[0KRunning with gitlab-runner 13.8.0 (775dd39d)
[0;m[0K  on global-shared-gitlab-runner-89dbd4db8-gbfgw 79hzYLUT
[0;msection_start:1614016827:resolve_secrets[0K[0K[36;1mResolving secrets[0;m
[0;msection_end:1614016827:resolve_secrets[0Ksection_start:1614016827:prepare_executor[0K[0K[36;1mPreparing the "kubernetes" executor[0;m
[0;m[0KUsing Kubernetes namespace: gitlab-runner
[0;m[0;33mWARNING: Pulling GitLab Runner helper image from Docker Hub. Helper image is migrating to registry.gitlab.com, for more information see https://docs.gitlab.com/runner/configuration/advanced-configuration.html#migrating-helper-image-to-registrygitlabcom
[0;m[0KUsing Kubernetes executor with image ${GITLAB_INTERNAL_REGISTRY}/ironbank-tools/ironbank-pipeline/ib-pipeline-image:0.1 ...
[0;msection_end:1614016827:prepare_executor[0Ksection_start:1614016827:prepare_script[0K[0K[36;1mPreparing environment[0;m
[0;mWaiting for pod gitlab-runner/runner-79hzylut-project-1350-concurrent-0frn5k to be running, status is Pending
Running on runner-79hzylut-project-1350-concurrent-0frn5k via global-shared-gitlab-runner-89dbd4db8-gbfgw...
section_end:1614016830:prepare_script[0Ksection_start:1614016831:get_sources[0K[0K[36;1mGetting source from Git repository[0;m
[0;m[32;1mFetching changes with git depth set to 50...[0;m
Initialized empty Git repository in /builds/dsop/pivotal/rabbitmq/rabbitmq38-management/.git/
[32;1mCreated fresh repository.[0;m
[32;1mChecking out b93d4c05 as development...[0;m

[32;1mSkipping Git submodules setup[0;m
section_end:1614016831:get_sources[0Ksection_start:1614016831:download_artifacts[0K[0K[36;1mDownloading artifacts[0;m
[0;m[32;1mDownloading artifacts for load scripts (2095158)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095158 responseStatus[0;m=200 OK token[0;m=qmzsx33t
[32;1mDownloading artifacts for hardening_manifest (2095161)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095161 responseStatus[0;m=200 OK token[0;m=w2MtK6HP
[32;1mDownloading artifacts for wl compare lint (2095162)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095162 responseStatus[0;m=200 OK token[0;m=XshnAQZP
[32;1mDownloading artifacts for openscap compliance (2095166)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095166 responseStatus[0;m=200 OK token[0;m=qQgzxSEu
[32;1mDownloading artifacts for openscap cve (2095167)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095167 responseStatus[0;m=200 OK token[0;m=Boqx7Tbo
[32;1mDownloading artifacts for twistlock scan (2095168)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095168 responseStatus[0;m=200 OK token[0;m=Wz41gZcU
[32;1mDownloading artifacts for anchore scan (2095169)...[0;m
Downloading artifacts from coordinator... ok      [0;m  id[0;m=2095169 responseStatus[0;m=200 OK token[0;m=zc_N6NQc
section_end:1614016832:download_artifacts[0Ksection_start:1614016832:step_script[0K[0K[36;1mExecuting "step_script" stage of the job script[0;m
[0;m[32;1m$ pip3 install jsonschema[0;m
Collecting jsonschema
  Downloading jsonschema-3.2.0-py2.py3-none-any.whl (56 kB)
Collecting importlib-metadata; python_version < "3.8"
  Downloading importlib_metadata-3.4.0-py3-none-any.whl (10 kB)
Requirement already satisfied: six>=1.11.0 in /opt/app-root/lib/python3.6/site-packages (from jsonschema) (1.15.0)
Requirement already satisfied: setuptools in /opt/app-root/lib/python3.6/site-packages (from jsonschema) (39.2.0)
Collecting attrs>=17.4.0
  Downloading attrs-20.3.0-py2.py3-none-any.whl (49 kB)
Collecting pyrsistent>=0.14.0
  Downloading pyrsistent-0.17.3.tar.gz (106 kB)
Collecting zipp>=0.5
  Downloading zipp-3.4.0-py3-none-any.whl (5.2 kB)
Collecting typing-extensions>=3.6.4; python_version < "3.8"
  Downloading typing_extensions-3.7.4.3-py3-none-any.whl (22 kB)
Building wheels for collected packages: pyrsistent
  Building wheel for pyrsistent (setup.py): started
  Building wheel for pyrsistent (setup.py): finished with status 'done'
  Created wheel for pyrsistent: filename=pyrsistent-0.17.3-cp36-cp36m-linux_x86_64.whl size=55876 sha256=6ef017b47fa852b627813107a4bb63c4e41914cf31abfb6acba72e3e92827342
  Stored in directory: /tmp/pip-ephem-wheel-cache-h6cmnnhj/wheels/34/13/19/294da8e11bce7e563afee51251b9fa878185e14f4b5caf00cb
Successfully built pyrsistent
Installing collected packages: zipp, typing-extensions, importlib-metadata, attrs, pyrsistent, jsonschema
Successfully installed attrs-20.3.0 importlib-metadata-3.4.0 jsonschema-3.2.0 pyrsistent-0.17.3 typing-extensions-3.7.4.3 zipp-3.4.0
WARNING: You are using pip version 20.2.4; however, version 21.0.1 is available.
You should consider upgrading via the '/opt/app-root/bin/python3.6 -m pip install --upgrade pip' command.
[32;1m$ python3 "${PIPELINE_REPO_DIR}/stages/check-cves/pipeline_wl_compare.py"[0;m
INFO: Log level set to info
INFO: Number of whitelisted vulnerabilities: 108
INFO: Whitelisted vulnerabilities: {'oscapcomp_CCE-82494-6', 'anchorecve_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'anchorecomp_c4ad80832b361f81df2a31e5b6b09864', 'oscapcomp_CCE-82979-6', 'anchorecve_CVE-2020-13776-systemd-239-41.el8_3.1', 'oscapcomp_CCE-80784-2', 'anchorecve_CVE-2020-8285-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-24370-lua-libs-5.3.4-11.el8', 'anchorecomp_320a97c6816565eedf3545833df99dd0', 'anchorecomp_3e5fad1c039f3ecfd1dcdc94d2f1f9a0', 'anchorecomp_abb121e9621abdd452f65844954cf1c1', 'anchorecve_CVE-2020-8286-libcurl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82360-9', 'anchorecve_CVE-2020-27618-glibc-common-2.28-127.el8', 'anchorecve_CVE-2020-35512-dbus-libs-1.12.8-12.el8_3', 'anchorecve_CVE-2020-16135-libssh-config-0.9.4-2.el8', 'anchorecve_CVE-2020-13434-sqlite-libs-3.26.0-11.el8', 'anchorecomp_34de21e516c0ca50a96e5386f163f8bf', 'anchorecve_CVE-2019-25013-glibc-minimal-langpack-2.28-127.el8_3.2', 'tl_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-15358-sqlite-libs-3.26.0-11.el8', 'anchorecomp_68e630cef4a8533b139875aa5fc54da5', 'oscapcomp_CCE-82267-6', 'anchorecve_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'oscapcomp_CCE-80935-0', 'anchorecve_CVE-2019-25013-glibc-minimal-langpack-2.28-127.el8', 'anchorecve_CVE-2020-35512-dbus-tools-1.12.8-11.el8', 'anchorecomp_e7573262736ef52353cde3bae2617782', 'anchorecve_CVE-2020-35512-dbus-daemon-1.12.8-12.el8_3', 'anchorecve_CVE-2020-27618-glibc-common-2.28-127.el8_3.2', 'anchorecve_CVE-2019-25013-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-24977-libxml2-2.9.7-8.el8', 'oscapcomp_CCE-82368-2', 'anchorecomp_41cb7cdf04850e33a11f80c42bf660b3', 'tl_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2019-25013-glibc-2.28-127.el8', 'anchorecve_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82959-8', 'oscapcomp_CCE-82168-6', 'anchorecve_CVE-2021-3326-glibc-minimal-langpack-2.28-127.el8_3.2', 'anchorecve_CVE-2020-35512-dbus-1.12.8-11.el8', 'tl_CVE-2021-3326-glibc-2.28-127.el8', 'oscapcomp_CCE-82880-6', 'anchorecomp_3456a263793066e9b5063ada6e47917d', 'anchorecve_CVE-2020-35512-dbus-tools-1.12.8-12.el8_3', 'anchorecve_CVE-2021-3326-glibc-2.28-127.el8', 'anchorecve_CVE-2020-29361-p11-kit-trust-0.23.14-5.el8_0', 'oscapcomp_CCE-82474-8', 'anchorecve_CVE-2020-35512-dbus-1.12.8-12.el8_3', 'oscapcomp_CCE-82472-2', 'anchorecve_CVE-2020-16135-libssh-0.9.4-2.el8', 'anchorecve_CVE-2020-28196-krb5-libs-1.18.2-5.el8', 'anchorecve_CVE-2019-25013-glibc-common-2.28-127.el8', 'anchorecve_CVE-2020-35512-dbus-daemon-1.12.8-11.el8', 'tl_CVE-2019-25013-glibc-2.28-127.el8', 'anchorecve_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'anchorecomp_addbb93c22e9b0988b8b40392a4538cb', 'anchorecomp_463a9a24225c26f7a5bf3f38908e5cb3', 'anchorecve_CVE-2020-8231-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-35512-dbus-libs-1.12.8-11.el8', 'tl_CVE-2019-25013-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2021-3326-glibc-minimal-langpack-2.28-127.el8', 'oscapcomp_CCE-82949-9', 'anchorecomp_c2e44319ae5b3b040044d8ae116d1c2f', 'anchorecve_CVE-2020-26116-python3-libs-3.6.8-31.el8', 'anchorecve_CVE-2020-29362-p11-kit-trust-0.23.14-5.el8_0', 'anchorecve_CVE-2020-13776-systemd-pam-239-41.el8_3.1', 'oscapcomp_CCE-82473-0', 'anchorecve_CVE-2020-27618-glibc-minimal-langpack-2.28-127.el8_3.2', 'anchorecve_CVE-2020-27618-glibc-2.28-127.el8', 'anchorecve_CVE-2021-3326-glibc-common-2.28-127.el8_3.2', 'tl_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82985-3', 'anchorecve_CVE-2020-27619-platform-python-3.6.8-31.el8', 'oscapcomp_CCE-80938-4', 'anchorecve_CVE-2021-3326-glibc-2.28-127.el8_3.2', 'oscapcomp_CCE-82395-5', 'anchorecve_CVE-2020-35512-dbus-common-1.12.8-12.el8_3', 'tl_CVE-2021-3326-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-27619-python3-libs-3.6.8-31.el8', 'anchorecomp_698044205a9c4a6d48b7937e66a6bf4f', 'anchorecve_CVE-2020-8927-brotli-1.0.6-2.el8', 'anchorecomp_bcd159901fe47efddae5c095b4b0d7fd', 'tl_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-27618-glibc-2.28-127.el8_3.2', 'anchorecve_CVE-2020-24977-python3-libxml2-2.9.7-8.el8', 'tl_CVE-2020-13776-systemd-239-41.el8_3.1', 'anchorecve_CVE-2020-26116-platform-python-3.6.8-31.el8', 'anchorecve_CVE-2020-29363-p11-kit-trust-0.23.14-5.el8_0', 'tl_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'anchorecomp_639f6f1177735759703e928c14714a59', 'anchorecve_CVE-2020-35512-dbus-common-1.12.8-11.el8', 'oscapcomp_CCE-82214-8', 'tl_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-13776-systemd-libs-239-41.el8_3.1', 'anchorecve_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'anchorecve_VULNDB-115884-urllib3-1.24.2', 'anchorecve_CVE-2020-26137-python3-urllib3-1.24.2-4.el8', 'anchorecve_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-27618-glibc-minimal-langpack-2.28-127.el8', 'tl_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2019-25013-glibc-common-2.28-127.el8_3.2', 'oscapcomp_CCE-83401-0', 'anchorecve_CVE-2020-8284-libcurl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82220-5', 'tl_CVE-2020-8927-brotli-1.0.6-2.el8', 'anchorecve_CVE-2021-3326-glibc-common-2.28-127.el8'}
INFO: Vulnerabilities found in scanning stage: 76
INFO: {'oscapcomp_CCE-82494-6', 'anchorecve_CVE-2020-15358-sqlite-libs-3.26.0-11.el8', 'oscapcomp_CCE-82472-2', 'anchorecve_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-16135-libssh-0.9.4-2.el8', 'oscapcomp_CCE-82267-6', 'anchorecve_CVE-2020-28196-krb5-libs-1.18.2-5.el8', 'anchorecve_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'tl_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2019-25013-glibc-common-2.28-127.el8', 'anchorecve_CVE-2020-35512-dbus-daemon-1.12.8-11.el8', 'anchorecve_CVE-2020-24977-python3-libxml2-2.9.7-8.el8', 'tl_CVE-2019-25013-glibc-2.28-127.el8', 'oscapcomp_CCE-82979-6', 'oscapcomp_CCE-80935-0', 'tl_CVE-2020-13776-systemd-239-41.el8_3.1', 'anchorecve_CVE-2020-29362-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-26116-platform-python-3.6.8-31.el8', 'anchorecve_CVE-2020-29363-p11-kit-trust-0.23.14-5.el8_0', 'tl_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-13776-systemd-239-41.el8_3.1', 'anchorecve_CVE-2019-25013-glibc-minimal-langpack-2.28-127.el8', 'oscapcomp_CCE-80784-2', 'anchorecve_CVE-2020-35512-dbus-common-1.12.8-11.el8', 'oscapcomp_CCE-82214-8', 'tl_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-35512-dbus-libs-1.12.8-11.el8', 'anchorecve_CVE-2020-8231-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-35512-dbus-tools-1.12.8-11.el8', 'anchorecve_CVE-2021-3326-glibc-minimal-langpack-2.28-127.el8', 'anchorecve_CVE-2020-8285-libcurl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82949-9', 'anchorecve_CVE-2020-24370-lua-libs-5.3.4-11.el8', 'anchorecve_CVE-2020-13776-systemd-libs-239-41.el8_3.1', 'anchorecve_CVE-2020-8231-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-26116-python3-libs-3.6.8-31.el8', 'anchorecve_CVE-2020-8286-libcurl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-29362-p11-kit-trust-0.23.14-5.el8_0', 'anchorecve_CVE-2020-13776-systemd-pam-239-41.el8_3.1', 'oscapcomp_CCE-82473-0', 'tl_CVE-2020-8927-brotli-1.0.6-2.el8', 'anchorecve_CVE-2020-27618-glibc-2.28-127.el8', 'anchorecve_CVE-2020-29361-p11-kit-trust-0.23.14-5.el8_0', 'oscapcomp_CCE-82360-9', 'tl_CVE-2020-8285-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-27618-glibc-common-2.28-127.el8', 'oscapcomp_CCE-82985-3', 'anchorecve_CVE-2020-24977-libxml2-2.9.7-8.el8', 'oscapcomp_CCE-82368-2', 'oscapcomp_CCE-80938-4', 'anchorecve_CVE-2020-27619-platform-python-3.6.8-31.el8', 'anchorecve_CVE-2020-16135-libssh-config-0.9.4-2.el8', 'tl_CVE-2020-29363-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2020-8284-curl-7.61.1-14.el8_3.1', 'anchorecve_CVE-2020-27618-glibc-minimal-langpack-2.28-127.el8', 'anchorecve_CVE-2020-13434-sqlite-libs-3.26.0-11.el8', 'tl_CVE-2020-29361-p11-kit-0.23.14-5.el8_0', 'anchorecve_CVE-2019-25013-glibc-2.28-127.el8', 'anchorecve_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'oscapcomp_CCE-82959-8', 'oscapcomp_CCE-82395-5', 'oscapcomp_CCE-82168-6', 'anchorecve_CVE-2020-35512-dbus-1.12.8-11.el8', 'anchorecve_CVE-2020-27619-python3-libs-3.6.8-31.el8', 'oscapcomp_CCE-83401-0', 'anchorecve_CVE-2020-8284-libcurl-7.61.1-14.el8_3.1', 'anchorecve_VULNDB-229216-pip-9.0.3', 'oscapcomp_CCE-82880-6', 'oscapcomp_CCE-82220-5', 'tl_CVE-2020-8286-curl-7.61.1-14.el8_3.1', 'tl_CVE-2021-3326-glibc-2.28-127.el8', 'anchorecve_CVE-2020-8927-brotli-1.0.6-2.el8', 'anchorecve_CVE-2021-3326-glibc-2.28-127.el8', 'oscapcomp_CCE-82474-8', 'anchorecve_CVE-2021-3326-glibc-common-2.28-127.el8'}
ERROR: NON-WHITELISTED VULNERABILITIES FOUND
ERROR: Number of non-whitelisted vulnerabilities: 1
ERROR: The following vulnerabilities are not whitelisted:
ERROR: Anchore CVE - VULNDB-229216-pip-9.0.3
section_end:1614016840:step_script[0Ksection_start:1614016840:cleanup_file_variables[0K[0K[36;1mCleaning up file based variables[0;m
[0;msection_end:1614016840:cleanup_file_variables[0K[31;1mERROR: Job failed: command terminated with exit code 1
[0;m