Pipeline · Ironbank Containers / SonarSource / sonarqube / sonarqube8-community

Merge branch 'renovate/docker-sonarqube-8.x' into 'development'

Update sonarqube Docker tag to v8.7

See merge request !26

18 jobs for development in 17 minutes and 12 seconds (queued for 16 minutes and 54 seconds)

a235fb2b

Status	Job ID	Name
.Pre
passed	#2311465 ironbank	load scripts	00:00:09 Mar 08, 2021

Preflight
passed	#2311466 ironbank	folder structure	00:00:05 Mar 08, 2021
passed	#2311467 ironbank	hardening_manifest	00:00:10 Mar 08, 2021

Lint
passed	#2311468 ironbank	wl compare lint	00:00:09 Mar 08, 2021

Import Artifacts
passed	#2311469 ironbank	import artifacts	00:01:02 Mar 08, 2021

Scan Artifacts
passed	#2311470 ironbank	clamav scan	00:02:17 Mar 08, 2021

Build
passed	#2311471 ironbank-isolated	build	00:03:27 Mar 08, 2021

Scanning
passed	#2311475 ironbank	anchore scan	00:02:36 Mar 08, 2021
passed	#2311472 ironbank	openscap compliance	00:01:21 Mar 08, 2021
passed	#2311473 ironbank	openscap cve	00:04:41 Mar 08, 2021
passed	#2311474 ironbank	twistlock scan	00:01:11 Mar 08, 2021

Csv Output
passed	#2311476 ironbank	csv output	00:00:58 Mar 08, 2021

Check Cves
failed	#2311477 ironbank allowed to fail	check cves	00:00:14 Mar 08, 2021

Documentation
passed	#2311478 ironbank	sign image	00:00:58 Mar 08, 2021
passed	#2311479 ironbank	sign manifest	00:00:26 Mar 08, 2021
passed	#2311480 ironbank	write json documentation	00:00:26 Mar 08, 2021

Publish
passed	#2311481 ironbank	upload to s3	00:02:28 Mar 08, 2021

Vat
passed	#2311482 ironbank	vat	00:00:32 Mar 08, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: twistlock_cve CVE-2020-8908 com.google.guava_guava-26.0-jre ERROR: twistlock_cve CVE-2020-8908 com.google.guava_guava-28.0-jre ERROR: twistlock_cve CVE-2020-8908 com.google.guava_guava-28.2-jre ERROR: twistlock_cve CVE-2020-8908 com.google.guava_guava-29.0-jre ERROR: twistlock_cve CVE-2021-21290 io.netty_netty-codec-4.1.49.Final ERROR: twistlock_cve CVE-2020-9488 org.apache.logging.log4j_log4j-api-2.11.1 ERROR: twistlock_cve CVE-2020-9488 org.apache.logging.log4j_log4j-api-2.8.2 Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: twistlock_cve                 CVE-2020-8908                 com.google.guava_guava-26.0-jre                                  
ERROR: twistlock_cve                 CVE-2020-8908                 com.google.guava_guava-28.0-jre                                  
ERROR: twistlock_cve                 CVE-2020-8908                 com.google.guava_guava-28.2-jre                                  
ERROR: twistlock_cve                 CVE-2020-8908                 com.google.guava_guava-29.0-jre                                  
ERROR: twistlock_cve                 CVE-2021-21290                io.netty_netty-codec-4.1.49.Final                                  
ERROR: twistlock_cve                 CVE-2020-9488                 org.apache.logging.log4j_log4j-api-2.11.1                                  
ERROR: twistlock_cve                 CVE-2020-9488                 org.apache.logging.log4j_log4j-api-2.8.2                                  
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1