Skip to content
Snippets Groups Projects

bundler-audit-dependency_scanning

Passed Started by
🤖 GitLab Bot 🤖
@gitlab-bot
1Running with gitlab-runner 14.1.0-rc1 (e9489c8a)
2 on docker-auto-scale-com 8a6210b8
3 feature flags: FF_USE_FASTZIP:true
4 Resolving secrets 00:00
5 Preparing the "docker+machine" executor 00:09
6Using Docker executor with image registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit:2 ...
7Authenticating with credentials from job payload (GitLab Registry)
8Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit:2 ...
9Using docker image sha256:5d386566ecb0d5f88126e41b5a1d9e578b46b1645db57d1db0204f00fac1eea5 for registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit:2 with digest registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit@sha256:99d4f036d326318b84c0e452e2c95d5758f7709dd1a3f776e0a20f1c29d757e1 ...
10 Preparing environment 00:03
11Running on runner-8a6210b8-project-278964-concurrent-0 via runner-8a6210b8-gsrm-1629289257-caee26c1...
12 Getting source from Git repository 00:31
13$ eval "$CI_PRE_CLONE_SCRIPT"
14Downloading archived master...
15Connecting to storage.googleapis.com (172.217.193.128:443)
16saving to '/tmp/gitlab.tar.gz'
17gitlab.tar.gz 1% | | 5544k 0:01:03 ETA
18gitlab.tar.gz 81% |************************* | 281M 0:00:00 ETA
19gitlab.tar.gz 100% |********************************| 347M 0:00:00 ETA
20'/tmp/gitlab.tar.gz' saved
21Extracting tarball into /builds/gitlab-org/gitlab...
22Fetching changes with git depth set to 20...
23Reinitialized existing Git repository in /builds/gitlab-org/gitlab/.git/
24Created fresh repository.
25remote: Enumerating objects: 709, done.
26remote: Counting objects: 100% (345/345), done.
27remote: Compressing objects: 100% (118/118), done.
28remote: Total 142 (delta 113), reused 51 (delta 24), pack-reused 0
29Receiving objects: 100% (142/142), 19.46 KiB | 9.73 MiB/s, done.
30Resolving deltas: 100% (113/113), completed with 80 local objects.
31From https://gitlab.com/gitlab-org/gitlab
32 * [new ref] 46bb9dc7a79a016d7bc25d076e151617a34eacba -> refs/pipelines/355238617
33 * [new branch] master -> origin/master
34Checking out 46bb9dc7 as master...
35Skipping Git submodules setup
36 Executing "step_script" stage of the job script 00:02
37Using docker image sha256:5d386566ecb0d5f88126e41b5a1d9e578b46b1645db57d1db0204f00fac1eea5 for registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit:2 with digest registry.gitlab.com/gitlab-org/security-products/analyzers/bundler-audit@sha256:99d4f036d326318b84c0e452e2c95d5758f7709dd1a3f776e0a20f1c29d757e1 ...
38$ /analyzer run
39[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ GitLab bundler-audit analyzer v2.11.3
40[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Detecting project
41[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Found project in /builds/gitlab-org/gitlab
42[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Running analyzer
43[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Updating vulnerability database
44[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Using commit d9d16087d5b590d6b90f8ea739ea9ad3b2a21d85
45 of vulnerability database
46[INFO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ Creating report
47[ERRO] [bundler-audit] [2021-08-18T14:07:06Z] ▶ read /builds/gitlab-org/gitlab: is a directory
48 Uploading artifacts for successful job 00:04
49Uploading artifacts...
50gl-dependency-scanning-report.json: found 1 matching files and directories
51Uploading artifacts as "archive" to coordinator... ok id=1513593319 responseStatus=201 Created token=pepF8UET
52Uploading artifacts...
53gl-dependency-scanning-report.json: found 1 matching files and directories
54Uploading artifacts as "dependency_scanning" to coordinator... ok id=1513593319 responseStatus=201 Created token=pepF8UET
55 Cleaning up file based variables 00:01
56Job succeeded