Skip to content
Snippets Groups Projects

sast

Passed Started by
Jose Ivan Vargas Lopez
@jivanvl
This job is archived. Only the complete pipeline can be retried.
1Running with gitlab-runner 12.7.1 (003fe500)
2 on docker-auto-scale 72989761
3 Using Docker executor with image docker:stable ... 01:48
4Starting service docker:stable-dind ...
5Pulling docker image docker:stable-dind ...
6Using docker image sha256:a33335bfe8302f4d8a7688bc1fa539f2aba787ec724119be53adc4681702a3e7 for docker:stable-dind ...
7Waiting for services to be up and running...
8*** WARNING: Service runner-72989761-project-4422333-concurrent-0-docker-0 probably didn't start properly.
9Health check error:
10service "runner-72989761-project-4422333-concurrent-0-docker-0-wait-for-service" timeout
11Health check container logs:
12Service container logs:
132020-02-14T16:00:46.368223792Z time="2020-02-14T16:00:46.368047217Z" level=info msg="Starting up"
142020-02-14T16:00:46.381744240Z time="2020-02-14T16:00:46.376080508Z" level=warning msg="could not change group /var/run/docker.sock to docker: group docker not found"
152020-02-14T16:00:46.381758654Z time="2020-02-14T16:00:46.378218441Z" level=warning msg="[!] DON'T BIND ON ANY IP ADDRESS WITHOUT setting --tlsverify IF YOU DON'T KNOW WHAT YOU'RE DOING [!]"
162020-02-14T16:00:46.381763105Z time="2020-02-14T16:00:46.380340328Z" level=info msg="libcontainerd: started new containerd process" pid=18
172020-02-14T16:00:46.381766714Z time="2020-02-14T16:00:46.380378972Z" level=info msg="parsed scheme: \"unix\"" module=grpc
182020-02-14T16:00:46.381770213Z time="2020-02-14T16:00:46.380387663Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
192020-02-14T16:00:46.381773793Z time="2020-02-14T16:00:46.380410962Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
202020-02-14T16:00:46.381777584Z time="2020-02-14T16:00:46.380422533Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
212020-02-14T16:00:46.437484051Z time="2020-02-14T16:00:46.436460458Z" level=info msg="starting containerd" revision=35bd7a5f69c13e1563af8a93431411cd9ecf5021 version=v1.2.12
222020-02-14T16:00:46.437517295Z time="2020-02-14T16:00:46.436770774Z" level=info msg="loading plugin "io.containerd.content.v1.content"..." type=io.containerd.content.v1
232020-02-14T16:00:46.437522366Z time="2020-02-14T16:00:46.436844107Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.btrfs"..." type=io.containerd.snapshotter.v1
242020-02-14T16:00:46.437527254Z time="2020-02-14T16:00:46.437025949Z" level=warning msg="failed to load plugin io.containerd.snapshotter.v1.btrfs" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.btrfs must be a btrfs filesystem to be used with the btrfs snapshotter"
252020-02-14T16:00:46.437533794Z time="2020-02-14T16:00:46.437037856Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.aufs"..." type=io.containerd.snapshotter.v1
262020-02-14T16:00:46.450606167Z time="2020-02-14T16:00:46.448921470Z" level=warning msg="failed to load plugin io.containerd.snapshotter.v1.aufs" error="modprobe aufs failed: "ip: can't find device 'aufs'\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n": exit status 1"
272020-02-14T16:00:46.450625986Z time="2020-02-14T16:00:46.448946481Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.native"..." type=io.containerd.snapshotter.v1
282020-02-14T16:00:46.450630618Z time="2020-02-14T16:00:46.449073645Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.overlayfs"..." type=io.containerd.snapshotter.v1
292020-02-14T16:00:46.450634373Z time="2020-02-14T16:00:46.449269989Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.zfs"..." type=io.containerd.snapshotter.v1
302020-02-14T16:00:46.450638034Z time="2020-02-14T16:00:46.449489157Z" level=info msg="skip loading plugin "io.containerd.snapshotter.v1.zfs"..." type=io.containerd.snapshotter.v1
312020-02-14T16:00:46.450649129Z time="2020-02-14T16:00:46.449498276Z" level=info msg="loading plugin "io.containerd.metadata.v1.bolt"..." type=io.containerd.metadata.v1
322020-02-14T16:00:46.450664230Z time="2020-02-14T16:00:46.449541906Z" level=warning msg="could not use snapshotter zfs in metadata plugin" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.zfs must be a zfs filesystem to be used with the zfs snapshotter: skip plugin"
332020-02-14T16:00:46.450668478Z time="2020-02-14T16:00:46.449549609Z" level=warning msg="could not use snapshotter btrfs in metadata plugin" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.btrfs must be a btrfs filesystem to be used with the btrfs snapshotter"
342020-02-14T16:00:46.450672259Z time="2020-02-14T16:00:46.449555701Z" level=warning msg="could not use snapshotter aufs in metadata plugin" error="modprobe aufs failed: "ip: can't find device 'aufs'\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n": exit status 1"
352020-02-14T16:00:46.484381007Z time="2020-02-14T16:00:46.470438525Z" level=info msg="loading plugin "io.containerd.differ.v1.walking"..." type=io.containerd.differ.v1
362020-02-14T16:00:46.484407763Z time="2020-02-14T16:00:46.470475770Z" level=info msg="loading plugin "io.containerd.gc.v1.scheduler"..." type=io.containerd.gc.v1
372020-02-14T16:00:46.484412235Z time="2020-02-14T16:00:46.470505982Z" level=info msg="loading plugin "io.containerd.service.v1.containers-service"..." type=io.containerd.service.v1
382020-02-14T16:00:46.484415910Z time="2020-02-14T16:00:46.470518505Z" level=info msg="loading plugin "io.containerd.service.v1.content-service"..." type=io.containerd.service.v1
392020-02-14T16:00:46.484419429Z time="2020-02-14T16:00:46.470528879Z" level=info msg="loading plugin "io.containerd.service.v1.diff-service"..." type=io.containerd.service.v1
402020-02-14T16:00:46.484422886Z time="2020-02-14T16:00:46.470540038Z" level=info msg="loading plugin "io.containerd.service.v1.images-service"..." type=io.containerd.service.v1
412020-02-14T16:00:46.484426271Z time="2020-02-14T16:00:46.470553410Z" level=info msg="loading plugin "io.containerd.service.v1.leases-service"..." type=io.containerd.service.v1
422020-02-14T16:00:46.484429525Z time="2020-02-14T16:00:46.470563782Z" level=info msg="loading plugin "io.containerd.service.v1.namespaces-service"..." type=io.containerd.service.v1
432020-02-14T16:00:46.484432718Z time="2020-02-14T16:00:46.470574888Z" level=info msg="loading plugin "io.containerd.service.v1.snapshots-service"..." type=io.containerd.service.v1
442020-02-14T16:00:46.484435921Z time="2020-02-14T16:00:46.470587733Z" level=info msg="loading plugin "io.containerd.runtime.v1.linux"..." type=io.containerd.runtime.v1
452020-02-14T16:00:46.484439324Z time="2020-02-14T16:00:46.470796029Z" level=info msg="loading plugin "io.containerd.runtime.v2.task"..." type=io.containerd.runtime.v2
462020-02-14T16:00:46.484442993Z time="2020-02-14T16:00:46.470899619Z" level=info msg="loading plugin "io.containerd.monitor.v1.cgroups"..." type=io.containerd.monitor.v1
472020-02-14T16:00:46.484446182Z time="2020-02-14T16:00:46.471248702Z" level=info msg="loading plugin "io.containerd.service.v1.tasks-service"..." type=io.containerd.service.v1
482020-02-14T16:00:46.484449471Z time="2020-02-14T16:00:46.471275824Z" level=info msg="loading plugin "io.containerd.internal.v1.restart"..." type=io.containerd.internal.v1
492020-02-14T16:00:46.484476781Z time="2020-02-14T16:00:46.471312124Z" level=info msg="loading plugin "io.containerd.grpc.v1.containers"..." type=io.containerd.grpc.v1
502020-02-14T16:00:46.484480553Z time="2020-02-14T16:00:46.471324530Z" level=info msg="loading plugin "io.containerd.grpc.v1.content"..." type=io.containerd.grpc.v1
512020-02-14T16:00:46.484483783Z time="2020-02-14T16:00:46.471334718Z" level=info msg="loading plugin "io.containerd.grpc.v1.diff"..." type=io.containerd.grpc.v1
522020-02-14T16:00:46.484486993Z time="2020-02-14T16:00:46.471348970Z" level=info msg="loading plugin "io.containerd.grpc.v1.events"..." type=io.containerd.grpc.v1
532020-02-14T16:00:46.484490134Z time="2020-02-14T16:00:46.471358833Z" level=info msg="loading plugin "io.containerd.grpc.v1.healthcheck"..." type=io.containerd.grpc.v1
542020-02-14T16:00:46.484493337Z time="2020-02-14T16:00:46.471372506Z" level=info msg="loading plugin "io.containerd.grpc.v1.images"..." type=io.containerd.grpc.v1
552020-02-14T16:00:46.484496542Z time="2020-02-14T16:00:46.471383331Z" level=info msg="loading plugin "io.containerd.grpc.v1.leases"..." type=io.containerd.grpc.v1
562020-02-14T16:00:46.484499735Z time="2020-02-14T16:00:46.471392836Z" level=info msg="loading plugin "io.containerd.grpc.v1.namespaces"..." type=io.containerd.grpc.v1
572020-02-14T16:00:46.484502872Z time="2020-02-14T16:00:46.471401882Z" level=info msg="loading plugin "io.containerd.internal.v1.opt"..." type=io.containerd.internal.v1
582020-02-14T16:00:46.484506038Z time="2020-02-14T16:00:46.471654250Z" level=info msg="loading plugin "io.containerd.grpc.v1.snapshots"..." type=io.containerd.grpc.v1
592020-02-14T16:00:46.484509160Z time="2020-02-14T16:00:46.471670380Z" level=info msg="loading plugin "io.containerd.grpc.v1.tasks"..." type=io.containerd.grpc.v1
602020-02-14T16:00:46.484512375Z time="2020-02-14T16:00:46.471680574Z" level=info msg="loading plugin "io.containerd.grpc.v1.version"..." type=io.containerd.grpc.v1
612020-02-14T16:00:46.484515674Z time="2020-02-14T16:00:46.471689804Z" level=info msg="loading plugin "io.containerd.grpc.v1.introspection"..." type=io.containerd.grpc.v1
622020-02-14T16:00:46.484518919Z time="2020-02-14T16:00:46.471895896Z" level=info msg=serving... address="/var/run/docker/containerd/containerd-debug.sock"
632020-02-14T16:00:46.484524570Z time="2020-02-14T16:00:46.472043220Z" level=info msg=serving... address="/var/run/docker/containerd/containerd.sock"
642020-02-14T16:00:46.484527768Z time="2020-02-14T16:00:46.472063531Z" level=info msg="containerd successfully booted in 0.038972s"
652020-02-14T16:00:46.509654815Z time="2020-02-14T16:00:46.501656278Z" level=info msg="Setting the storage driver from the $DOCKER_DRIVER environment variable (overlay2)"
662020-02-14T16:00:46.509689634Z time="2020-02-14T16:00:46.501864573Z" level=info msg="parsed scheme: \"unix\"" module=grpc
672020-02-14T16:00:46.509694211Z time="2020-02-14T16:00:46.501877317Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
682020-02-14T16:00:46.509698426Z time="2020-02-14T16:00:46.501893313Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
692020-02-14T16:00:46.509712443Z time="2020-02-14T16:00:46.501901993Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
702020-02-14T16:00:46.560773936Z time="2020-02-14T16:00:46.534450366Z" level=info msg="parsed scheme: \"unix\"" module=grpc
712020-02-14T16:00:46.560793829Z time="2020-02-14T16:00:46.534476590Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
722020-02-14T16:00:46.560798634Z time="2020-02-14T16:00:46.534507378Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
732020-02-14T16:00:46.560803076Z time="2020-02-14T16:00:46.534518313Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
742020-02-14T16:00:46.574625307Z time="2020-02-14T16:00:46.574506639Z" level=info msg="Loading containers: start."
752020-02-14T16:00:46.595399211Z time="2020-02-14T16:00:46.595278044Z" level=warning msg="Running modprobe bridge br_netfilter failed with message: ip: can't find device 'bridge'\nbridge 167936 1 br_netfilter\nstp 16384 1 bridge\nllc 16384 2 bridge,stp\nip: can't find device 'br_netfilter'\nbr_netfilter 24576 0 \nbridge 167936 1 br_netfilter\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n, error: exit status 1"
762020-02-14T16:00:46.753276271Z time="2020-02-14T16:00:46.751974159Z" level=info msg="Default bridge (docker0) is assigned with an IP address 172.18.0.0/16. Daemon option --bip can be used to set a preferred IP address"
772020-02-14T16:00:46.820285992Z time="2020-02-14T16:00:46.817130085Z" level=info msg="Loading containers: done."
782020-02-14T16:00:46.868117435Z time="2020-02-14T16:00:46.867694042Z" level=info msg="Docker daemon" commit=369ce74a3c graphdriver(s)=overlay2 version=19.03.6
792020-02-14T16:00:46.868135309Z time="2020-02-14T16:00:46.867856139Z" level=info msg="Daemon has completed initialization"
802020-02-14T16:00:46.933331866Z time="2020-02-14T16:00:46.932874811Z" level=info msg="API listen on [::]:2375"
812020-02-14T16:00:46.933370622Z time="2020-02-14T16:00:46.932966199Z" level=info msg="API listen on /var/run/docker.sock"
82*********
83Pulling docker image docker:stable ...
84Using docker image sha256:6512892b576811235f68a6dcd5fbe10b387ac0ba3709aeaf80cd5cfcecb387c7 for docker:stable ...
85 Running on runner-72989761-project-4422333-concurrent-0 via runner-72989761-stg-srm-1581695970-4578dc6a... 00:02
86 $ eval "$CI_PRE_CLONE_SCRIPT" 00:01
87Fetching changes with git depth set to 50...
88Initialized empty Git repository in /builds/gitlab-org/monitor/monitor-sandbox/.git/
89Created fresh repository.
90From https://staging.gitlab.com/gitlab-org/monitor/monitor-sandbox
91 * [new ref] refs/pipelines/12713460 -> refs/pipelines/12713460
92 * [new branch] master -> origin/master
93Checking out c8cb41c1 as master...
94Skipping Git submodules setup
95 $ export SAST_VERSION=${SP_VERSION:-$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')} 00:31
96$ if ! docker info &>/dev/null; then # collapsed multi-line command
97$ ENVS=`printenv | grep -vE '^(DOCKER_|CI|GITLAB_|FF_|HOME|PWD|OLDPWD|PATH|SHLVL|HOSTNAME)' | sed -n '/^[^\t]/s/=.*//p' | sed '/^$/d' | sed 's/^/-e /g' | tr '\n' ' '` # collapsed multi-line command
98Unable to find image 'registry.gitlab.com/gitlab-org/security-products/sast:12-7-stable' locally
9912-7-stable: Pulling from gitlab-org/security-products/sast
100abeda8b35c9e: Pulling fs layer
101abeda8b35c9e: Verifying Checksum
102abeda8b35c9e: Download complete
103abeda8b35c9e: Pull complete
104Digest: sha256:af6334af679f62f151c568659a2b1c4212a01d80b3f33f7207e78b251d40ad96
105Status: Downloaded newer image for registry.gitlab.com/gitlab-org/security-products/sast:12-7-stable
1062020/02/14 16:01:26 Copy project directory to containers
1072020/02/14 16:01:26 [bandit] Detect project using plugin
1082020/02/14 16:01:26 [bandit] Project not compatible
1092020/02/14 16:01:26 [brakeman] Detect project using plugin
1102020/02/14 16:01:26 [brakeman] Project not compatible
1112020/02/14 16:01:26 [gosec] Detect project using plugin
1122020/02/14 16:01:26 [gosec] Project not compatible
1132020/02/14 16:01:26 [spotbugs] Detect project using plugin
1142020/02/14 16:01:26 [spotbugs] Project not compatible
1152020/02/14 16:01:26 [flawfinder] Detect project using plugin
1162020/02/14 16:01:26 [flawfinder] Project not compatible
1172020/02/14 16:01:26 [phpcs-security-audit] Detect project using plugin
1182020/02/14 16:01:26 [phpcs-security-audit] Project not compatible
1192020/02/14 16:01:26 [security-code-scan] Detect project using plugin
1202020/02/14 16:01:26 [security-code-scan] Project not compatible
1212020/02/14 16:01:26 [nodejs-scan] Detect project using plugin
1222020/02/14 16:01:26 [nodejs-scan] Project is compatible
1232020/02/14 16:01:26 [nodejs-scan] Downloading analyzer...
124..............................................................
1252020/02/14 16:01:31 [nodejs-scan] Starting analyzer...
126Found project in /tmp/app
12730 rules loaded
128Successfully compiled 3 files with Babel.
1292020/02/14 16:01:34 [eslint] Detect project using plugin
1302020/02/14 16:01:34 [eslint] Project is compatible
1312020/02/14 16:01:34 [eslint] Downloading analyzer...
132.......................................................................
1332020/02/14 16:01:40 [eslint] Starting analyzer...
134Found project in /tmp/app
1352020/02/14 16:01:44 [tslint] Detect project using plugin
1362020/02/14 16:01:44 [tslint] Project not compatible
1372020/02/14 16:01:44 [secrets] Detect project using plugin
1382020/02/14 16:01:44 [secrets] Project is compatible
1392020/02/14 16:01:44 [secrets] Downloading analyzer...
140...........................
1412020/02/14 16:01:48 [secrets] Starting analyzer...
1422020/02/14 16:01:55 [sobelow] Detect project using plugin
1432020/02/14 16:01:55 [sobelow] Project not compatible
1442020/02/14 16:01:55 [pmd-apex] Detect project using plugin
1452020/02/14 16:01:55 [pmd-apex] Project not compatible
1462020/02/14 16:01:55 [kubesec] Detect project using plugin
1472020/02/14 16:01:55 [kubesec] Project not compatible
148+----------------------------------------------------------------------------------------+
149| Severity | Tool | Location |
150+----------------------------------------------------------------------------------------+
151 Uploading artifacts... 00:03
152gl-sast-report.json: found 1 matching files
153Uploading artifacts to coordinator... ok id=37081926 responseStatus=201 Created token=Nc_W1aq3
154Job succeeded