�[0KRunning with gitlab-runner 17.7.0~pre.103.g896916a8 (896916a8)�[0;m
�[0K on green-6.private.runners-manager.gitlab.com/staging.gitlab.com BTQsmtCx8, system ID: s_44fde8db605e�[0;m
�[0K�[36;1mResolving secrets�[0;m�[0;m
section_start:1738661972:prepare_executor
�[0K�[0K�[36;1mPreparing the "docker+machine" executor�[0;m�[0;m
�[0KUsing Docker executor with image registry.gitlab.com/security-products/semgrep:5 ...�[0;m
�[0KPulling docker image registry.gitlab.com/security-products/semgrep:5 ...�[0;m
�[0KUsing docker image sha256:5e3512e87805bee1f68125f681ec396ae0ab71efd7900562831a51300d79df3b for registry.gitlab.com/security-products/semgrep:5 with digest registry.gitlab.com/security-products/semgrep@sha256:5a13eba3579da6282d9ec433c1b35e794293b9e8ac7e57fa27901d67ad6b0f0e ...�[0;m
section_end:1738662024:prepare_executor
�[0Ksection_start:1738662024:prepare_script
�[0K�[0K�[36;1mPreparing environment�[0;m�[0;m
Running on runner-btqsmtcx8-project-7091227-concurrent-0 via runner-btqsmtcx8-private-1738661972-9d4528f4...
section_end:1738662027:prepare_script
�[0Ksection_start:1738662027:get_sources
�[0K�[0K�[36;1mGetting source from Git repository�[0;m�[0;m
�[32;1mFetching changes with git depth set to 20...�[0;m
Initialized empty Git repository in /builds/gitlab-com/gl-infra/common-ci-tasks/.git/
�[32;1mCreated fresh repository.�[0;m
�[32;1mChecking out 70a77653 as detached HEAD (ref is main)...�[0;m
�[32;1mSkipping Git submodules setup�[0;m
�[32;1m$ git remote set-url origin "${CI_REPOSITORY_URL}"�[0;m
section_end:1738662029:get_sources
�[0Ksection_start:1738662029:step_script
�[0K�[0K�[36;1mExecuting "step_script" stage of the job script�[0;m�[0;m
�[0KUsing docker image sha256:5e3512e87805bee1f68125f681ec396ae0ab71efd7900562831a51300d79df3b for registry.gitlab.com/security-products/semgrep:5 with digest registry.gitlab.com/security-products/semgrep@sha256:5a13eba3579da6282d9ec433c1b35e794293b9e8ac7e57fa27901d67ad6b0f0e ...�[0;m
�[32;1m$ /analyzer run�[0;m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ GitLab Semgrep analyzer v5.26.1�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Detecting project�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Analyzer will attempt to analyze all projects in the repository�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Loading ruleset for /builds/gitlab-com/gl-infra/common-ci-tasks�[0m
�[0;33m[WARN] [Semgrep] [2025-02-04T09:40:29Z] ▶ /builds/gitlab-com/gl-infra/common-ci-tasks/.gitlab/sast-ruleset.toml not found, ruleset customization will be disabled.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Running analyzer�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ 19 active rule files detected with 587 active rules�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/bandit.yml': '1d5f1383c92f36acb1d037009fe18a1f2b23e018a4b4cf6d62f779876bf4954d'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/eslint.yml': '9a0000468fb7788df7a1f0dcedab6b52f63f48bb20e23be1703d09df4f26a43d'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/find_sec_bugs.yml': '4ffaf454577a0f2570a5923eb626c5ad5cc2acb61ba69f195133446bb13ce016'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/find_sec_bugs_scala.yml': '511d1fcd1844c8c598ce2eecacf95ab876bfadb01c7740d474d007250f033a97'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/flawfinder.yml': 'c03d70d0acaf5d6f42173b0141fd1ac40fb2a61b2d9e6867d6785b56f366bf90'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/gitlab/gitlab_ee_java.yml': '4447e55e10167e94a8e720d2b4c0b468de341261c3416fd32ceb63ba15bff134'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/gitlab/gitlab_ee_javascript.yml': '428c386226edb09210df0df08ca4c2464949e948a88045694b3cfaab8079b8dc'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/gitlab_ce_python.yml': 'a1adf6cde5fa7e8ef530bd3ec122f6ac827e989f2c862aeae28a58a69c78ab6b'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/gitlab_ce_scala.yml': 'ee3d5ba84846f6c94085a1a76d3d250e68ce9c7f7502003647f7125a8667e1a3'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/gosec.yml': '2f8a4f954c8358ed4b5529be4f557190090209df1ac67bf55d24af2d755ffca0'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl-cc/brakeman.yml': '27bfe7c3e464b2786c360004c50a8e487c46f9ea7ffe011b5190696224665301'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_java.yml': '17d681aba56265d68cbeb7e90681f2d69d8c0440714acb4940b57e9b5cb67bbb'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_javascript.yml': 'abf15ac30a8c820f2d192a812d48f3a76e805c1cd3bee91d3b19d7c09d482519'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_python.yml': '4fcb59e05b1bdb418ab3ce009b0af0c565fe16d255013f9f65e1981734fafbe8'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl-cc/phpcs_security_audit.yml': '7f3448e2fdbca069c55c5f34971fc48382ec1af86a973ee24614ce320494d630'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl/find_sec_bugs_kotlin.yml': '46cdf5ab58a11576cb48f87c42e587f21136e01b33b352d7444e8c74e5ae446f'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl/mobsf.yml': '18c9f0273caf79503e75cfdff7efa38fdec4a9e5f3084ebb915fe492a3446f66'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/lgpl/nodejs_scan.yml': 'f278351679f6874078ce4fd6a04b103936e944fd82936a919632d3cba2110ca8'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ * rule file '/rules/security_code_scan.yml': 'a145b41abb93f352f70e9e7b7c335d09d0e1a95298f7fed85e35ef2fd3d7e4e8'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Combined rule checksum: '50cd48f2f6b045e313e5070f3e04df87c8aa93267e2f8a24321f7ba202745e1d'�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:29Z] ▶ Using the GitLab SAST default ruleset�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ METRICS: Using configs from the Registry (like --config=p/ci) reports pseudonymous rule metrics to semgrep.dev.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ To disable Registry rule metrics, use "--metrics=off".�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ Using configs only from local files (like --config=xyz.yml) does not enable metrics.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ More information: https://semgrep.dev/docs/metrics�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:30Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ ┌─────────────┐�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ │ Scan Status │�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ └─────────────┘�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ Scanning 159 files with 587 Code rules:�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:38Z] ▶ Scanning 1 file with 79 python rules.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ ┌──────────────┐�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ │ Scan Summary │�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ └──────────────┘�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ Some files were skipped or only partially analyzed.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ Scan skipped: 6 files matching --exclude patterns, 1 files matching .semgrepignore patterns�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ For a full list of skipped files, run semgrep with the --verbose flag.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ �[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ Ran 79 rules on 1 file: 0 findings.�[0m
�[0;32m[INFO] [Semgrep] [2025-02-04T09:40:39Z] ▶ Creating report�[0m
�[0;32m[INFO] [2025-02-04T09:40:40Z] ▶ /builds/gitlab-com/gl-infra/common-ci-tasks/gl-report-post.json written�[0m
section_end:1738662040:step_script
�[0Ksection_start:1738662040:upload_artifacts_on_success
�[0K�[0K�[36;1mUploading artifacts for successful job�[0;m�[0;m
�[32;1mUploading artifacts...�[0;m
gl-sast-report.json: found 1 matching artifact files and directories�[0;m
�[0;33mWARNING: Upload request redirected �[0;m �[0;33mlocation�[0;m=https://staging.gitlab.com/api/v4/jobs/139814813/artifacts?artifact_format=raw&artifact_type=sast �[0;33mnew-url�[0;m=https://staging.gitlab.com
�[0;33mWARNING: Retrying... �[0;m �[0;33mcontext�[0;m=artifacts-uploader �[0;33merror�[0;m=request redirected
Uploading artifacts as "sast" to coordinator... 201 Created�[0;m id�[0;m=139814813 responseStatus�[0;m=201 Created token�[0;m=glcbt-66
section_end:1738662042:upload_artifacts_on_success
�[0Ksection_start:1738662042:cleanup_file_variables
�[0K�[0K�[36;1mCleaning up project directory and file based variables�[0;m�[0;m
section_end:1738662043:cleanup_file_variables
�[0K�[32;1mJob succeeded�[0;m