Pipeline · Ironbank Containers / SonarSource / sonarqube / sonarqube8-community

Update sonarqube:8.8-community Docker digest to 295adc3

14 jobs for renovate/docker-sonarqube-8.8-community in 13 minutes and 27 seconds (queued for 16 seconds)

Status	Job ID	Name
.Pre
passed	#2748134 ironbank	load scripts	00:00:07 Apr 15, 2021

Preflight
passed	#2748135 ironbank	folder structure	00:00:05 Apr 15, 2021
passed	#2748136 ironbank	hardening_manifest	00:00:11 Apr 15, 2021

Lint
passed	#2748137 ironbank	wl compare lint	00:00:10 Apr 15, 2021

Finding Compare
passed	#2748138 ironbank	vat compare	00:00:06 Apr 15, 2021

Import Artifacts
passed	#2748139 ironbank	import artifacts	00:01:09 Apr 15, 2021

Scan Artifacts
passed	#2748140 ironbank	clamav scan	00:02:46 Apr 15, 2021

Build
passed	#2748141 ironbank-isolated	build	00:03:23 Apr 15, 2021

Scanning
passed	#2748145 ironbank	anchore scan	00:04:01 Apr 15, 2021
passed	#2748142 ironbank	openscap compliance	00:01:12 Apr 15, 2021
passed	#2748143 ironbank	openscap cve	00:04:14 Apr 15, 2021
passed	#2748144 ironbank	twistlock scan	00:00:43 Apr 15, 2021

Csv Output
passed	#2748146 ironbank	csv output	00:01:00 Apr 15, 2021

Check Cves
failed	#2748147 ironbank allowed to fail	check cves	00:00:16 Apr 15, 2021

Name Stage Failure

	Name	Stage	Failure
failed	check cves	Check Cves
	ERROR: anchore_cve GHSA-vwqq-5vrc-xw9h log4j-core-2.11.1 /opt/sonarqube/elasticsearch/bin/elasticsearch-sql-cli-7.11.2.jar:log4j-core ERROR: anchore_cve GHSA-vwqq-5vrc-xw9h log4j-core-2.11.1 /opt/sonarqube/elasticsearch/lib/log4j-core-2.11.1.jar ERROR: anchore_cve GHSA-5mcr-gq6c-3hq2 netty-codec-http-4.1.49.Final /opt/sonarqube/elasticsearch/modules/transport-netty4/netty-codec-http-4.1.49.Final.jar ERROR: oscap_cve CVE-2021-20305 gnutls None ERROR: oscap_cve RHSA-2021:1206 gnutls None ERROR: twistlock_cve CVE-2021-21295 io.netty_netty-codec-4.1.49.Final None ERROR: twistlock_cve CVE-2021-21409 io.netty_netty-codec-4.1.49.Final None Cleaning up file based variables ERROR: Job failed: command terminated with exit code 1

failed

check cves

Check Cves

ERROR: anchore_cve                   GHSA-vwqq-5vrc-xw9h           log4j-core-2.11.1             /opt/sonarqube/elasticsearch/bin/elasticsearch-sql-cli-7.11.2.jar:log4j-core    
ERROR: anchore_cve                   GHSA-vwqq-5vrc-xw9h           log4j-core-2.11.1             /opt/sonarqube/elasticsearch/lib/log4j-core-2.11.1.jar    
ERROR: anchore_cve                   GHSA-5mcr-gq6c-3hq2           netty-codec-http-4.1.49.Final    /opt/sonarqube/elasticsearch/modules/transport-netty4/netty-codec-http-4.1.49.Final.jar    
ERROR: oscap_cve                     CVE-2021-20305                gnutls                        None                          
ERROR: oscap_cve                     RHSA-2021:1206                gnutls                        None                          
ERROR: twistlock_cve                 CVE-2021-21295                io.netty_netty-codec-4.1.49.Final    None                          
ERROR: twistlock_cve                 CVE-2021-21409                io.netty_netty-codec-4.1.49.Final    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1