[0KRunning with gitlab-runner 13.8.0 (775dd39d)
[0;m[0K  on global-shared-gitlab-runner-89dbd4db8-mnp6b RKzCU9YR
[0;msection_start:1617982949:resolve_secrets[0K[0K[36;1mResolving secrets[0;m
[0;msection_end:1617982949:resolve_secrets[0Ksection_start:1617982949:prepare_executor[0K[0K[36;1mPreparing the "kubernetes" executor[0;m
[0;m[0KUsing Kubernetes namespace: gitlab-runner
[0;m[0;33mWARNING: Pulling GitLab Runner helper image from Docker Hub. Helper image is migrating to registry.gitlab.com, for more information see https://docs.gitlab.com/runner/configuration/advanced-configuration.html#migrating-helper-image-to-registrygitlabcom
[0;m[0KUsing Kubernetes executor with image ${GITLAB_INTERNAL_REGISTRY}/ironbank-tools/ironbank-pipeline/ib-pipeline-image:0.1 ...
[0;msection_end:1617982949:prepare_executor[0Ksection_start:1617982949:prepare_script[0K[0K[36;1mPreparing environment[0;m
[0;mWaiting for pod gitlab-runner/runner-rkzcu9yr-project-5780-concurrent-0l8pwg to be running, status is Pending
Waiting for pod gitlab-runner/runner-rkzcu9yr-project-5780-concurrent-0l8pwg to be running, status is Pending
	ContainersNotReady: "containers with unready status: [build helper]"
	ContainersNotReady: "containers with unready status: [build helper]"
Running on runner-rkzcu9yr-project-5780-concurrent-0l8pwg via global-shared-gitlab-runner-89dbd4db8-mnp6b...
section_end:1617982955:prepare_script[0Ksection_start:1617982955:get_sources[0K[0K[36;1mGetting source from Git repository[0;m
[0;m[32;1mFetching changes with git depth set to 50...[0;m
Initialized empty Git repository in /builds/dsop/opensource/trufflehog/truffelhog3/.git/
[32;1mCreated fresh repository.[0;m
[32;1mChecking out 5e0e47d7 as development...[0;m

[32;1mSkipping Git submodules setup[0;m
section_end:1617982956:get_sources[0Ksection_start:1617982956:download_artifacts[0K[0K[36;1mDownloading artifacts[0;m
[0;m[32;1mDownloading artifacts for hardening_manifest (2664342)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2664342 responseStatus[0;m=200 OK token[0;m=EauLWC4r
[32;1mDownloading artifacts for load scripts (2664340)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2664340 responseStatus[0;m=200 OK token[0;m=dM2fmJpi
[32;1mDownloading artifacts for wl compare lint (2664343)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2664343 responseStatus[0;m=200 OK token[0;m=BkCDXsyq
section_end:1617982956:download_artifacts[0Ksection_start:1617982956:step_script[0K[0K[36;1mExecuting "step_script" stage of the job script[0;m
[0;m[32;1m$ mkdir -p "${ARTIFACT_DIR}"[0;m
[32;1m$ set +e[0;m
[32;1m$ python3 "${PIPELINE_REPO_DIR}/stages/vat-finding-compare/vat_findings.py"[0;m
api set length: 142
db set length: 142
Findings are NOT the same!
There are CVEs from the api that are not returned by the query
There are CVEs from the query that are not returned by the api
Please run the development branch for this project before validating query/api data
Findings from api not in direct query
('CVE-2020-13776', 'anchore_cve', 'systemd-239-41.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-239-41.el8_3.1', None)
('VULNDB-250117', 'anchore_cve', 'python-3.9.2\nBug Tracker: https://bugs.python.org/issue43285\nVendor Specific Solution URL: https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e\nVendor Specific Solution URL: https://github.com/python/cpython/commit/7dcb4baa4f0fde3aef5122a8e9f6a41853ec9335\nVendor Specific Solution URL: https://github.com/python/cpython/commit/664d1d16274b47eea6ec92572e1ebf3939a6fa0c\nVendor Specific News/Changelog Entry: https://pythoninsider.blogspot.com/2021/04/python-393-and-389-are-now-available.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PythonInsider+%28Python+Insider%29\nVendor Specific News/Changelog Entry: https://www.python.org/downloads/release/python-393/\nVendor Specific News/Changelog Entry: https://www.python.org/downloads/release/python-389/\nVendor Specific News/Changelog Entry: https://pythoninsider.blogspot.com/2021/04/python-394-hotfix-is-now-available.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PythonInsider+%28Python+Insider%29\nVendor Specific News/Changelog Entry: https://docs.python.org/release/3.8.9/whatsnew/changelog.html#python-3-8-9\nVendor Specific News/Changelog Entry: https://docs.python.org/release/3.9.4/whatsnew/changelog.html#changelog\n', 'python-3.9.2', '/usr/local/lib/libpython3.9.so.1.0')
('CVE-2020-13776', 'anchore_cve', 'systemd-pam-239-41.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-pam-239-41.el8_3.1', None)
('CVE-2020-13776', 'anchore_cve', 'systemd-libs-239-41.el8_3.1\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-libs-239-41.el8_3.1', None)
('CVE-2020-13776', 'twistlock_cve', 'systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.', 'systemd-239-41.el8_3.1', None)
Findings from direct query not in api
('CVE-2020-13776', 'anchore_cve', 'systemd-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-239-41.el8_3.2', None)
('CVE-2020-13776', 'twistlock_cve', 'systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.', 'systemd-239-41.el8_3.2', None)
('cbff271f45d32e78dcc1979dbca9c14d', 'anchore_comp', 'User root found as effective user, which is explicity not allowed\n Gate: dockerfile\n Trigger: effective_user\n Policy ID: DoDEffectiveUserChecks', None, None)
('CVE-2020-13776', 'anchore_cve', 'systemd-pam-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-pam-239-41.el8_3.2', None)
('CVE-2020-13776', 'anchore_cve', 'systemd-libs-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-libs-239-41.el8_3.2', None)
section_end:1617982956:step_script[0Ksection_start:1617982956:upload_artifacts_on_failure[0K[0K[36;1mUploading artifacts for failed job[0;m
[0;m[32;1mUploading artifacts...[0;m
ci-artifacts/compare/: found 2 matching files and directories[0;m 
Uploading artifacts as "archive" to coordinator... ok[0;m  id[0;m=2664344 responseStatus[0;m=201 Created token[0;m=BNwPkKQQ
section_end:1617982957:upload_artifacts_on_failure[0Ksection_start:1617982957:cleanup_file_variables[0K[0K[36;1mCleaning up file based variables[0;m
[0;msection_end:1617982958:cleanup_file_variables[0K[31;1mERROR: Job failed: command terminated with exit code 4
[0;m