Last active
April 23, 2021 13:31
-
-
Save eloisetaylor5693/5282eb9cdd534a32d4aa249b0094eb93 to your computer and use it in GitHub Desktop.
Log output for Azure devops build when OWASP Dependency Check extension failed
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2021-04-23T13:22:07.9604078Z ##[section]Starting: Dependency Checks | |
2021-04-23T13:22:07.9686949Z ============================================================================== | |
2021-04-23T13:22:07.9687222Z Task : OWASP Dependency Check | |
2021-04-23T13:22:07.9687573Z Description : Dependency Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project's dependencies. | |
2021-04-23T13:22:07.9687912Z Version : 5.6.3 | |
2021-04-23T13:22:07.9688079Z Author : Dependency Check | |
2021-04-23T13:22:07.9688340Z Help : [More Information](https://jeremylong.github.io/DependencyCheck/index.html) | |
2021-04-23T13:22:07.9688643Z ============================================================================== | |
2021-04-23T13:22:08.6069876Z Starting Dependency Check... | |
2021-04-23T13:22:08.6660398Z Setting report directory to c:\agent\_work\8\TestResults\dependency-check | |
2021-04-23T13:22:08.6673481Z Creating report directory at c:\agent\_work\8\TestResults\dependency-check | |
2021-04-23T13:22:08.6871936Z | |
2021-04-23T13:22:08.6877642Z | |
2021-04-23T13:22:08.6889646Z Directory: C:\agent\_work\8\TestResults | |
2021-04-23T13:22:08.6890334Z | |
2021-04-23T13:22:08.6890480Z | |
2021-04-23T13:22:08.6894900Z Mode LastWriteTime Length Name | |
2021-04-23T13:22:08.6898259Z ---- ------------- ------ ---- | |
2021-04-23T13:22:08.6902247Z d----- 4/23/2021 1:22 PM dependency-check | |
2021-04-23T13:22:08.7173016Z Downloading Dependency Check v6.0.2 installer from GitHub... | |
2021-04-23T13:22:11.3956861Z Dependency Check installer set to C:\agent\_work\_tasks\dependency-check-build-task_47ea1f4a-57ba-414a-b12e-c44f42765e72\5.6.3\dependency-check\bin\dependency-check.bat | |
2021-04-23T13:22:11.3965693Z Invoking Dependency Check... | |
2021-04-23T13:22:11.3971774Z Path: C:\agent\_work\_tasks\dependency-check-build-task_47ea1f4a-57ba-414a-b12e-c44f42765e72\5.6.3\dependency-check\bin\dependency-check.bat | |
2021-04-23T13:22:11.3977636Z Arguments: --project "web-recruiter" --scan "c:\agent\_work\8\s\**\*.csproj" --out "c:\agent\_work\8\TestResults\dependency-check" --format HTML --format JSON --enableExperimental --log "c:\agent\_work\8\TestResults\dependency-check\log" | |
2021-04-23T13:22:12.3288657Z Dependency-Check Core version 6.0.2 | |
2021-04-23T13:22:19.4868591Z [INFO] Checking for updates | |
2021-04-23T13:22:20.3806257Z [ERROR] Error retrieving https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta; received response code 503; Service Unavailable | |
2021-04-23T13:22:20.3829199Z [ERROR] Unable to download meta file: https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta | |
2021-04-23T13:22:20.3830922Z org.owasp.dependencycheck.data.update.exception.UpdateException: Unable to download meta file: https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta | |
2021-04-23T13:22:20.3832174Z at org.owasp.dependencycheck.data.update.NvdCveUpdater.getMetaFile(NvdCveUpdater.java:347) | |
2021-04-23T13:22:20.3832927Z at org.owasp.dependencycheck.data.update.NvdCveUpdater.getUpdatesNeeded(NvdCveUpdater.java:385) | |
2021-04-23T13:22:20.3833828Z at org.owasp.dependencycheck.data.update.NvdCveUpdater.update(NvdCveUpdater.java:122) | |
2021-04-23T13:22:20.3834469Z at org.owasp.dependencycheck.Engine.doUpdates(Engine.java:855) | |
2021-04-23T13:22:20.3835289Z at org.owasp.dependencycheck.Engine.initializeAndUpdateDatabase(Engine.java:662) | |
2021-04-23T13:22:20.3836054Z at org.owasp.dependencycheck.Engine.analyzeDependencies(Engine.java:592) | |
2021-04-23T13:22:20.3837020Z at org.owasp.dependencycheck.App.runScan(App.java:254) | |
2021-04-23T13:22:20.3837543Z at org.owasp.dependencycheck.App.run(App.java:186) | |
2021-04-23T13:22:20.3838292Z at org.owasp.dependencycheck.App.main(App.java:81) | |
2021-04-23T13:22:20.3839375Z Caused by: org.owasp.dependencycheck.utils.DownloadFailedException: Download failed, unable to retrieve 'https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta'; Error downloading file https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta; unable to connect. | |
2021-04-23T13:22:20.3842226Z at org.owasp.dependencycheck.utils.Downloader.fetchContent(Downloader.java:132) | |
2021-04-23T13:22:20.3842927Z at org.owasp.dependencycheck.data.update.NvdCveUpdater.getMetaFile(NvdCveUpdater.java:340) | |
2021-04-23T13:22:20.3843443Z ... 8 common frames omitted | |
2021-04-23T13:22:20.3844168Z Caused by: org.owasp.dependencycheck.utils.DownloadFailedException: Error downloading file https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta; unable to connect. | |
2021-04-23T13:22:20.3845151Z at org.owasp.dependencycheck.utils.HttpResourceConnection.obtainConnection(HttpResourceConnection.java:239) | |
2021-04-23T13:22:20.3845805Z at org.owasp.dependencycheck.utils.HttpResourceConnection.fetch(HttpResourceConnection.java:138) | |
2021-04-23T13:22:20.3847218Z at org.owasp.dependencycheck.utils.Downloader.fetchContent(Downloader.java:127) | |
2021-04-23T13:22:20.3847712Z ... 9 common frames omitted | |
2021-04-23T13:22:20.3848338Z Caused by: org.owasp.dependencycheck.utils.DownloadFailedException: Error retrieving https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta; received response code 503; Service Unavailable | |
2021-04-23T13:22:20.3849191Z at org.owasp.dependencycheck.utils.HttpResourceConnection.obtainConnection(HttpResourceConnection.java:221) | |
2021-04-23T13:22:20.3849640Z ... 11 common frames omitted | |
2021-04-23T13:22:20.3862775Z [INFO] Skipping RetireJS update since last update was within 24 hours. | |
2021-04-23T13:22:20.3893763Z [WARN] Unable to update 1 or more Cached Web DataSource, using local data instead. Results may not include recent vulnerabilities. | |
2021-04-23T13:22:20.3896406Z [ERROR] Unable to continue dependency-check analysis. | |
2021-04-23T13:22:20.7143965Z [ERROR] One or more fatal errors occurred | |
2021-04-23T13:22:20.7145516Z [ERROR] Unable to download meta file: https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-modified.meta | |
2021-04-23T13:22:20.7148483Z [ERROR] No documents exist | |
2021-04-23T13:22:21.4960720Z Dependency Check completed with exit code -13. | |
2021-04-23T13:22:21.4966492Z Dependency check reports: | |
2021-04-23T13:22:21.5075165Z | |
2021-04-23T13:22:21.5075584Z | |
2021-04-23T13:22:21.5077421Z Directory: C:\agent\_work\8\TestResults\dependency-check | |
2021-04-23T13:22:21.5077708Z | |
2021-04-23T13:22:21.5077886Z | |
2021-04-23T13:22:21.5082588Z Mode LastWriteTime Length Name | |
2021-04-23T13:22:21.5084874Z ---- ------------- ------ ---- | |
2021-04-23T13:22:21.5089000Z -a---- 4/23/2021 1:22 PM 28990 log | |
2021-04-23T13:22:21.5607211Z ##[error]Dependency Check exited with an error code. | |
2021-04-23T13:22:21.5685742Z Ending Dependency Check... | |
2021-04-23T13:22:21.5686170Z | |
2021-04-23T13:22:21.5686429Z | |
2021-04-23T13:22:21.5919305Z ##[section]Finishing: Dependency Checks |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment