Skip to content
Snippets Groups Projects

container_scanning

Passed Started by
Dhiraj Bodicherla
@dbodicherla
This job is archived. Only the complete pipeline can be retried.
1Running with gitlab-runner 13.0.0-rc2 (926834bc)
2 on docker-auto-scale fa6cab46
3 Preparing the "docker+machine" executor 01:21
4Using Docker executor with image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
5Starting service registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
6Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
7Using docker image sha256:874ba4d2dfb3897803b8c7d23d56c2bcd04b062af41422d5d60f2f28538ef7c3 for registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
8Waiting for services to be up and running...
9Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
10Using docker image sha256:3637cca9e5f6409c93af9b09201642da6b7d7b08885fa4d7738109104c622205 for registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
11 Preparing environment 00:03
12Running on runner-fa6cab46-project-4422333-concurrent-0 via runner-fa6cab46-stg-srm-1590089788-3ee06045...
13 Getting source from Git repository 00:01
14Skipping Git repository setup
15Skipping Git checkout
16Skipping Git submodules setup
17 Restoring cache 00:02
18 Downloading artifacts 00:01
19 Running before_script and script 00:09
20$ /analyzer run
21[INFO] ▶ GitLab klar analyzer v2.4.4
22[WARN] ▶ Whitelist file with path '/builds/gitlab-org/monitor/monitor-sandbox/clair-whitelist.yml' does not exist, skipping
23[INFO] ▶ DOCKER_USER and DOCKER_PASSWORD environment variables have not been configured. Defaulting to DOCKER_USER=$CI_REGISTRY_USER and DOCKER_PASSWORD=$CI_REGISTRY_PASSWORD
24[INFO] ▶ Successfully connected to the vulnerabilities database
25[INFO] ▶ Started Clair server process with PID: 15
26[INFO] ▶ Waiting for Clair API to start...
27[WARN] ▶ Clair API not ready, waiting 2s before retrying. Retry 1 of 10
28[WARN] ▶ Clair log contents:
29 {"Event":"running database migrations","Level":"info","Location":"pgsql.go:216","Time":"2020-05-21 19:37:57.155136"}
30
31[WARN] ▶ Clair log contents:
32 {"Event":"database migration ran successfully","Level":"info","Location":"pgsql.go:223","Time":"2020-05-21 19:37:57.230302"}
33
34[WARN] ▶ Clair log contents:
35 {"Event":"notifier service is disabled","Level":"info","Location":"notifier.go:77","Time":"2020-05-21 19:37:57.230906"}
36
37[WARN] ▶ Clair log contents:
38 {"Event":"starting main API","Level":"info","Location":"api.go:52","Time":"2020-05-21 19:37:57.231117","port":6060}
39
40[INFO] ▶ Clair API started successfully.
41[INFO] ▶ Scanning container from registry 'registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:7952f2f978e010e5b01e3d83bb1d945cdea69804' for vulnerabilities with severity level 'Unknown' or higher with klar '2.4.0' and clair 'v2.1.2'
42[INFO] ▶ Shutting down Clair server with PID: 15
43[INFO] ▶ Clair server shut down successfully
44[WARN] ▶ Encountered error while reading Dockerfile for remediation, halting remediation processing. Error: Dockerfile does not exist
45[INFO] ▶ Image [registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:7952f2f978e010e5b01e3d83bb1d945cdea69804] contains NO unapproved vulnerabilities
46 Running after_script 00:01
47 Saving cache 00:02
48 Uploading artifacts for successful job 00:01
49Uploading artifacts...
50gl-container-scanning-report.json: found 1 matching files
51Uploading artifacts to coordinator... ok id=37227540 responseStatus=201 Created token=sZ_fbKZV
52Job succeeded