Scheduled CVE vulnerability scan of 5.x published images. #41
vulnerability-scan-schedule-5x.yml
on: schedule
Scan for vulnerabilities on 5.x images
/
setup-matrix
13s
Scan for vulnerabilities on 5.x images
/
set-sha-ref
2s
Matrix: Scan for vulnerabilities on 5.x images / vulnerability-scan
Annotations
23 errors
Scan for vulnerabilities on 5.x images / vulnerability-scan (elasticsearch)
2024-11-27T22:01:58Z INFO [vulndb] Need to update DB
2024-11-27T22:01:58Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:58Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:01Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:01Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:01Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:01Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:01Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:01Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/elasticsearch:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/elasticsearch:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/elasticsearch:): failed to find image ghcr.io/dpc-sdp/bay/elasticsearch:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/elasticsearch/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-fpm-exporter)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-fpm-exporter)
2024-11-27T22:01:58Z INFO [vulndb] Need to update DB
2024-11-27T22:01:58Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:58Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:01Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:01Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:01Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:01Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:01Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:02Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/php-fpm-exporter:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/php-fpm-exporter:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/php-fpm-exporter:): failed to find image ghcr.io/dpc-sdp/bay/php-fpm-exporter:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/php-fpm-exporter/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mailpit)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mailpit)
2024-11-27T22:01:59Z INFO [vulndb] Need to update DB
2024-11-27T22:01:59Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:59Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:02Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:02Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:02Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:02Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/mailpit:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/mailpit:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/mailpit:): failed to find image ghcr.io/dpc-sdp/bay/mailpit:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/mailpit/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (node)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (node)
2024-11-27T22:01:58Z INFO [vulndb] Need to update DB
2024-11-27T22:01:58Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:58Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:02Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:02Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:02Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:02Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/node:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/node:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/node:): failed to find image ghcr.io/dpc-sdp/bay/node:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/node/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mailhog)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mailhog)
2024-11-27T22:02:00Z INFO [vulndb] Need to update DB
2024-11-27T22:02:00Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:02:00Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:02Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:02Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:02Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:03Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/mailhog:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/mailhog:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/mailhog:): failed to find image ghcr.io/dpc-sdp/bay/mailhog:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/mailhog/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (ripple-static)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (ripple-static)
2024-11-27T22:01:59Z INFO [vulndb] Need to update DB
2024-11-27T22:01:59Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:59Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:02Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:02Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:02Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:02Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:02Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/ripple-static:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/ripple-static:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/ripple-static:): failed to find image ghcr.io/dpc-sdp/bay/ripple-static:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/ripple-static/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (ci-builder)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (ci-builder)
2024-11-27T22:01:59Z INFO [vulndb] Need to update DB
2024-11-27T22:01:59Z INFO [vulndb] Downloading vulnerability DB...
2024-11-27T22:01:59Z INFO [vulndb] Downloading artifact... repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:03Z INFO [vulndb] Artifact successfully downloaded repo="mirror.gcr.io/aquasec/trivy-db:2"
2024-11-27T22:02:03Z INFO [vuln] Vulnerability scanning is enabled
2024-11-27T22:02:03Z INFO [secret] Secret scanning is enabled
2024-11-27T22:02:03Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-27T22:02:03Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-27T22:02:03Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "ghcr.io/dpc-sdp/bay/ci-builder:" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred:
* docker error: unable to inspect the image (ghcr.io/dpc-sdp/bay/ci-builder:): Error response from daemon: invalid reference format
* containerd error: parse error: invalid reference format
* podman error: unable to inspect the image (ghcr.io/dpc-sdp/bay/ci-builder:): failed to find image ghcr.io/dpc-sdp/bay/ci-builder:: invalid reference format
* remote error: GET https://ghcr.io/v2/dpc-sdp/bay/ci-builder/manifests/latest: MANIFEST_UNKNOWN: manifest unknown
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-fpm)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-fpm)
The operation was canceled.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-cli)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (php-cli)
The operation was canceled.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mariadb)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (mariadb)
The operation was canceled.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (nginx)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (nginx)
The operation was canceled.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (awx-ee)
The job was canceled because "elasticsearch" failed.
|
Scan for vulnerabilities on 5.x images / vulnerability-scan (awx-ee)
The operation was canceled.
|