UNCLASSIFIED

Skip to content

GitLab

Update sonarqube:8.9-enterprise Docker digest to 4c04f59

14 jobs for renovate/sonarqube-8.9-enterprise in 23 minutes and 15 seconds (queued for 1 minute and 38 seconds)
6bfc07b5
1 related merge request: !65 Update sonarqube:8.9-enterprise Docker digest to 4c04f59
Status Job ID Name Coverage
  .Pre
passed #5942984
load-scripts

00:00:16

 
  Preflight
passed #5942986
folder-structure

00:00:18

passed #5942987
hardening-manifest

00:00:49

passed #5942985
trufflehog

00:00:16

 
  Lint
passed #5942988
wl-compare-lint

00:00:32

 
  Import Artifacts
passed #5942989
import-artifacts

00:01:25

 
  Scan Artifacts
passed #5942990
clamav-scan

00:02:57

 
  Build
passed #5942991
build

00:08:43

 
  Post Build
passed #5942992
create-tar

00:01:57

 
  Scanning
passed #5942993
anchore-scan

00:04:59

passed #5942994
ironbank-dsop-privileged
openscap-compliance

00:03:21

passed #5942995
twistlock-scan

00:01:33

 
  Csv Output
passed #5942996
csv-output

00:01:09

 
  Check Cves
failed #5942997
allowed to fail
check-cves

00:00:21

 
Name Stage Failure
failed
check-cves Check Cves 
ERROR: The following vulnerabilities are not whitelisted:
ERROR: scan_source                   cve_id                        package                       package_path                  
ERROR: anchore_cve                   GHSA-5mg8-w23w-74h3           guava-28.2-jre                /opt/sonarqube/lib/sonar-application-8.9.2.46101.jar:guava    
ERROR: anchore_cve                   GHSA-5mg8-w23w-74h3           guava-28.2-jre                /opt/sonarqube/lib/scanner/scanner-enterprise-8.9.2.46101-all.jar:guava    
ERROR: anchore_cve                   CVE-2020-13697                nanohttpd-2.3.1               /opt/sonarqube/lib/sonar-application-8.9.2.46101.jar:nanohttpd    
ERROR: anchore_cve                   CVE-2021-0555                 protobuf-3.11.4               /opt/sonarqube/lib/sonar-application-8.9.2.46101.jar:protobuf-java    
ERROR: anchore_cve                   CVE-2021-0555                 protobuf-3.11.4               /opt/sonarqube/lib/scanner/scanner-enterprise-8.9.2.46101-all.jar:protobuf-java    
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1

UNCLASSIFIED