brakeman-sast

Passed Started 2 years ago by
1Running with gitlab-runner 15.6.0~beta.186.ga889181a (a889181a)
2  on green-1.shared-gitlab-org.runners-manager.gitlab.com/default Mf8beF5G
3  feature flags: FF_USE_FASTZIP:true
 4  Resolving secrets  
  00:00
 5  Preparing the "docker+machine" executor  
  00:06
6Using Docker executor with image registry.gitlab.com/security-products/brakeman:3 ...
7Authenticating with credentials from job payload (GitLab Registry)
8Pulling docker image registry.gitlab.com/security-products/brakeman:3 ...
9Using docker image sha256:617923e976539bc10fab66490fdb5677a6506147b7bec66c82c8816ee6991af0 for registry.gitlab.com/security-products/brakeman:3 with digest registry.gitlab.com/security-products/brakeman@sha256:4ae9bd0be9f13fd44f4957649db1ee9b7b8e6bc670b2209684d36cbefb8e6e73 ...
 10  Preparing environment  
  00:02
11Running on runner-mf8bef5g-project-278964-concurrent-0 via runner-mf8bef5g-shared-gitlab-org-1667777812-4787bfec...
 12  Getting source from Git repository  
  00:23
13$ eval "$CI_PRE_CLONE_SCRIPT"
14Fetching changes with git depth set to 20...
15Initialized empty Git repository in /builds/gitlab-org/gitlab/.git/
16Created fresh repository.
17remote: Enumerating objects: 119078, done.        
18remote: Counting objects: 100% (119078/119078), done.        
19remote: Compressing objects: 100% (78792/78792), done.        
20remote: Total 119078 (delta 49469), reused 82288 (delta 35959), pack-reused 0        
21Receiving objects: 100% (119078/119078), 110.06 MiB | 30.34 MiB/s, done.
22Resolving deltas: 100% (49469/49469), done.
23From https://git-us-east1-c.ci-gateway.int.gprd.gitlab.net:8989/gitlab-org/gitlab
24 * [new ref]             refs/pipelines/687019226 -> refs/pipelines/687019226
25 * [new branch]          master                   -> origin/master
26Checking out a134b2ce as master...
27Skipping Git submodules setup
28$ git remote set-url origin "${CI_REPOSITORY_URL}"
 29  Executing "step_script" stage of the job script  
  08:14
30Using docker image sha256:617923e976539bc10fab66490fdb5677a6506147b7bec66c82c8816ee6991af0 for registry.gitlab.com/security-products/brakeman:3 with digest registry.gitlab.com/security-products/brakeman@sha256:4ae9bd0be9f13fd44f4957649db1ee9b7b8e6bc670b2209684d36cbefb8e6e73 ...
31$ /analyzer run
32[INFO] [Brakeman] [2022-11-07T01:03:04Z] ▶ GitLab Brakeman analyzer v3.1.3
33[INFO] [Brakeman] [2022-11-07T01:03:04Z] ▶ Detecting project
34[INFO] [Brakeman] [2022-11-07T01:03:04Z] ▶ Found project in /builds/gitlab-org/gitlab
35[INFO] [Brakeman] [2022-11-07T01:03:04Z] ▶ Running analyzer
36[INFO] [Brakeman] [2022-11-07T01:07:47Z] ▶ Creating report
37[INFO] [2022-11-07T01:07:47Z] ▶ /builds/gitlab-org/gitlab/gl-sast-report-post.json written
38[INFO] [VET] [2022-11-07T01:07:47Z] ▶ GitLab VET analyzer vnot-configured
39[INFO] [VET] [2022-11-07T01:07:47Z] ▶ memory (8GB physical, 8GB usable)
40[INFO] [VET] [2022-11-07T01:07:47Z] ▶ Model: AMD EPYC 7B12
41  details: cpu (1 physical package, 1 core, 2 hardware threads)
42[INFO] [VET] [2022-11-07T01:07:47Z] ▶ Disk name: dm-0, controller: Unknown
43[INFO] [VET] [2022-11-07T01:07:47Z] ▶ Disk name: md0, controller: Unknown
44[INFO] [VET] [2022-11-07T01:07:47Z] ▶ Disk name: sda, controller: HDD
45████████████████████████████████████████████████
46███  ████  █████  ██  █    █      ██    ██    ██
47██    ██    ████  ██  █ ██████  ████ ████████ ██
48█            ███  ██  █    ███  ████ ███  ███ ██
49██          ████  ██  █ ██████  ████ ████████ ██
50████      ███████    ██    ███  ████    ██    ██
51██████  ████████████████████████████████████████
52████████████████████████████████████████████████
53[//vet import --src /builds/gitlab-org/gitlab --store /builds/gitlab-org/gitlab/vetstore]
54[INFO] [VET] [2022-11-07T01:07:47Z] ▶ Vet Import Process Starting...
55[INFO] [VET] [2022-11-07T01:10:27Z] ▶ 
56Import time 160.324335 seconds
57[INFO] [VET] [2022-11-07T01:10:27Z] ▶ VET import complete
58[INFO] [VET] [2022-11-07T01:10:27Z] ▶ GitLab VET analyzer vnot-configured
59[INFO] [VET] [2022-11-07T01:10:27Z] ▶ memory (8GB physical, 8GB usable)
60[INFO] [VET] [2022-11-07T01:10:27Z] ▶ Model: AMD EPYC 7B12
61  details: cpu (1 physical package, 1 core, 2 hardware threads)
62████████████████████████████████████████████████
63███  ████  █████  ██  █    █      ██    ██    ██
64██    ██    ████  ██  █ ██████  ████ ████████ ██
65█            ███  ██  █    ███  ████ ███  ███ ██
66██          ████  ██  █ ██████  ████ ████████ ██
67████      ███████    ██    ███  ████    ██    ██
68██████  ████████████████████████████████████████
69████████████████████████████████████████████████
70[//vet verify --reportIn /builds/gitlab-org/gitlab/gl-sast-report.json --reportOut /builds/gitlab-org/gitlab/gl-sast-report-post.json --store /builds/gitlab-org/gitlab/vetstore --config /verify/brakeman.toml]
71[INFO] [VET] [2022-11-07T01:10:28Z] ▶ Disk name: dm-0, controller: Unknown
72[INFO] [VET] [2022-11-07T01:10:28Z] ▶ Disk name: md0, controller: Unknown
73[INFO] [VET] [2022-11-07T01:10:28Z] ▶ Disk name: sda, controller: HDD
74[INFO] [VET] [2022-11-07T01:10:29Z] ▶ Run stencils
75[INFO] [VET] [2022-11-07T01:10:29Z] ▶ coala: script: (slice { :dir "<-", :kind [ :tree ] } {  :name [ "validates" ] , :kind [ :call ] } (nodes {  :name [ "URI::MailTo:EMAIL_REGEXP" ]  } store))
76iterator
77[INFO] [VET] [2022-11-07T01:10:29Z] ▶ coala: script: (slice { :dir "<-", :kind [ :tree ] } {  :name [ "exec" "match" ] , :kind [ :call ] } (nodes {  :type [ :lit ]  } store))
78iterator
79[INFO] [VET] [2022-11-07T01:10:29Z] ▶ Augment report
80[INFO] [VET] [2022-11-07T01:11:17Z] ▶ Report augmented within 47.973674 seconds
81[INFO] [VET] [2022-11-07T01:11:17Z] ▶ /builds/gitlab-org/gitlab/gl-sast-report-post.json written
 82  Uploading artifacts for successful job  
  00:05
83Uploading artifacts...
84gl-sast-report.json: found 1 matching files and directories 
85WARNING: Upload request redirected                  location=https://gitlab.com/api/v4/jobs/3281613179/artifacts?artifact_format=zip&artifact_type=archive&expire_in=1+week new-url=https://gitlab.com
86WARNING: Retrying...                                context=artifacts-uploader error=request redirected
87Uploading artifacts as "archive" to coordinator... 201 Created  id=3281613179 responseStatus=201 Created token=d7PvzPnP
88Uploading artifacts...
89gl-sast-report.json: found 1 matching files and directories 
90WARNING: Upload request redirected                  location=https://gitlab.com/api/v4/jobs/3281613179/artifacts?artifact_format=raw&artifact_type=sast&expire_in=1+week new-url=https://gitlab.com
91WARNING: Retrying...                                context=artifacts-uploader error=request redirected
92Uploading artifacts as "sast" to coordinator... 201 Created  id=3281613179 responseStatus=201 Created token=d7PvzPnP
 93  Cleaning up project directory and file based variables  
  00:01
94Job succeeded
Tags: gitlab-org
Job artifacts
The artifacts were removed 2 years ago
Commit a134b2ce
Merge branch 'hustewart-wait-app-update' into 'master'
Related jobs

brakeman-sast
code_quality
eslint
feature-flags-usage
gemnasium-dependency_scanning
gemnasium-python-dependency_scanning
generate-apollo-graphql-schema
haml-lint
haml-lint ee
rubocop
secret_detection
semgrep-sast
static-analysis 1/2
static-analysis 2/2
static-verification-with-database
yarn-audit-dependency_scanning