snyk-container-monitor ○ success

Duration: 1m 4s
Queued: 1s
📁 Stage: test
🖥 Runner: linux-1
Back to Pipeline View in GitLab
Average Duration
53s
This job: 1m 4s
Failure Rate
3.0%
last 30 days
External Links
📊 Grafana Pod View 📊 Grafana Node View 📋 Loki Logs 🔍 Lilibet Dashboard

Job Execution Phases

💡 Tip: Click on any phase bar to jump to that section in the log below

Job Analysis

Job Status: Passed

Status: Job passed successfully

Full Job Log

151 lines
Match - of 0
1 17:05:41 Running with gitlab-runner 18.9.0 (07e534ba)
2 17:05:41 on gitlab-runner-linux-1-5b9cfd64ff-k5sg5 aP4tCsXyp, system ID: r_wQDtEh3nNZsL
3 17:05:41 feature flags: FF_USE_FASTZIP:true, FF_USE_NEW_BASH_EVAL_STRATEGY:true, FF_USE_DYNAMIC_TRACE_FORCE_SEND_INTERVAL:true, FF_SCRIPT_SECTIONS:true, FF_ENABLE_JOB_CLEANUP:true, FF_USE_ADVANCED_POD_SPEC_CONFIGURATION:true, FF_PRINT_POD_EVENTS:true, FF_USE_DUMB_INIT_WITH_KUBERNETES_EXECUTOR:true, FF_LOG_IMAGES_CONFIGURED_FOR_JOB:true, FF_CLEAN_UP_FAILED_CACHE_EXTRACT:true, FF_GIT_URLS_WITHOUT_TOKENS:true, FF_WAIT_FOR_POD_TO_BE_REACHABLE:true, FF_USE_FLEETING_ACQUIRE_HEARTBEATS:true, FF_USE_JOB_ROUTER:true
4 17:05:41 Resolving secrets
5 17:05:41 section_start:1777827941:prepare_executor
6 17:05:41 +Preparing the "kubernetes" executor
7 17:05:41 Using Kubernetes namespace: gitlab-runner
8 17:05:41 Using Kubernetes executor with image registry.scandit.com/dockerfiles/snyk:ubuntu@sha256:c488e3de6b1d5adc01d19a85bd9753c1a3ae142e5e13d97e0bdb4d6659dfd958 ...
9 17:05:41 Using attach strategy to execute scripts...
10 17:05:41 Using effective pull policy of [Always] for container helper
11 17:05:41 Using effective pull policy of [Always] for container init-permissions
12 17:05:41 Using effective pull policy of [Always] for container build
13 17:05:42 section_end:1777827942:prepare_executor
14 17:05:42 +section_start:1777827942:prepare_script
15 17:05:42 +Preparing environment
16 17:05:42 Using FF_USE_POD_ACTIVE_DEADLINE_SECONDS, the Pod activeDeadlineSeconds will be set to the job timeout: 1h0m0s...
17 17:05:42 WARNING: Advanced Pod Spec configuration enabled, merging the provided PodSpec to the generated one. This is a beta feature and is subject to change. Feedback is collected in this issue: https://gitlab.com/gitlab-org/gitlab-runner/-/issues/29659 ...
18 17:05:42 Subscribing to Kubernetes Pod events...
19 17:05:42 Type Reason Message
20 17:05:42 Normal Scheduled Successfully assigned gitlab-runner/runner-ap4tcsxyp-project-621-concurrent-9-ad2j0svj to ci10
21 17:05:43 Normal Pulled Container image "registry.gitlab.com/gitlab-org/gitlab-runner/gitlab-runner-helper:x86_64-v18.9.0" already present on machine
22 17:05:43 Normal Created Created container: init-permissions
23 17:05:43 Normal Started Started container init-permissions
24 17:05:45 Normal Pulled Container image "registry.gitlab.com/gitlab-org/gitlab-runner/gitlab-runner-helper:x86_64-v18.9.0" already present on machine
25 17:05:45 Normal Created Created container: helper
26 17:05:45 Normal Started Started container helper
27 17:05:45 Normal Pulling Pulling image "registry.scandit.com/dockerfiles/snyk:ubuntu@sha256:c488e3de6b1d5adc01d19a85bd9753c1a3ae142e5e13d97e0bdb4d6659dfd958"
28 17:06:06 Normal Pulled Successfully pulled image "registry.scandit.com/dockerfiles/snyk:ubuntu@sha256:c488e3de6b1d5adc01d19a85bd9753c1a3ae142e5e13d97e0bdb4d6659dfd958" in 21.012s (21.012s including waiting). Image size: 123873044 bytes.
29 17:06:12 Normal Created Created container: build
30 17:06:12 Normal Started Started container build
31 17:06:16 Running on runner-ap4tcsxyp-project-621-concurrent-9-ad2j0svj via gitlab-runner-linux-1-5b9cfd64ff-k5sg5...
32 17:06:16
33 17:06:16 section_end:1777827976:prepare_script
34 17:06:16 +section_start:1777827976:get_sources
35 17:06:16 +Getting source from Git repository
36 17:06:16 Gitaly correlation ID: 01KQQCV374X8BGV377FZ51YC73
37 17:06:16 Fetching changes with git depth set to 50...
38 17:06:16 Initialized empty Git repository in /build/internal/gitlab-templates/.git/
39 17:06:16 Created fresh repository.
40 17:06:17 Checking out 32840034 as detached HEAD (ref is master)...
41 17:06:17
42 17:06:17 Skipping Git submodules setup
43 17:06:17
44 17:06:17 section_end:1777827977:get_sources
45 17:06:17 +section_start:1777827977:step_script
46 17:06:17 +Executing "step_script" stage of the job script
47 17:06:18 section_start:1777827978:section_pre_build_script_0[hide_duration=true,collapsed=true] $ function cleanup {
48 17:06:18 rv=$?
49 17:06:18 if [ $rv -ne 0 ]; then
50 17:06:18 echo ""
51 17:06:18 echo " Failure Cause Analysis might help, please open this link:"
52 17:06:18 echo " https://scout.scandit.io/analysis/projects/${CI_PROJECT_ID}/jobs/${CI_JOB_ID}"
53 17:06:18 echo ""
54 17:06:18 fi
55 17:06:18 echo ""
56 17:06:18 echo "Scout Analysis: https://scout.scandit.io/analysis/projects/${CI_PROJECT_ID}/jobs/${CI_JOB_ID}"
57 17:06:18 echo ""
58 17:06:18 echo ""
59 17:06:18 echo "Grafana Pod-View: https://grafana.scandit.com/d/k8s_views_pods/kubernetes-views-pods?orgId=1&refresh=1m&var-datasource=${GRAFANA_DATASOURCE}&var-host=${SC_K8S_NODE_NAME}&var-namespace=${SC_K8S_NAMESPACE}&var-pod=${HOSTNAME}&var-resolution=15&from=${__start_time}000&to=${EPOCHSECONDS}000"
60 17:06:18 echo "Grafana Node-View: https://grafana.scandit.com/d/k8s_views_nodes/kubernetes-views-nodes?orgId=1&refresh=1m&var-datasource=${GRAFANA_DATASOURCE}&var-node=${SC_K8S_NODE_NAME}&var-resolution=15s&from=${__start_time}000&to=${EPOCHSECONDS}000"
61 17:06:18 echo "Loki Logs: https://grafana.scandit.com/a/grafana-lokiexplore-app/explore/log_group/gitlab-runner/logs?var-ds=${LOKI_DATASOURCE}&var-filters=log_group%7C=%7Cgitlab-runner&var-filters=source%7C%3D%7C${LOKI_LOGSOURCE}&var-filters=namespace%7C%3D%7C${SC_K8S_NAMESPACE}&var-filters=CI_PROJECT_ID%7C%3D%7C${CI_PROJECT_ID}&var-filters=CI_PIPELINE_ID%7C%3D%7C${CI_PIPELINE_ID}&var-filters=CI_JOB_ID%7C%3D%7C${CI_JOB_ID}&sortOrder=Ascending&from=${__start_time}000&to=${EPOCHSECONDS}000"
62 17:06:18 __date_from=$(date -d "@$(( EPOCHSECONDS - 604800 ))" +%Y-%m-%d)
63 17:06:18 __date_to=$(date -d "@$(( EPOCHSECONDS + 604800 ))" +%Y-%m-%d)
64 17:06:18 echo "Lilibet Statistics: https://lilibet.scandit.io/dashboard/204-job-drill-down?date_range=${__date_from}~${__date_to}&job_name=${CI_JOB_NAME}&project=${CI_PROJECT_PATH}"
65 17:06:18 echo ""
66 17:06:18 exit $rv
67 17:06:18 }
68 17:06:18 trap cleanup EXIT
69 17:06:18 echo "INFO: This is the CI job pre_build_script"
70 17:06:18 echo "INFO: It's defined in the backend/infra/onprem/k8s repo."
71 17:06:18 echo "INFO: These additional Scandit variables are available to you:"
72 17:06:18 echo " SC_K8S_NODE_NAME: $SC_K8S_NODE_NAME"
73 17:06:18 echo " SC_K8S_IMAGE_ID: $SC_K8S_IMAGE_ID"
74 17:06:18 echo " SC_K8S_KYVERNO_PATCHES: |"
75 17:06:18 echo "$SC_K8S_KYVERNO_PATCHES" | sed 's/^/ /'
76 17:06:18 echo "cpu (r/l): ${SC_K8S_REQUESTS_CPU}/${SC_K8S_LIMITS_CPU}"
77 17:06:18 if command -v numfmt >/dev/null 2>&1; then
78 17:06:18 echo "memory (r/l): $(numfmt --to=iec --suffix=B $SC_K8S_REQUESTS_MEMORY)/$(numfmt --to=iec --suffix=B $SC_K8S_LIMITS_MEMORY)"
79 17:06:18 else
80 17:06:18 echo "memory (r/l): ${SC_K8S_REQUESTS_MEMORY}/${SC_K8S_LIMITS_MEMORY}"
81 17:06:18 fi
82 17:06:18 __start_time=${EPOCHSECONDS}
83 17:06:18 echo ""
84 17:06:18 echo "Grafana Pod-View: https://grafana.scandit.com/d/k8s_views_pods/kubernetes-views-pods?orgId=1&refresh=1m&var-datasource=${GRAFANA_DATASOURCE}&var-host=${SC_K8S_NODE_NAME}&var-namespace=${SC_K8S_NAMESPACE}&var-pod=${HOSTNAME}&var-resolution=15&from=${__start_time}000&to=now"
85 17:06:18 echo "Grafana Node-View: https://grafana.scandit.com/d/k8s_views_nodes/kubernetes-views-nodes?orgId=1&refresh=1m&var-datasource=${GRAFANA_DATASOURCE}&var-node=${SC_K8S_NODE_NAME}&var-resolution=15s&from=${__start_time}000&to=now"
86 17:06:18 echo "Loki Logs: https://grafana.scandit.com/a/grafana-lokiexplore-app/explore/log_group/gitlab-runner/logs?var-ds=${LOKI_DATASOURCE}&var-filters=log_group%7C%3D%7Cgitlab-runner&var-filters=source%7C%3D%7C${LOKI_LOGSOURCE}&var-filters=namespace%7C%3D%7C${SC_K8S_NAMESPACE}&var-filters=CI_PROJECT_ID%7C%3D%7C${CI_PROJECT_ID}&var-filters=CI_PIPELINE_ID%7C%3D%7C${CI_PIPELINE_ID}&var-filters=CI_JOB_ID%7C%3D%7C${CI_JOB_ID}&sortOrder=Ascending&from=${__start_time}000&to=now"
87 17:06:18 __date_from=$(date -d "@$(( EPOCHSECONDS - 604800 ))" +%Y-%m-%d)
88 17:06:18 __date_to=$(date -d "@$(( EPOCHSECONDS + 604800 ))" +%Y-%m-%d)
89 17:06:18 echo "Lilibet Statistics: https://lilibet.scandit.io/dashboard/204-job-drill-down?date_range=${__date_from}~${__date_to}&job_name=${CI_JOB_NAME}&project=${CI_PROJECT_PATH}"
90 17:06:18 echo ""
91 17:06:18 echo "Setting up credentials for Gitlab Python registries"
92 17:06:18 mkdir -p ~
93 17:06:18 echo "machine gitlab.scandit.com" > ~/.netrc
94 17:06:18 echo "login gitlab-ci-token" >> ~/.netrc
95 17:06:18 echo "password ${CI_JOB_TOKEN}" >> ~/.netrc
96 17:06:18 chmod 600 ~/.netrc
97 17:06:18 if command -v git &> /dev/null && [ "$(id -u)" -ne 0 ]; then
98 17:06:18 git config --global --add safe.directory $CI_PROJECT_DIR
99 17:06:18 fi
100 17:06:18 sleep infinity &
101 17:06:18 echo $! > ~/.bg_pid
102 17:06:18 section_end:1777827978:section_pre_build_script_0
103 17:06:18 INFO: This is the CI job pre_build_script
104 17:06:18 INFO: It's defined in the backend/infra/onprem/k8s repo.
105 17:06:18 INFO: These additional Scandit variables are available to you:
106 17:06:18 SC_K8S_NODE_NAME: ci10
107 17:06:18 SC_K8S_IMAGE_ID:
108 17:06:18 SC_K8S_KYVERNO_PATCHES: |
109 17:06:18
110 17:06:18 cpu (r/l): 1/8
111 17:06:18 memory (r/l): 1.0GB/16GB
112 17:06:18
113 17:06:18 Grafana Pod-View: https://grafana.scandit.com/d/k8s_views_pods/kubernetes-views-pods?orgId=1&refresh=1m&var-datasource=KpIiby5Vz&var-host=ci10&var-namespace=gitlab-runner&var-pod=runner-ap4tcsxyp-project-621-concurrent-9-ad2j0svj&var-resolution=15&from=1777827978000&to=now
114 17:06:18 Grafana Node-View: https://grafana.scandit.com/d/k8s_views_nodes/kubernetes-views-nodes?orgId=1&refresh=1m&var-datasource=KpIiby5Vz&var-node=ci10&var-resolution=15s&from=1777827978000&to=now
115 17:06:18 Loki Logs: https://grafana.scandit.com/a/grafana-lokiexplore-app/explore/log_group/gitlab-runner/logs?var-ds=nVsAo7UVk&var-filters=log_group%7C%3D%7Cgitlab-runner&var-filters=source%7C%3D%7Czrh.int.scandit.io&var-filters=namespace%7C%3D%7Cgitlab-runner&var-filters=CI_PROJECT_ID%7C%3D%7C621&var-filters=CI_PIPELINE_ID%7C%3D%7C1576293&var-filters=CI_JOB_ID%7C%3D%7C54273494&sortOrder=Ascending&from=1777827978000&to=now
116 17:06:18 Lilibet Statistics: https://lilibet.scandit.io/dashboard/204-job-drill-down?date_range=2026-04-26~2026-05-10&job_name=snyk-container-monitor&project=internal/gitlab-templates
117 17:06:18
118 17:06:18 Setting up credentials for Gitlab Python registries
119 17:06:18 $ test -n "${SNYK_TOKEN}" || (echo "No SNYK_TOKEN defined. You have to provide a valid token for accessing Snyk."; false)
120 17:06:18 $ test -n "${IMAGE_URL}" || (echo "No IMAGE_URL defined. You have to provide a valid image for container scanner."; false)
121 17:06:18 $ echo "This job scans the given image, determines the software installed and makes a snapshot of it to snyk.io server."
122 17:06:18 This job scans the given image, determines the software installed and makes a snapshot of it to snyk.io server.
123 17:06:18 $ echo "Running 'snyk container monitor' on image $IMAGE_URL."
124 17:06:18 Running 'snyk container monitor' on image registry.scandit.com/internal/gitlab-templates/python:3.12.
125 17:06:18 $ snyk container monitor ${IMAGE_URL} --file=${DOCKERFILE_PATH} --exclude-base-image-vulns --exclude-app-vulns --policy-path=${SNYK_POLICY_PATH} --org=${SNYK_ORG} ${SNYK_EXTRA_PARAMETERS}
126 17:06:44
127 17:06:44 Monitoring registry.scandit.com/internal/gitlab-templates/python:3.12 (docker-image|registry.scandit.com/internal/gitlab-templates/python)...
128 17:06:44
129 17:06:44 Explore this snapshot at https://app.snyk.io/org/scandit-internal/project/c1f2e1f2-5df8-4ee1-bb92-12720868582b/history/7f659746-55a0-4e1b-b9a5-d430fb0657ea
130 17:06:44
131 17:06:44 Notifications about newly disclosed issues related to these dependencies will be emailed to you.
132 17:06:44
133 17:06:45
134 17:06:45 Scout Analysis: https://scout.scandit.io/analysis/projects/621/jobs/54273494
135 17:06:45
136 17:06:45
137 17:06:45 Grafana Pod-View: https://grafana.scandit.com/d/k8s_views_pods/kubernetes-views-pods?orgId=1&refresh=1m&var-datasource=KpIiby5Vz&var-host=ci10&var-namespace=gitlab-runner&var-pod=runner-ap4tcsxyp-project-621-concurrent-9-ad2j0svj&var-resolution=15&from=1777827978000&to=1777828005000
138 17:06:45 Grafana Node-View: https://grafana.scandit.com/d/k8s_views_nodes/kubernetes-views-nodes?orgId=1&refresh=1m&var-datasource=KpIiby5Vz&var-node=ci10&var-resolution=15s&from=1777827978000&to=1777828005000
139 17:06:45 Loki Logs: https://grafana.scandit.com/a/grafana-lokiexplore-app/explore/log_group/gitlab-runner/logs?var-ds=nVsAo7UVk&var-filters=log_group%7C=%7Cgitlab-runner&var-filters=source%7C%3D%7Czrh.int.scandit.io&var-filters=namespace%7C%3D%7Cgitlab-runner&var-filters=CI_PROJECT_ID%7C%3D%7C621&var-filters=CI_PIPELINE_ID%7C%3D%7C1576293&var-filters=CI_JOB_ID%7C%3D%7C54273494&sortOrder=Ascending&from=1777827978000&to=1777828005000
140 17:06:45 Lilibet Statistics: https://lilibet.scandit.io/dashboard/204-job-drill-down?date_range=2026-04-26~2026-05-10&job_name=snyk-container-monitor&project=internal/gitlab-templates
141 17:06:45
142 17:06:45
143 17:06:45 section_end:1777828005:step_script
144 17:06:45 +section_start:1777828005:cleanup_file_variables
145 17:06:45 +Cleaning up project directory and file based variables
146 17:06:45 HEAD is now at 3284003 Merge branch 'renovate/docker-digests' into 'master'
147 17:06:45
148 17:06:45 section_end:1777828005:cleanup_file_variables
149 17:06:45 +
150 17:06:45 Job succeeded
151