Skip to content
Snippets Groups Projects

container_scanning

Passed Started by
Miguel Rincon
@mrincon
This job is archived. Only the complete pipeline can be retried.
1Running with gitlab-runner 13.1.0 (6214287e)
2 on docker-auto-scale 72989761
3 Preparing the "docker+machine" executor 01:12
4Using Docker executor with image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
5Starting service registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
6Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
7Using docker image sha256:032e46f9e42c3f26280ed984de737e5d3d1ca99bb641414b13226c6c62556feb for registry.gitlab.com/gitlab-org/security-products/analyzers/clair-vulnerabilities-db:latest ...
8Waiting for services to be up and running...
9Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
10Using docker image sha256:638b341710bd3739a8ed53cc713859c90558b6693da866f3ca6c81194fd7d58b for registry.gitlab.com/gitlab-org/security-products/analyzers/klar:2 ...
11 Preparing environment 00:01
12Running on runner-72989761-project-4422333-concurrent-0 via runner-72989761-stg-srm-1594622930-b9ae0aaa...
13 Getting source from Git repository 00:01
14Skipping Git repository setup
15Skipping Git checkout
16Skipping Git submodules setup
17 Executing "step_script" stage of the job script 00:08
18$ /analyzer run
19[INFO] [klar] [2020-07-13T06:50:04Z] ▶ GitLab klar analyzer v2.4.8
20[WARN] [klar] [2020-07-13T06:50:04Z] ▶ Allowlist file with path '/builds/gitlab-org/monitor/monitor-sandbox/clair-whitelist.yml' does not exist, skipping
21[WARN] [klar] [2020-07-13T06:50:04Z] ▶ Allowlist file with path '/builds/gitlab-org/monitor/monitor-sandbox/vulnerability-allowlist.yml' does not exist, skipping
22[INFO] [klar] [2020-07-13T06:50:04Z] ▶ DOCKER_USER and DOCKER_PASSWORD environment variables have not been configured. Defaulting to DOCKER_USER=$CI_REGISTRY_USER and DOCKER_PASSWORD=$CI_REGISTRY_PASSWORD
23[INFO] [klar] [2020-07-13T06:50:04Z] ▶ Successfully connected to the vulnerabilities database
24[INFO] [klar] [2020-07-13T06:50:04Z] ▶ Started Clair server process with PID: 14
25[INFO] [klar] [2020-07-13T06:50:04Z] ▶ Waiting for Clair API to start...
26[WARN] [klar] [2020-07-13T06:50:04Z] ▶ Clair API not ready, waiting 2s before retrying. Retry 1 of 10
27[WARN] [klar] [2020-07-13T06:50:04Z] ▶ Clair log contents:
28 {"Event":"running database migrations","Level":"info","Location":"pgsql.go:216","Time":"2020-07-13 06:50:04.936083"}
29
30[WARN] [klar] [2020-07-13T06:50:05Z] ▶ Clair log contents:
31 {"Event":"database migration ran successfully","Level":"info","Location":"pgsql.go:223","Time":"2020-07-13 06:50:05.005289"}
32
33[WARN] [klar] [2020-07-13T06:50:05Z] ▶ Clair log contents:
34 {"Event":"notifier service is disabled","Level":"info","Location":"notifier.go:77","Time":"2020-07-13 06:50:05.005779"}
35
36[WARN] [klar] [2020-07-13T06:50:05Z] ▶ Clair log contents:
37 {"Event":"starting main API","Level":"info","Location":"api.go:52","Time":"2020-07-13 06:50:05.005982","port":6060}
38
39[INFO] [klar] [2020-07-13T06:50:06Z] ▶ Clair API started successfully.
40[INFO] [klar] [2020-07-13T06:50:06Z] ▶ Scanning container from registry 'registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:7b53a387a0469bfb090a1d315af36fa24b725cb4' for vulnerabilities with severity level 'Unknown' or higher with klar '2.4.0' and clair 'v2.1.3'
41[INFO] [klar] [2020-07-13T06:50:12Z] ▶ Shutting down Clair server with PID: 14
42[INFO] [klar] [2020-07-13T06:50:12Z] ▶ Clair server shut down successfully
43[WARN] [klar] [2020-07-13T06:50:12Z] ▶ Encountered error while reading Dockerfile for remediation, halting remediation processing. Error: Dockerfile does not exist
44[INFO] [klar] [2020-07-13T06:50:12Z] ▶ Image [registry.staging.gitlab.com/gitlab-org/monitor/monitor-sandbox/master:7b53a387a0469bfb090a1d315af36fa24b725cb4] contains NO unapproved vulnerabilities
45 Uploading artifacts for successful job 00:01
46Uploading artifacts...
47gl-container-scanning-report.json: found 1 matching files and directories
48Uploading artifacts as "container_scanning" to coordinator... ok id=37560058 responseStatus=201 Created token=3Uv35hQ3
49Job succeeded