight
passed #2649782
ironbank
folder structure

00:00:26

passed #2649783
ironbank
hardening_manifest

00:00:36

 
  Lint
passed #2649784
ironbank
wl compare lint

00:00:29

 
  Finding Compare
failed #2649785
ironbank allowed to fail
vat compare

00:00:30

 
  Import Artifacts
passed #2649786
ironbank
import artifacts

00:03:07

 
  Scan Artifacts
passed #2649787
ironbank
clamav scan

00:07:38

 
  Build
passed #2649788
ironbank-isolated
build

00:03:48

 
  Scanning
passed #2649792
ironbank
anchore scan

00:03:58

passed #2649789
ironbank
openscap compliance

00:01:58

passed #2649790
ironbank
openscap cve

00:07:01

passed #2649791
ironbank
twistlock scan

00:00:33

 
  Csv Output
passed #2649793
ironbank
csv output

00:01:04

 
  Check Cves
failed #2649794
ironbank allowed to fail
check cves

00:00:20

 
  Documentation
passed #2649795
ironbank
sign image

00:00:35

passed #2649796
ironbank
sign manifest

00:00:30

passed #2649797
ironbank
write json documentation

00:00:27

 
  S3 Publish
passed #2649798
ironbank
upload to s3

00:01:17

 
  Vat
passed #2649799
ironbank
vat

00:00:09

 
Name Stage Failure
failed
check cves Check Cves
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve CVE-2021-27290 ssri-6.0.1 /usr/local/lib/node_modules/npm/node_modules/ssri/package.json
ERROR: anchore_cve GHSA-vx3p-948g-6vhq ssri-6.0.1 /usr/local/lib/node_modules/npm/node_modules/ssri/package.json
ERROR: anchore_cve CVE-2020-7774 y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json
ERROR: anchore_cve GHSA-c4w7-xm78-47vh y18n-4.0.0 /usr/local/lib/node_modules/npm/node_modules/y18n/package.json
ERROR: twistlock_cve CVE-2021-27290 ssri-6.0.1 None
ERROR: twistlock_cve CVE-2020-7774 y18n-4.0.0 None
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare
('CVE-2021-22876', 'anchore_cve', 'libcurl-7.61.1-14.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2021-22876', 'libcurl-7.61.1-14.el8_3.1', None)
('CVE-2021-22876', 'twistlock_cve', 'curl 7.1.1 to and including 7.75.0 is vulnerable to an \\"Exposure of Private Personal Information to an Unauthorized Actor\\" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.', 'curl-7.61.1-14.el8_3.1', None)
('CVE-2021-20305', 'anchore_cve', 'gnutls-3.6.14-7.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-20305', 'gnutls-3.6.14-7.el8_3', None)
Uploading artifacts for failed job
ci-artifacts/compare/: found 2 matching files and directories
Uploading artifacts...
Uploading artifacts as "archive" to coordinator... ok
id=2649785 responseStatus=201 Created token=DHssoPrb
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4