UNCLASSIFIED

Skip to content

GitLab

Merge branch 'renovate/node' into 'development' 

Update node:10.24 Docker digest to 3817b91

See merge request !16
19 jobs for development in 26 minutes and 56 seconds (queued for 28 minutes and 22 seconds)
a86268b4
1 related merge request: !20 Development
Status Job ID Name Coverage
  .Pre
passed #2649781
ironbank
load scripts

00:00:15

 
  Preflight
passed #2649782
ironbank
folder structure

00:00:26

passed #2649783
ironbank
hardening_manifest

00:00:36

 
  Lint
passed #2649784
ironbank
wl compare lint

00:00:29

 
  Finding Compare
failed #2649785
ironbank allowed to fail
vat compare

00:00:30

 
  Import Artifacts
passed #2649786
ironbank
import artifacts

00:03:07

 
  Scan Artifacts
passed #2649787
ironbank
clamav scan

00:07:38

 
  Build
passed #2649788
ironbank-isolated
build

00:03:48

 
  Scanning
passed #2649792
ironbank
anchore scan

00:03:58

passed #2649789
ironbank
openscap compliance

00:01:58

passed #2649790
ironbank
openscap cve

00:07:01

passed #2649791
ironbank
twistlock scan

00:00:33

 
  Csv Output
passed #2649793
ironbank
csv output

00:01:04

 
  Check Cves
failed #2649794
ironbank allowed to fail
check cves

00:00:20

 
  Documentation
passed #2649795
ironbank
sign image

00:00:35

passed #2649796
ironbank
sign manifest

00:00:30

passed #2649797
ironbank
write json documentation

00:00:27

 
  S3 Publish
passed #2649798
ironbank
upload to s3

00:01:17

 
  Vat
passed #2649799
ironbank
vat

00:00:09

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-27290                ssri-6.0.1                    /usr/local/lib/node_modules/npm/node_modules/ssri/package.json    
ERROR: anchore_cve                   GHSA-vx3p-948g-6vhq           ssri-6.0.1                    /usr/local/lib/node_modules/npm/node_modules/ssri/package.json    
ERROR: anchore_cve                   CVE-2020-7774                 y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: anchore_cve                   GHSA-c4w7-xm78-47vh           y18n-4.0.0                    /usr/local/lib/node_modules/npm/node_modules/y18n/package.json    
ERROR: twistlock_cve                 CVE-2021-27290                ssri-6.0.1                    None                          
ERROR: twistlock_cve                 CVE-2020-7774                 y18n-4.0.0                    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
('CVE-2021-22876', 'anchore_cve', 'libcurl-7.61.1-14.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2021-22876', 'libcurl-7.61.1-14.el8_3.1', None)
('CVE-2021-22876', 'twistlock_cve', 'curl 7.1.1 to and including 7.75.0 is vulnerable to an \\"Exposure of Private Personal Information to an Unauthorized Actor\\" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.', 'curl-7.61.1-14.el8_3.1', None)
('CVE-2021-20305', 'anchore_cve', 'gnutls-3.6.14-7.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-20305', 'gnutls-3.6.14-7.el8_3', None)
Uploading artifacts for failed job
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts...
Uploading artifacts as "archive" to coordinator... ok  id=2649785 responseStatus=201 Created token=DHssoPrb
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED