Skip to content
Snippets Groups Projects

sast

Passed Started by
Adrien Kohlbecker
@akohlbecker
This job is archived. Only the complete pipeline can be retried.
1Running with gitlab-runner 12.9.0 (4c96e5ad)
2 on docker-auto-scale 72989761
3 Preparing the "docker+machine" executor 01:37
4Using Docker executor with image docker:stable ...
5Starting service docker:stable-dind ...
6Pulling docker image docker:stable-dind ...
7Using docker image sha256:a6e51fd179fb849f4ec6faee318101d32830103f5615215716bd686c56afaea1 for docker:stable-dind ...
8Waiting for services to be up and running...
9*** WARNING: Service runner-72989761-project-4422333-concurrent-0-docker-0 probably didn't start properly.
10Health check error:
11service "runner-72989761-project-4422333-concurrent-0-docker-0-wait-for-service" timeout
12Health check container logs:
13Service container logs:
142020-04-16T12:02:56.666933615Z time="2020-04-16T12:02:56.636629962Z" level=info msg="Starting up"
152020-04-16T12:02:56.666992017Z time="2020-04-16T12:02:56.637716768Z" level=warning msg="could not change group /var/run/docker.sock to docker: group docker not found"
162020-04-16T12:02:56.666996823Z time="2020-04-16T12:02:56.637913622Z" level=warning msg="[!] DON'T BIND ON ANY IP ADDRESS WITHOUT setting --tlsverify IF YOU DON'T KNOW WHAT YOU'RE DOING [!]"
172020-04-16T12:02:56.667000406Z time="2020-04-16T12:02:56.638703364Z" level=info msg="libcontainerd: started new containerd process" pid=20
182020-04-16T12:02:56.667003640Z time="2020-04-16T12:02:56.638756148Z" level=info msg="parsed scheme: \"unix\"" module=grpc
192020-04-16T12:02:56.667007291Z time="2020-04-16T12:02:56.638765136Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
202020-04-16T12:02:56.667010786Z time="2020-04-16T12:02:56.638781501Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
212020-04-16T12:02:56.667014690Z time="2020-04-16T12:02:56.638790006Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
222020-04-16T12:02:56.668809269Z time="2020-04-16T12:02:56.668150097Z" level=info msg="starting containerd" revision=7ad184331fa3e55e52b890ea95e65ba581ae3429 version=v1.2.13
232020-04-16T12:02:56.668823406Z time="2020-04-16T12:02:56.668449409Z" level=info msg="loading plugin "io.containerd.content.v1.content"..." type=io.containerd.content.v1
242020-04-16T12:02:56.668827856Z time="2020-04-16T12:02:56.668531162Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.btrfs"..." type=io.containerd.snapshotter.v1
252020-04-16T12:02:56.682168948Z time="2020-04-16T12:02:56.668717490Z" level=warning msg="failed to load plugin io.containerd.snapshotter.v1.btrfs" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.btrfs must be a btrfs filesystem to be used with the btrfs snapshotter"
262020-04-16T12:02:56.682197709Z time="2020-04-16T12:02:56.674331836Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.aufs"..." type=io.containerd.snapshotter.v1
272020-04-16T12:02:56.730884743Z time="2020-04-16T12:02:56.720527999Z" level=warning msg="failed to load plugin io.containerd.snapshotter.v1.aufs" error="modprobe aufs failed: "ip: can't find device 'aufs'\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n": exit status 1"
282020-04-16T12:02:56.730913080Z time="2020-04-16T12:02:56.720560856Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.native"..." type=io.containerd.snapshotter.v1
292020-04-16T12:02:56.730917888Z time="2020-04-16T12:02:56.720663626Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.overlayfs"..." type=io.containerd.snapshotter.v1
302020-04-16T12:02:56.730921552Z time="2020-04-16T12:02:56.720832184Z" level=info msg="loading plugin "io.containerd.snapshotter.v1.zfs"..." type=io.containerd.snapshotter.v1
312020-04-16T12:02:56.730925153Z time="2020-04-16T12:02:56.721046338Z" level=info msg="skip loading plugin "io.containerd.snapshotter.v1.zfs"..." type=io.containerd.snapshotter.v1
322020-04-16T12:02:56.730928670Z time="2020-04-16T12:02:56.721054575Z" level=info msg="loading plugin "io.containerd.metadata.v1.bolt"..." type=io.containerd.metadata.v1
332020-04-16T12:02:56.730940391Z time="2020-04-16T12:02:56.721094873Z" level=warning msg="could not use snapshotter btrfs in metadata plugin" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.btrfs must be a btrfs filesystem to be used with the btrfs snapshotter"
342020-04-16T12:02:56.730944439Z time="2020-04-16T12:02:56.721101904Z" level=warning msg="could not use snapshotter aufs in metadata plugin" error="modprobe aufs failed: "ip: can't find device 'aufs'\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n": exit status 1"
352020-04-16T12:02:56.730948253Z time="2020-04-16T12:02:56.721108697Z" level=warning msg="could not use snapshotter zfs in metadata plugin" error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.zfs must be a zfs filesystem to be used with the zfs snapshotter: skip plugin"
362020-04-16T12:02:56.731034664Z time="2020-04-16T12:02:56.728559905Z" level=info msg="loading plugin "io.containerd.differ.v1.walking"..." type=io.containerd.differ.v1
372020-04-16T12:02:56.731041073Z time="2020-04-16T12:02:56.728582285Z" level=info msg="loading plugin "io.containerd.gc.v1.scheduler"..." type=io.containerd.gc.v1
382020-04-16T12:02:56.731044448Z time="2020-04-16T12:02:56.728614187Z" level=info msg="loading plugin "io.containerd.service.v1.containers-service"..." type=io.containerd.service.v1
392020-04-16T12:02:56.731047772Z time="2020-04-16T12:02:56.728626554Z" level=info msg="loading plugin "io.containerd.service.v1.content-service"..." type=io.containerd.service.v1
402020-04-16T12:02:56.731059219Z time="2020-04-16T12:02:56.728636211Z" level=info msg="loading plugin "io.containerd.service.v1.diff-service"..." type=io.containerd.service.v1
412020-04-16T12:02:56.731063057Z time="2020-04-16T12:02:56.728647189Z" level=info msg="loading plugin "io.containerd.service.v1.images-service"..." type=io.containerd.service.v1
422020-04-16T12:02:56.731066364Z time="2020-04-16T12:02:56.728658308Z" level=info msg="loading plugin "io.containerd.service.v1.leases-service"..." type=io.containerd.service.v1
432020-04-16T12:02:56.731069631Z time="2020-04-16T12:02:56.728668655Z" level=info msg="loading plugin "io.containerd.service.v1.namespaces-service"..." type=io.containerd.service.v1
442020-04-16T12:02:56.731072987Z time="2020-04-16T12:02:56.728678305Z" level=info msg="loading plugin "io.containerd.service.v1.snapshots-service"..." type=io.containerd.service.v1
452020-04-16T12:02:56.731076223Z time="2020-04-16T12:02:56.728689198Z" level=info msg="loading plugin "io.containerd.runtime.v1.linux"..." type=io.containerd.runtime.v1
462020-04-16T12:02:56.731079446Z time="2020-04-16T12:02:56.728859441Z" level=info msg="loading plugin "io.containerd.runtime.v2.task"..." type=io.containerd.runtime.v2
472020-04-16T12:02:56.731082736Z time="2020-04-16T12:02:56.728954724Z" level=info msg="loading plugin "io.containerd.monitor.v1.cgroups"..." type=io.containerd.monitor.v1
482020-04-16T12:02:56.731085896Z time="2020-04-16T12:02:56.729242621Z" level=info msg="loading plugin "io.containerd.service.v1.tasks-service"..." type=io.containerd.service.v1
492020-04-16T12:02:56.731089134Z time="2020-04-16T12:02:56.729265511Z" level=info msg="loading plugin "io.containerd.internal.v1.restart"..." type=io.containerd.internal.v1
502020-04-16T12:02:56.731097276Z time="2020-04-16T12:02:56.729298238Z" level=info msg="loading plugin "io.containerd.grpc.v1.containers"..." type=io.containerd.grpc.v1
512020-04-16T12:02:56.731100755Z time="2020-04-16T12:02:56.729309933Z" level=info msg="loading plugin "io.containerd.grpc.v1.content"..." type=io.containerd.grpc.v1
522020-04-16T12:02:56.731105559Z time="2020-04-16T12:02:56.729319687Z" level=info msg="loading plugin "io.containerd.grpc.v1.diff"..." type=io.containerd.grpc.v1
532020-04-16T12:02:56.731108833Z time="2020-04-16T12:02:56.729329244Z" level=info msg="loading plugin "io.containerd.grpc.v1.events"..." type=io.containerd.grpc.v1
542020-04-16T12:02:56.731112029Z time="2020-04-16T12:02:56.729338887Z" level=info msg="loading plugin "io.containerd.grpc.v1.healthcheck"..." type=io.containerd.grpc.v1
552020-04-16T12:02:56.731115232Z time="2020-04-16T12:02:56.729348568Z" level=info msg="loading plugin "io.containerd.grpc.v1.images"..." type=io.containerd.grpc.v1
562020-04-16T12:02:56.731118466Z time="2020-04-16T12:02:56.729357537Z" level=info msg="loading plugin "io.containerd.grpc.v1.leases"..." type=io.containerd.grpc.v1
572020-04-16T12:02:56.731121609Z time="2020-04-16T12:02:56.729366344Z" level=info msg="loading plugin "io.containerd.grpc.v1.namespaces"..." type=io.containerd.grpc.v1
582020-04-16T12:02:56.731124820Z time="2020-04-16T12:02:56.729375542Z" level=info msg="loading plugin "io.containerd.internal.v1.opt"..." type=io.containerd.internal.v1
592020-04-16T12:02:56.731128036Z time="2020-04-16T12:02:56.729609345Z" level=info msg="loading plugin "io.containerd.grpc.v1.snapshots"..." type=io.containerd.grpc.v1
602020-04-16T12:02:56.731131398Z time="2020-04-16T12:02:56.729623751Z" level=info msg="loading plugin "io.containerd.grpc.v1.tasks"..." type=io.containerd.grpc.v1
612020-04-16T12:02:56.731134597Z time="2020-04-16T12:02:56.729633652Z" level=info msg="loading plugin "io.containerd.grpc.v1.version"..." type=io.containerd.grpc.v1
622020-04-16T12:02:56.731137751Z time="2020-04-16T12:02:56.729642922Z" level=info msg="loading plugin "io.containerd.grpc.v1.introspection"..." type=io.containerd.grpc.v1
632020-04-16T12:02:56.731140985Z time="2020-04-16T12:02:56.729861119Z" level=info msg=serving... address="/var/run/docker/containerd/containerd-debug.sock"
642020-04-16T12:02:56.731144279Z time="2020-04-16T12:02:56.729932797Z" level=info msg=serving... address="/var/run/docker/containerd/containerd.sock"
652020-04-16T12:02:56.731147479Z time="2020-04-16T12:02:56.729942584Z" level=info msg="containerd successfully booted in 0.063470s"
662020-04-16T12:02:56.737505051Z time="2020-04-16T12:02:56.737428721Z" level=info msg="Setting the storage driver from the $DOCKER_DRIVER environment variable (overlay2)"
672020-04-16T12:02:56.737932650Z time="2020-04-16T12:02:56.737859143Z" level=info msg="parsed scheme: \"unix\"" module=grpc
682020-04-16T12:02:56.738872402Z time="2020-04-16T12:02:56.737958606Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
692020-04-16T12:02:56.738883908Z time="2020-04-16T12:02:56.738029087Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
702020-04-16T12:02:56.738895779Z time="2020-04-16T12:02:56.738087921Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
712020-04-16T12:02:56.740645723Z time="2020-04-16T12:02:56.740586586Z" level=info msg="parsed scheme: \"unix\"" module=grpc
722020-04-16T12:02:56.740721248Z time="2020-04-16T12:02:56.740677682Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
732020-04-16T12:02:56.740837939Z time="2020-04-16T12:02:56.740773148Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock 0 <nil>}] <nil>}" module=grpc
742020-04-16T12:02:56.741065792Z time="2020-04-16T12:02:56.740972786Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
752020-04-16T12:02:56.793352138Z time="2020-04-16T12:02:56.792038442Z" level=info msg="Loading containers: start."
762020-04-16T12:02:56.818338169Z time="2020-04-16T12:02:56.818168859Z" level=warning msg="Running modprobe bridge br_netfilter failed with message: ip: can't find device 'bridge'\nbridge 167936 1 br_netfilter\nstp 16384 1 bridge\nllc 16384 2 bridge,stp\nip: can't find device 'br_netfilter'\nbr_netfilter 24576 0 \nbridge 167936 1 br_netfilter\nmodprobe: can't change directory to '/lib/modules': No such file or directory\n, error: exit status 1"
772020-04-16T12:02:56.926839906Z time="2020-04-16T12:02:56.925279670Z" level=info msg="Default bridge (docker0) is assigned with an IP address 172.18.0.0/16. Daemon option --bip can be used to set a preferred IP address"
782020-04-16T12:02:56.979089933Z time="2020-04-16T12:02:56.978641321Z" level=info msg="Loading containers: done."
792020-04-16T12:02:56.998196231Z time="2020-04-16T12:02:56.997827853Z" level=info msg="Docker daemon" commit=afacb8b7f0 graphdriver(s)=overlay2 version=19.03.8
802020-04-16T12:02:56.998224970Z time="2020-04-16T12:02:56.997964453Z" level=info msg="Daemon has completed initialization"
812020-04-16T12:02:57.070551238Z time="2020-04-16T12:02:57.069824661Z" level=info msg="API listen on [::]:2375"
822020-04-16T12:02:57.070588095Z time="2020-04-16T12:02:57.069902969Z" level=info msg="API listen on /var/run/docker.sock"
83*********
84Pulling docker image docker:stable ...
85Using docker image sha256:61b2e482e9de9ca3939dce4c90810c89fa7e7450f774590967c2908cba857ddd for docker:stable ...
86 Preparing environment 00:01
87Running on runner-72989761-project-4422333-concurrent-0 via runner-72989761-stg-srm-1587038511-ef0e2deb...
88 Getting source from Git repository 00:03
89$ eval "$CI_PRE_CLONE_SCRIPT"
90Fetching changes with git depth set to 50...
91Initialized empty Git repository in /builds/gitlab-org/monitor/monitor-sandbox/.git/
92Created fresh repository.
93From https://staging.gitlab.com/gitlab-org/monitor/monitor-sandbox
94 * [new ref] refs/pipelines/12750472 -> refs/pipelines/12750472
95 * [new branch] master -> origin/master
96Checking out a666adff as master...
97Skipping Git submodules setup
98 Restoring cache 00:01
99 Downloading artifacts 00:01
100 Running before_script and script 00:24
101$ export SAST_VERSION=${SP_VERSION:-$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')}
102$ if ! docker info &>/dev/null; then # collapsed multi-line command
103$ docker run \ # collapsed multi-line command
104Unable to find image 'registry.gitlab.com/gitlab-org/security-products/sast:12-10-stable' locally
10512-10-stable: Pulling from gitlab-org/security-products/sast
106dade2898c231: Pulling fs layer
107dade2898c231: Verifying Checksum
108dade2898c231: Download complete
109dade2898c231: Pull complete
110Digest: sha256:0d539fa0685201852631e35ee9f0d4216ada62d8411dfef2dc58ea84c5a8d1eb
111Status: Downloaded newer image for registry.gitlab.com/gitlab-org/security-products/sast:12-10-stable
1122020/04/16 12:03:36 Copy project directory to containers
1132020/04/16 12:03:36 [bandit] Detect project using plugin
1142020/04/16 12:03:36 [bandit] Project not compatible
1152020/04/16 12:03:36 [brakeman] Detect project using plugin
1162020/04/16 12:03:36 [brakeman] Project not compatible
1172020/04/16 12:03:36 [gosec] Detect project using plugin
1182020/04/16 12:03:36 [gosec] Project not compatible
1192020/04/16 12:03:36 [spotbugs] Detect project using plugin
1202020/04/16 12:03:36 [spotbugs] Project not compatible
1212020/04/16 12:03:36 [flawfinder] Detect project using plugin
1222020/04/16 12:03:36 [flawfinder] Project not compatible
1232020/04/16 12:03:36 [phpcs-security-audit] Detect project using plugin
1242020/04/16 12:03:36 [phpcs-security-audit] Project not compatible
1252020/04/16 12:03:36 [security-code-scan] Detect project using plugin
1262020/04/16 12:03:36 [security-code-scan] Project not compatible
1272020/04/16 12:03:36 [nodejs-scan] Detect project using plugin
1282020/04/16 12:03:36 [nodejs-scan] Project is compatible
1292020/04/16 12:03:36 [nodejs-scan] Downloading analyzer...
130......................................................................
1312020/04/16 12:03:41 [nodejs-scan] Starting analyzer...
132Found project in /tmp/app
13330 rules loaded
134Successfully compiled 3 files with Babel.
1352020/04/16 12:03:43 [eslint] Detect project using plugin
1362020/04/16 12:03:43 [eslint] Project is compatible
1372020/04/16 12:03:43 [eslint] Downloading analyzer...
138...............................................................................
1392020/04/16 12:03:49 [eslint] Starting analyzer...
140Found project in /tmp/app
1412020/04/16 12:03:52 [tslint] Detect project using plugin
1422020/04/16 12:03:52 [tslint] Project not compatible
1432020/04/16 12:03:52 [secrets] Detect project using plugin
1442020/04/16 12:03:52 [secrets] Project is compatible
1452020/04/16 12:03:52 [secrets] Downloading analyzer...
146.......................................................
1472020/04/16 12:03:56 [secrets] Starting analyzer...
1482020/04/16 12:03:58 [sobelow] Detect project using plugin
1492020/04/16 12:03:58 [sobelow] Project not compatible
1502020/04/16 12:03:58 [pmd-apex] Detect project using plugin
1512020/04/16 12:03:58 [pmd-apex] Project not compatible
1522020/04/16 12:03:58 [kubesec] Detect project using plugin
1532020/04/16 12:03:58 [kubesec] Project not compatible
154+----------------------------------------------------------------------------------------+
155| Severity | Tool | Location |
156+----------------------------------------------------------------------------------------+
157 Running after_script 00:01
158 Saving cache 00:02
159 Uploading artifacts for successful job 00:02
160Uploading artifacts...
161gl-sast-report.json: found 1 matching files
162Uploading artifacts to coordinator... ok id=37160323 responseStatus=201 Created token=-AzEQf-v
163Job succeeded