Pipeline · Ironbank Containers / Security Compass / SD Elements / reporting

Merge branch 'fix/CVE-2021-22918' into 'development'

addressing twistlock finding

See merge request !21

16 jobs for development in 25 minutes (queued for 25 minutes and 52 seconds)

db3479d4

Status	Job ID	Name
.Pre
passed	#5375480	load-scripts	00:00:17 Aug 04, 2021

Preflight
passed	#5375482	folder-structure	00:00:19 Aug 04, 2021
passed	#5375483	hardening-manifest	00:00:22 Aug 04, 2021
passed	#5375481	trufflehog	00:00:13 Aug 04, 2021

Lint
passed	#5375484	wl-compare-lint	00:00:17 Aug 04, 2021

Import Artifacts
passed	#5375485	import-artifacts	00:00:24 Aug 04, 2021

Scan Artifacts
passed	#5375486	clamav-scan	00:01:43 Aug 04, 2021

Build
passed	#5375487	build	00:02:47 Aug 04, 2021

Scanning
passed	#5375488	anchore-scan	00:08:00 Aug 04, 2021
passed	#5375489 ironbank-dsop-privileged	openscap-compliance	00:01:26 Aug 04, 2021
passed	#5375490	twistlock-scan	00:15:22 Aug 04, 2021

Csv Output
passed	#5375491	csv-output	00:00:51 Aug 04, 2021

Check Cves
failed	#5375492 allowed to fail	check-cves	00:00:13 Aug 04, 2021

Documentation
passed	#5375493	documentation	00:01:01 Aug 04, 2021

S3 Publish
passed	#5375494	upload-to-s3	00:01:13 Aug 04, 2021

Vat
passed	#5375495	vat	00:00:16 Aug 04, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check-cves	Check Cves
	ERROR: The following vulnerabilities are not whitelisted: ERROR: scan_source cve_id package package_path ERROR: anchore_cve CVE-2021-32761 redis-3.1.2 /reporting/node_modules/redis/package.json ERROR: anchore_cve GHSA-3jfq-g458-7qm9 tar-4.4.13 /usr/local/lib/node_modules/npm/node_modules/tar/package.json ERROR: anchore_cve GHSA-r628-mhmh-qjhw tar-4.4.13 /usr/local/lib/node_modules/npm/node_modules/tar/package.json ERROR: twistlock_cve CVE-2021-32803 tar-4.4.13 None ERROR: twistlock_cve CVE-2021-32804 tar-4.4.13 None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check-cves

Check Cves

ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   CVE-2021-32761                redis-3.1.2                   /reporting/node_modules/redis/package.json    
ERROR: anchore_cve                   GHSA-3jfq-g458-7qm9           tar-4.4.13                    /usr/local/lib/node_modules/npm/node_modules/tar/package.json    
ERROR: anchore_cve                   GHSA-r628-mhmh-qjhw           tar-4.4.13                    /usr/local/lib/node_modules/npm/node_modules/tar/package.json    
ERROR: twistlock_cve                 CVE-2021-32803                tar-4.4.13                    None                          
ERROR: twistlock_cve                 CVE-2021-32804                tar-4.4.13                    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1