Skip to content
ACS Packaging CI

ACS-6304 Implement SAST Pipeline Scan #1948

Sign in to view logs

ACS-6304 Implement SAST Pipeline Scan

ACS-6304 Implement SAST Pipeline Scan #1948

Triggered via pull request December 1, 2023 09:10
@mikolajbrzezinskimikolajbrzezinski
synchronize #2637
feature/ACS-6304_implement_SAST_pipeline_scan
Status Failure
Total duration 1h 7m 18s
Artifacts 6
This run and associated checks have been archived and are scheduled for deletion. Learn more about checks retention

ci.yml

on: pull_request
Source Clear Scan (SCA)
0s
Source Clear Scan (SCA)
Pipeline SAST Scan - ACS
17m 30s
Pipeline SAST Scan - ACS
Pipeline SAST Scan - Share
1h 6m
Pipeline SAST Scan - Share
PMD Scan
57s
PMD Scan
CMIS TAS tests - Open Search (CMIS API)
11m 20s
CMIS TAS tests - Open Search (CMIS API)
All AMPs tests
12m 28s
All AMPs tests
Distribution Zip content tests
7m 40s
Distribution Zip content tests
Single Pipeline image tests
0s
Single Pipeline image tests
Test Tomcat deployment
11m 4s
Test Tomcat deployment
Upload docker images needed for pipeline tests: <acs.version>-<PIPELINE_TAG_TEXT_INSERT>-<build>
0s
Upload docker images needed for pipeline tests: <acs.version>-<PIPELINE_TAG_TEXT_INSERT>-<build>
Matrix: cmis_tas_tests_elasticsearch
Matrix: tas_test_with_mtls
Matrix: tas_tests
Matrix: tas_tests_search_api
Matrix: tas_tests_with_aims
Matrix: upgrade_tas_tests
Fit to window
Zoom out
Zoom in

Annotations

5 errors and 5 warnings
Elasticsearch Upgrade TAS tests
Process completed with exit code 1.
Pipeline SAST Scan - ACS
[01 Dec 2023 09:18:01,0014] PIPELINE-SCAN INFO: Pipeline Scan Tool Version 23.11.0-0. [01 Dec 2023 09:18:01,0018] PIPELINE-SCAN INFO: Loading policy file Alfresco_Default.json [01 Dec 2023 09:18:01,0029] PIPELINE-SCAN INFO: Successfully retrieved the policy [01 Dec 2023 09:18:01,0029] PIPELINE-SCAN INFO: Policy name: Alfresco Default [01 Dec 2023 09:18:01,0029] PIPELINE-SCAN INFO: CWE filter: [01 Dec 2023 09:18:01,0029] PIPELINE-SCAN INFO: Severity filter: 3, 4, 5, [01 Dec 2023 09:18:01,0030] PIPELINE-SCAN INFO: Beginning scanning of 'distribution/target/alfresco.war'. [01 Dec 2023 09:18:01,0030] PIPELINE-SCAN INFO: Sending 187058500 bytes to the server for analysis. [01 Dec 2023 09:19:10,0909] PIPELINE-SCAN INFO: Upload complete. [01 Dec 2023 09:19:10,0910] PIPELINE-SCAN INFO: Scan ID: 6c6f88ef-452e-4cb3-90f0-a119c800e182 [01 Dec 2023 09:19:22,0389] PIPELINE-SCAN INFO: Analysis Started. =========================== Found 6 Scannable modules. =========================== alfresco.war JS files within alfresco.war JS files within alfresco.war JS files within alfresco.war JS files within alfresco.war JS files within alfresco.war [01 Dec 2023 09:27:53,0053] PIPELINE-SCAN INFO: Analysis Complete. [01 Dec 2023 09:27:53,0054] PIPELINE-SCAN INFO: Analysis Results: Received 83312 bytes in 592024ms. [01 Dec 2023 09:27:53,0064] PIPELINE-SCAN INFO: Writing Raw JSON Results to file '/home/runner/work/acs-packaging/acs-packaging/results.json'. [01 Dec 2023 09:27:53,0066] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0066] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0066] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0066] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0066] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0067] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0068] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0069] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0069] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0069] PIPELINE-SCAN INFO: Applying custom severity 2 to cwe 117 [01 Dec 2023 09:27:53,0069] PIPELINE-SCAN INFO: Applying custom severity 4 to cwe 80 [01 Dec 2023 09:27:53,0071] PIPELINE-SCAN INFO: Writing Filtered JSON Results to file '/home/runner/work/acs-packaging/acs-packaging/filtered_results.json'. Scan Summary: PIPELINE_SCAN_VERSION: 23.11.0-0 DEV-STAGE: DEVELOPMENT PROJECT-NAME: acs-packaging-acs SCAN_ID: 6c6f88ef-452e-4cb3-90f0-a119c800e182 SCAN_STATUS: SUCCESS SCAN_MESSAGE: Scan successful. Result
Elasticsearch Maria DB 10.6 | TAS tests (Search API)
Process completed with exit code 1.
Elasticsearch postgreSQL | TAS tests (Search API)
Process completed with exit code 1.
Pipeline SAST Scan - Share
Process completed with exit code 12.
Opensearch Upgrade TAS tests
The following actions uses node12 which is deprecated and will be forced to run on node16: aws-actions/configure-aws-credentials@v1. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
Opensearch Upgrade TAS tests
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Elasticsearch Upgrade TAS tests
The following actions uses node12 which is deprecated and will be forced to run on node16: aws-actions/configure-aws-credentials@v1. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
Elasticsearch Upgrade TAS tests
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Pipeline SAST Scan - Share
No files were found with the provided path: readable_output.zip. No artifacts will be uploaded.

Artifacts

Produced during runtime
Name Size
PMD Summary (Human Readable) Expired
249 Bytes
Veracode Pipeline-Scan Results Expired
105 KB
Veracode Pipeline-Scan Results - ACS (Human Readable) Expired
2.47 KB
containers-logs-tas_tests_search_api-1-20231201093547.tar.gz Expired
129 KB
containers-logs-tas_tests_search_api-1-20231201093627.tar.gz Expired
130 KB
containers-logs-upgrade_tas_tests-1-20231201092556.tar.gz Expired
164 Bytes