UNCLASSIFIED

Skip to content

GitLab

Merge branch 'renovate/docker-sonarqube-8.8-community' into 'development' 

Update sonarqube:8.8-community Docker digest to 295adc3

See merge request !34
20 jobs for development in 17 minutes and 41 seconds (queued for 18 minutes and 17 seconds)
73b2b89d
1 related merge request: !35 Merge Development into Master
Status Job ID Name Coverage
  .Pre
passed #2900608
ironbank
load scripts

00:00:07

 
  Preflight
passed #2900610
ironbank
folder structure

00:00:05

passed #2900611
ironbank
hardening_manifest

00:00:11

passed #2900609
ironbank
trufflehog

00:00:07

 
  Lint
passed #2900612
ironbank
wl compare lint

00:00:10

 
  Finding Compare
failed #2900613
ironbank allowed to fail
vat compare

00:00:08

 
  Import Artifacts
passed #2900614
ironbank
import artifacts

00:01:04

 
  Scan Artifacts
passed #2900615
ironbank
clamav scan

00:02:38

 
  Build
passed #2900616
ironbank-isolated
build

00:03:22

 
  Scanning
passed #2900617
ironbank
anchore scan

00:03:17

passed #2900618
ironbank
openscap compliance

00:01:17

passed #2900619
ironbank
openscap cve

00:04:49

passed #2900620
ironbank
twistlock scan

00:01:01

 
  Csv Output
passed #2900621
ironbank
csv output

00:01:00

 
  Check Cves
failed #2900622
ironbank allowed to fail
check cves

00:00:17

 
  Documentation
passed #2900623
ironbank
sign image

00:01:01

passed #2900624
ironbank
sign manifest

00:00:31

passed #2900625
ironbank
write json documentation

00:00:33

 
  S3 Publish
passed #2900626
ironbank
upload to s3

00:02:36

 
  Vat
passed #2900627
ironbank
vat

00:00:09

 
Name Stage Failure
failed
check cves Check Cves 
ERROR: anchore_cve                   GHSA-5mg8-w23w-74h3           guava-28.2-jre                /opt/sonarqube/lib/scanner/sonar-scanner-engine-shaded-8.8.0.42792-all.jar:guava    
ERROR: anchore_cve                   GHSA-5mg8-w23w-74h3           guava-28.2-jre                /opt/sonarqube/lib/common/guava-28.2-jre.jar    
ERROR: anchore_cve                   GHSA-vwqq-5vrc-xw9h           log4j-core-2.11.1             /opt/sonarqube/elasticsearch/lib/log4j-core-2.11.1.jar    
ERROR: anchore_cve                   GHSA-vwqq-5vrc-xw9h           log4j-core-2.11.1             /opt/sonarqube/elasticsearch/bin/elasticsearch-sql-cli-7.11.2.jar:log4j-core    
ERROR: anchore_cve                   GHSA-5mcr-gq6c-3hq2           netty-codec-http-4.1.49.Final    /opt/sonarqube/elasticsearch/modules/transport-netty4/netty-codec-http-4.1.49.Final.jar    
ERROR: twistlock_cve                 CVE-2021-21295                io.netty_netty-codec-4.1.49.Final    None                          
ERROR: twistlock_cve                 CVE-2021-21409                io.netty_netty-codec-4.1.49.Final    None                          
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
vat compare Finding Compare 
INFO: ('CVE-2021-20232', 'anchore_cve', 'gnutls-3.6.14-7.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-20232', 'gnutls-3.6.14-7.el8_3', None)
INFO: ('CVE-2021-20232', 'twistlock_cve', 'A flaw was found in gnutls. A use after free issue in client_send_params in lib/ext/pre_shared_key.c may lead to memory corruption and other potential consequences.', 'gnutls-3.6.14-7.el8_3', None)
INFO: ('CVE-2021-20305', 'anchore_cve', 'gnutls-3.6.14-7.el8_3\nhttps://access.redhat.com/security/cve/CVE-2021-20305', 'gnutls-3.6.14-7.el8_3', None)
Uploading artifacts for failed job
Uploading artifacts...
ci-artifacts/compare/: found 2 matching files and directories 
Uploading artifacts as "archive" to coordinator... ok  id=2900613 responseStatus=201 Created token=rpnmrr8q
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 4

UNCLASSIFIED