UNCLASSIFIED

Skip to content

GitLab

remove lsb-core

14 jobs for update-deps in 26 minutes and 2 seconds (queued for 25 seconds)
48c9b3a2
1 related merge request: !14 Update deps
Status Job ID Name Coverage
  .Pre
passed #2636371
ironbank
load scripts

00:00:06

 
  Preflight
passed #2636372
ironbank
folder structure

00:00:05

passed #2636373
ironbank
hardening_manifest

00:00:10

 
  Lint
passed #2636374
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2636375
ironbank allowed to fail
vat compare

00:00:07

 
  Import Artifacts
passed #2636376
ironbank
import artifacts

00:00:30

 
  Scan Artifacts
passed #2636377
ironbank
clamav scan

00:16:46

 
  Build
passed #2636378
ironbank-isolated
build

00:02:48

 
  Scanning
passed #2636382
ironbank
anchore scan

00:02:43

passed #2636379
ironbank
openscap compliance

00:01:13

passed #2636380
ironbank
openscap cve

00:03:57

passed #2636381
ironbank
twistlock scan

00:00:43

 
  Csv Output
passed #2636383
ironbank
csv output

00:01:08

 
  Check Cves
failed #2636384
ironbank allowed to fail
check cves

00:00:15

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_comp                  8a505bf7fb2fba2b8b052ab163ae4b29    None                          None                          
ERROR: anchore_comp                  a6cd9f8bdd9dec9dc7c09b763ecd15cd    None                          None                          
ERROR: anchore_comp                  f89c20f291fa34d0b931e2b7c920eefa    None                          None                          
ERROR: twistlock_cve                 CVE-2019-19246                oniguruma-6.8.2-2.el8         None                          
ERROR: twistlock_cve                 CVE-2020-25658                rsa-4.7.2                     None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
('CVE-2020-13776', 'anchore_cve', 'systemd-libs-239-41.el8_3.2\nhttps://access.redhat.com/security/cve/CVE-2020-13776', 'systemd-libs-239-41.el8_3.2', None)
('CVE-2019-20916', 'anchore_cve', 'pip-9.0.3\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-20916', 'pip-9.0.3', '/opt/app-root/lib/python3.6/site-packages/pip')
('CVE-2020-13776', 'twistlock_cve', 'systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.', 'systemd-239-41.el8_3.2', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2636375 responseStatus=201 Created token=vFBgvyBL
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED