container_scanning

Passed Started 4 years ago by
This job is archived. Only the complete pipeline can be retried.
1Running with gitlab-runner 13.0.0 (c127439c)
2  on docker-auto-scale 72989761
 3  Preparing the "docker+machine" executor  
  01:23
4Using Docker executor with image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
5Starting service registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
6Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
7Using docker image sha256:d52cbfcfb6e15b7b9588a9581234c992cfd14fc44c338923964d86c5159d873d for registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
8Waiting for services to be up and running...
9Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
10Using docker image sha256:3637cca9e5f6409c93af9b09201642da6b7d7b08885fa4d7738109104c622205 for registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
 11  Preparing environment  
  00:03
12Running on runner-72989761-project-4422333-concurrent-0 via runner-72989761-stg-srm-1590658034-47b06a99...
 13  Getting source from Git repository  
  00:01
14Skipping Git repository setup
15Skipping Git checkout
16Skipping Git submodules setup
 17  Restoring cache  
  00:02
 18  Downloading artifacts  
  00:01
 19  Running before_script and script  
  00:10
20$ /analyzer run
21[INFO] ▶ GitLab klar analyzer v2.4.4
22[WARN] ▶ Whitelist file with path '/builds/gitlab-org/monitor/monitor-sandbox/clair-whitelist.yml' does not exist, skipping
23[INFO] ▶ DOCKER_USER and DOCKER_PASSWORD environment variables have not been configured. Defaulting to DOCKER_USER=$CI_REGISTRY_USER and DOCKER_PASSWORD=$CI_REGISTRY_PASSWORD
24[INFO] ▶ Successfully connected to the vulnerabilities database
25[INFO] ▶ Started Clair server process with PID: 14
26[INFO] ▶ Waiting for Clair API to start...
27[WARN] ▶ Clair API not ready, waiting 2s before retrying. Retry 1 of 10
28[WARN] ▶ Clair log contents: 
29  {"Event":"running database migrations","Level":"info","Location":"pgsql.go:216","Time":"2020-05-28 09:28:45.327268"}
30  
31[WARN] ▶ Clair log contents: 
32  {"Event":"database migration ran successfully","Level":"info","Location":"pgsql.go:223","Time":"2020-05-28 09:28:45.434768"}
33  
34[WARN] ▶ Clair log contents: 
35  {"Event":"notifier service is disabled","Level":"info","Location":"notifier.go:77","Time":"2020-05-28 09:28:45.435536"}
36  {"Event":"starting main API","Level":"info","Location":"api.go:52","Time":"2020-05-28 09:28:45.435588","port":6060}
37  
38[INFO] ▶ Clair API started successfully.
39[INFO] ▶ Scanning container from registry 'registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:1628bb31e7f7c52a2cccdf8903fecad548b68629' for vulnerabilities with severity level 'Unknown' or higher with klar '2.4.0' and clair 'v2.1.2'
40[INFO] ▶ Shutting down Clair server with PID: 14
41[INFO] ▶ Clair server shut down successfully
42[WARN] ▶ Encountered error while reading Dockerfile for remediation, halting remediation processing. Error: Dockerfile does not exist
43[INFO] ▶ Image [registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:1628bb31e7f7c52a2cccdf8903fecad548b68629] contains NO unapproved vulnerabilities
 44  Running after_script  
  00:01
 45  Saving cache  
  00:02
 46  Uploading artifacts for successful job  
  00:02
47Uploading artifacts...
48gl-container-scanning-report.json: found 1 matching files 
49Uploading artifacts to coordinator... ok            id=37237068 responseStatus=201 Created token=uipSpFJQ
50Job succeeded
Admin message

Admin message
