Running with gitlab-runner 13.12.0 (7a6612da)  on dsop-shared-gitlab-runner-5fcd8977b8-m6qmr JrExJ6yx  feature flags: FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY:false section_start:1630883778:resolve_secrets Resolving secrets section_end:1630883778:resolve_secrets section_start:1630883778:prepare_executor Preparing the "kubernetes" executor Using Kubernetes namespace: gitlab-runner-ironbank-dsop Using Kubernetes executor with image registry1.dso.mil/ironbank/ironbank-pipelines/pipeline-runner:0.3 ... Using attach strategy to execute scripts... section_end:1630883778:prepare_executor section_start:1630883778:prepare_script Preparing environment Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-5617-concurrent-06v7c7 to be running, status is Pending Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-5617-concurrent-06v7c7 to be running, status is Pending ContainersNotInitialized: "containers with incomplete status: [init-logs istio-init]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-5617-concurrent-06v7c7 to be running, status is Pending ContainersNotReady: "containers with unready status: [build helper istio-proxy]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" Waiting for pod gitlab-runner-ironbank-dsop/runner-jrexj6yx-project-5617-concurrent-06v7c7 to be running, status is Pending ContainersNotReady: "containers with unready status: [build helper istio-proxy]" ContainersNotReady: "containers with unready status: [build helper istio-proxy]" Running on runner-jrexj6yx-project-5617-concurrent-06v7c7 via dsop-shared-gitlab-runner-5fcd8977b8-m6qmr... section_end:1630883790:prepare_script section_start:1630883790:get_sources Getting source from Git repository $ until [ $(curl --fail --silent --output /dev/stderr --write-out "%{http_code}" localhost:15020/healthz/ready) -eq 200 ]; do echo Waiting for Sidecar; sleep 3 ; done ; echo Sidecar available; Sidecar available Fetching changes with git depth set to 50... Initialized empty Git repository in /builds/JrExJ6yx/0/dsop/opensource/seldonio/seldon-core-1.0.1/zookeeper-3.4.8/.git/ Created fresh repository. Checking out 5542982a as master... Skipping Git submodules setup section_end:1630883791:get_sources section_start:1630883791:download_artifacts Downloading artifacts Downloading artifacts for anchore-scan (6251152)... Downloading artifacts from coordinator... ok  id=6251152 responseStatus=200 OK token=yvtFk68X WARNING: ci-artifacts/scan-results/anchore/: lchown ci-artifacts/scan-results/anchore/: operation not permitted (suppressing repeats) Downloading artifacts for hardening-manifest (6251146)... Downloading artifacts from coordinator... ok  id=6251146 responseStatus=200 OK token=pyiKe6bi WARNING: ci-artifacts/preflight/: lchown ci-artifacts/preflight/: operation not permitted (suppressing repeats) Downloading artifacts for load-scripts (6251143)... Downloading artifacts from coordinator... ok  id=6251143 responseStatus=200 OK token=afjBDgzJ WARNING: ci-artifacts/[MASKED]/: lchown ci-artifacts/[MASKED]/: operation not permitted (suppressing repeats) Downloading artifacts for openscap-compliance (6251153)... Downloading artifacts from coordinator... ok  id=6251153 responseStatus=200 OK token=YgDNrBxz WARNING: ci-artifacts/scan-results/openscap/: lchown ci-artifacts/scan-results/openscap/: operation not permitted (suppressing repeats) Downloading artifacts for twistlock-scan (6251154)... Downloading artifacts from coordinator... ok  id=6251154 responseStatus=200 OK token=qe4fPt_j WARNING: ci-artifacts/scan-results/twistlock/: lchown ci-artifacts/scan-results/twistlock/: operation not permitted (suppressing repeats) Downloading artifacts for wl-compare-lint (6251147)... Downloading artifacts from coordinator... ok  id=6251147 responseStatus=200 OK token=xnRM5yzu WARNING: ci-artifacts/lint/: lchown ci-artifacts/lint/: operation not permitted (suppressing repeats) section_end:1630883792:download_artifacts section_start:1630883792:step_script Executing "step_script" stage of the job script $ pip3 install jsonschema # collapsed multi-line command Requirement already satisfied: jsonschema in /usr/local/lib/python3.9/site-packages (3.2.0) Requirement already satisfied: six>=1.11.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (1.15.0) Requirement already satisfied: setuptools in /usr/local/lib/python3.9/site-packages (from jsonschema) (56.1.0) Requirement already satisfied: pyrsistent>=0.14.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (0.17.3) Requirement already satisfied: attrs>=17.4.0 in /usr/local/lib/python3.9/site-packages (from jsonschema) (21.2.0) WARNING: Running pip as root will break packages and permissions. You should install packages reliably by using venv: https://pip.pypa.io/warnings/venv WARNING: You are using pip version 21.1.1; however, version 21.2.4 is available. You should consider upgrading via the '/usr/local/bin/python3.9 -m pip install --upgrade pip' command. INFO: Log level set to info INFO: Number of whitelisted vulnerabilities: 174 WARNING: Error writing log line to trace: transform: short internal buffer one), Finding(scan_source='anchore_cve', cve_id='CVE-2021-23840', package='openssl-libs-1.1.1g-15.el8_3', package_path=None), Finding(scan_source='anchore_comp', cve_id='698044205a9c4a6d48b7937e66a6bf4f', package=None, package_path=None), Finding(scan_source='anchore_comp', cve_id='463a9a24225c26f7a5bf3f38908e5cb3', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22923', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-22925', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82395-5', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-36085', package='libsepol-2.9-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-37750', package='krb5-libs-1.18.2-8.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-17541', package='libjpeg-turbo-1.5.3-10.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-21290', package='io.netty_netty-3.7.0.Final', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-24370', package='lua-5.3.4-11.el8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82214-8', package=None, package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2021-20231', package='gnutls-3.6.14-8.el8_3', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-16135', package='libssh-config-0.9.4-2.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-28153', package='glib2-2.56.4-10.el8_4.1', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22922', package='curl-7.61.1-18.el8', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-20838', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22876', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-9488', package='log4j-1.2.15', package_path='/opt/zookeeper/contrib/rest/lib/log4j-1.2.15.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2020-9488', package='log4j-1.2.16', package_path='/opt/zookeeper/contrib/fatjar/zookeeper-3.4.8-fatjar.jar:log4j'), Finding(scan_source='anchore_cve', cve_id='CVE-2021-3421', package='rpm-build-libs-4.14.3-14.el8_4', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82985-3', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-22898', package='libcurl-7.61.1-18.el8', package_path=None), Finding(scan_source='anchore_cve', cve_id='CVE-2021-35938', package='rpm-4.14.3-14.el8_4', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2020-14155', package='pcre-8.42-4.el8', package_path=None), Finding(scan_source='anchore_comp', cve_id='639f6f1177735759703e928c14714a59', package=None, package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82979-6', package=None, package_path=None), Finding(scan_source='anchore_cve', cve_id='GHSA-2qrg-x229-3v8q', package='log4j-1.2.15', package_path='/opt/zookeeper/contrib/rest/lib/log4j-1.2.15.jar'), Finding(scan_source='anchore_cve', cve_id='CVE-2017-5637', package='zookeeper-3.4.8', package_path='/opt/zookeeper/dist-maven/zookeeper-3.4.8.jar'), Finding(scan_source='twistlock_cve', cve_id='CVE-2019-17571', package='log4j_log4j-1.2.16', package_path=None), Finding(scan_source='twistlock_cve', cve_id='CVE-2017-5637', package='org.apache.zookeeper_zookeeper-3.4.8', package_path=None), Finding(scan_source='oscap_comp', cve_id='CCE-82880-6', package=None, package_path=None)} INFO: Vulnerabilities found in scanning stage: 184 WARNING: Error writing log line to trace: transform: short internal buffer WARNING: Error writing log line to trace: transform: short internal buffer ERROR: NON-WHITELISTED VULNERABILITIES FOUND ERROR: Number of non-whitelisted vulnerabilities: 15 ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: twistlock_cve CVE-2007-3716 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-1191 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-3103 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-3105 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-3106 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-3109 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-3110 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-5347 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-5349 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-5352 java-1.8.0_302 None ERROR: twistlock_cve CVE-2008-5358 java-1.8.0_302 None ERROR: twistlock_cve CVE-2021-33928 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33929 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33930 libsolv-0.7.16-2.el8 None ERROR: twistlock_cve CVE-2021-33938 libsolv-0.7.16-2.el8 None % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 150 0 0 100 150 0 123 0:00:01 0:00:01 --:--:-- 123 100 152 100 2 100 150 1 93 0:00:02 0:00:01 0:00:01 95 HTTP/2 200 content-type: text/plain vary: Origin x-request-id: 4sszzfr65tndjfo5frznf6s39h x-version-id: 5.36.1.5.36.1.54569ef7a6929df40167a35ad2417543.true date: Sun, 05 Sep 2021 23:16:35 GMT content-length: 2 x-envoy-upstream-service-time: 1552 server: istio-envoy ok section_end:1630883796:step_script section_start:1630883796:cleanup_file_variables Cleaning up file based variables section_end:1630883796:cleanup_file_variables ERROR: Job failed: command terminated with exit code 1