UNCLASSIFIED

Skip to content

GitLab

Update hardening_manifest.yaml 

Deleted download.yaml
14 jobs for v3.29.0 in 12 minutes and 50 seconds (queued for 28 seconds)
a4f2ea1a
1 related merge request: !26 V3.29.0
Status Job ID Name Coverage
  .Pre
passed #1227011
ironbank
load scripts

00:00:06

 
  Preflight
passed #1227012
ironbank
folder structure

00:00:05

passed #1227014
ironbank
hardening_manifest

00:00:11

failed #1227013
ironbank allowed to fail
hardening_manifest migration

00:00:08

 
  Lint
passed #1227015
ironbank
wl compare lint

00:00:07

 
  Import Artifacts
passed #1227016
ironbank
import artifacts

00:00:19

 
  Scan Artifacts
passed #1227017
ironbank
clamav scan

00:01:41

 
  Build
passed #1227018
ironbank-isolated
build

00:03:14

 
  Scanning
passed #1227022
ironbank
anchore scan

00:06:18

passed #1227019
ironbank
openscap compliance

00:01:32

passed #1227020
ironbank
openscap cve

00:04:20

passed #1227021
ironbank
twistlock scan

00:00:56

 
  Csv Output
passed #1227023
ironbank
csv output

00:00:36

 
  Check Cves
failed #1227024
ironbank allowed to fail
check cves

00:00:12

 
Name Stage Failure
failed
check cves Check Cves 
INFO: Whitelist Set Length: 52
INFO: Vuln Set: {'CVE-2019-13012', 'CVE-2020-15358', 'CVE-2013-7285', 'VULNDB-244729', 'CCE-82985-3', 'VULNDB-240100', 'GHSA-4cch-wxpw-8p28', 'CVE-2020-26259', 'CCE-82494-6', 'CVE-2019-16869', 'VULNDB-93555', 'CCE-82220-5', 'CCE-82979-6', 'CVE-2016-10750', 'VULNDB-177199', 'CVE-2016-3674', 'CVE-2020-14389', 'CVE-2017-15095', 'CVE-2020-8286', 'CVE-2019-18276', 'CVE-2020-15777', 'CCE-82368-2', 'CVE-2020-8285', 'CVE-2020-7020', 'CCE-82473-0', 'VULNDB-205633', 'CVE-2017-17485', 'CCE-80938-4', 'CVE-2020-13776', 'CVE-2017-7957', 'CVE-2020-16135', 'CCE-82474-8', 'CVE-2020-10770', 'CVE-2020-13434', 'CCE-82949-9', 'CVE-2020-13956', 'GHSA-86wm-rrjm-8wh8', 'GHSA-jfvx-7wrx-43fh', 'CVE-2020-26217', 'CCE-82472-2', 'CCE-82360-9', 'CVE-2020-8284', 'CVE-2020-24370', 'CVE-2020-14302', 'CCE-82959-8', 'CVE-2019-20445', 'VULNDB-243500', 'CCE-82168-6', 'VULNDB-106409', 'CCE-82395-5', 'VULNDB-239195', 'CVE-2020-28196', 'VULNDB-164067', 'CVE-2020-27218', 'CVE-2011-5034', 'VULNDB-240213', 'VULNDB-204607', 'CVE-2019-7611', 'CVE-2020-17521', 'CVE-2020-17510', 'CVE-2020-29363', 'CVE-2020-7019', 'CVE-2020-27618', 'CCE-82267-6', 'CVE-2019-7614', 'VULNDB-241654', 'CVE-2020-8927', 'CVE-2020-26116', 'VULNDB-189595', 'CVE-2020-24977', 'CVE-2017-7525', 'CVE-2020-26258', 'CVE-2020-8908', 'CCE-80935-0', 'CVE-2020-27619', 'CVE-2020-14366', 'CVE-2020-29361', 'VULNDB-244730', 'CVE-2019-20444', 'CVE-2020-8231', 'CVE-2020-29362', 'CVE-2020-10776'}
INFO: Vuln Set Length: 82
WARNING: NON-WHITELISTED VULNERABILITIES FOUND
WARNING: Vuln Set Delta: {'CVE-2013-7285', 'VULNDB-244729', 'VULNDB-240100', 'GHSA-4cch-wxpw-8p28', 'CVE-2020-26259', 'VULNDB-93555', 'CVE-2019-16869', 'VULNDB-177199', 'CVE-2016-10750', 'CVE-2016-3674', 'CVE-2017-15095', 'CVE-2020-15777', 'VULNDB-205633', 'CVE-2017-17485', 'CVE-2017-7957', 'CVE-2020-10770', 'CVE-2020-26217', 'GHSA-jfvx-7wrx-43fh', 'CVE-2020-13956', 'GHSA-86wm-rrjm-8wh8', 'VULNDB-243500', 'CVE-2020-14302', 'VULNDB-239195', 'CVE-2019-20445', 'VULNDB-164067', 'VULNDB-106409', 'CVE-2020-27218', 'CVE-2011-5034', 'VULNDB-240213', 'VULNDB-204607', 'CVE-2019-7611', 'CVE-2020-17521', 'CVE-2020-17510', 'CVE-2020-7019', 'VULNDB-241654', 'CVE-2019-7614', 'VULNDB-189595', 'CVE-2017-7525', 'CVE-2020-26258', 'CVE-2020-8908', 'CVE-2020-14366', 'VULNDB-244730', 'CVE-2020-14389', 'CVE-2020-7020', 'CVE-2020-10776', 'CVE-2019-20444'}
WARNING: Vuln Set Delta Length: 46
ERROR: Scans are not passing 100%. Vuln Set Delta Length: 46
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1
failed
hardening_manifest migration Preflight 
Skipping Git submodules setup
Downloading artifacts
Downloading artifacts for load scripts (1227011)...
Downloading artifacts from coordinator... ok        id=1227011 responseStatus=200 OK token=Nrcst3FE
Executing "step_script" stage of the job script
$ if ! [[ -f hardening_manifest.yaml ]]; then # collapsed multi-line command
LABEL found in Dockerfile, move all LABELs to the hardening_manifest.yaml file
Cleaning up file based variables
ERROR: Job failed: command terminated with exit code 1

UNCLASSIFIED