UNCLASSIFIED

Skip to content

GitLab

Merge branch 'dep-updates' into 'development' 

update pyyaml and jinja

See merge request dsop/opensource/trufflehog/truffelhog3!15
19 jobs for development in 14 minutes and 17 seconds (queued for 15 minutes and 30 seconds)
5e0e47d7
1 related merge request: !18 Development
Status Job ID Name Coverage
  .Pre
passed #2664340
ironbank
load scripts

00:00:07

 
  Preflight
passed #2664341
ironbank
folder structure

00:00:08

passed #2664342
ironbank
hardening_manifest

00:00:10

 
  Lint
passed #2664343
ironbank
wl compare lint

00:00:11

 
  Finding Compare
failed #2664344
ironbank allowed to fail
vat compare

00:00:10

 
  Import Artifacts
passed #2664345
ironbank
import artifacts

00:00:07

 
  Scan Artifacts
passed #2664346
ironbank
clamav scan

00:02:53

 
  Build
passed #2664347
ironbank-isolated
build

00:02:43

 
  Scanning
passed #2664351
ironbank
anchore scan

00:02:42

passed #2664348
ironbank
openscap compliance

00:01:00

passed #2664349
ironbank
openscap cve

00:04:17

passed #2664350
ironbank
twistlock scan

00:00:33

 
  Csv Output
passed #2664352
ironbank
csv output

00:00:57

 
  Check Cves
failed #2664353
ironbank allowed to fail
check cves

00:00:17

 
  Documentation
passed #2664354
ironbank
sign image

00:00:33

passed #2664355
ironbank
sign manifest

00:00:23

passed #2664356
ironbank
write json documentation

00:00:22

 
  S3 Publish
passed #2664357
ironbank
upload to s3

00:01:38

 
  Vat
passed #2664358
ironbank
vat

00:00:08

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   CVE-2021-3426                 python-3.9.2                  /usr/local/lib/libpython3.9.so.1.0    
ERROR: anchore_cve                   CVE-2021-3449                 python-3.9.2                  /usr/local/lib/libpython3.9.so.1.0    
ERROR: anchore_cve                   CVE-2021-3450                 python-3.9.2                  /usr/local/lib/libpython3.9.so.1.0    
ERROR: anchore_cve                   VULNDB-250117                 python-3.9.2                  /usr/local/lib/libpython3.9.so.1.0    
ERROR: anchore_cve                   VULNDB-253222                 python-3.9.2                  /usr/local/lib/libpython3.9.so.1.0    
ERROR: twistlock_cve                 CVE-2021-23840                openssl-1.1.1g-15.el8_3       None                          
ERROR: twistlock_cve                 CVE-2021-23841                openssl-1.1.1g-15.el8_3       None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
('cbff271f45d32e78dcc1979dbca9c14d', 'anchore_comp', 'User root found as effective user, which is explicity not allowed\n Gate: dockerfile\n Trigger: effective_user\n Policy ID: DoDEffectiveUserChecks', None, None)
('CVE-2020-13776', 'anchore_cve', 'systemd-pam-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-pam-239-41.el8_3.2', None)
('CVE-2020-13776', 'anchore_cve', 'systemd-libs-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-libs-239-41.el8_3.2', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2664344 responseStatus=201 Created token=BNwPkKQQ
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED