Skip to content

Instantly share code, notes, and snippets.

@scoheb
Created September 17, 2019 18:38
Show Gist options
  • Save scoheb/a7ec34931d26e854b02e114dae777cce to your computer and use it in GitHub Desktop.
Save scoheb/a7ec34931d26e854b02e114dae777cce to your computer and use it in GitHub Desktop.
{
"sum_layer_size_bytes": "132005889",
"Time": "2019-09-13T15:43:48",
"certification_status": "FAIL",
"openscap_version": "1.2.17-4.el7",
"Scanner": "isv_reporting",
"UUID": "/scanin/0ad546a107ee845ad7a9ff94a9e2896e6af28fa87c1844ab5c6406f3a76fa6a6",
"Scan Type": "all",
"raw_data": {
"apb_yaml": "None",
"rpm_verify_problems": [],
"openscap": {
"UUID": "/scanin/0ad546a107ee845ad7a9ff94a9e2896e6af28fa87c1844ab5c6406f3a76fa6a6",
"Successful": "false",
"Vulnerabilities": [],
"Scan Type": "",
"Finished Time": "2019-09-13T15:43:49",
"Time": "2019-09-13T15:43:49",
"Scanner": "openscap"
},
"docker_inspect": {
"Comment": "",
"Container": "e2e53c27d0c3af51ff1b541900d8aeeb7f2ea43569e9a2bdc00ca7bf78291657",
"DockerVersion": "18.06.1-ce",
"Parent": "",
"Created": "2019-09-10T19:00:50.326450421Z",
"Config": {
"Tty": false,
"Cmd": [
"/bin/bash"
],
"Volumes": null,
"Domainname": "",
"WorkingDir": "",
"Image": "sha256:403b34370071b49face3958005113e9f9c393bf76b04d48a4eaf24bf23032472",
"Hostname": "d8920e931d23",
"StdinOnce": false,
"ArgsEscaped": true,
"Labels": {
"com.redhat.component": "ubi8-minimal-container",
"authoritative-source-url": "registry.access.redhat.com",
"distribution-scope": "public",
"maintainer": "Red Hat, Inc.",
"description": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10.",
"url": "https://access.redhat.com/containers/#/registry.access.redhat.com/ubi8-minimal/images/8.0-159",
"io.k8s.display-name": "certification-automation-base",
"summary": "Base image to be used by the certification automation dashboard",
"vcs-type": "git",
"vendor": "IBM",
"name": "certification-automation-base",
"vcs-ref": "e4add3c63b371d610c87a43359fd7e0ffe1da51a",
"version": "0.0.1",
"architecture": "ppc64le",
"release": "159",
"io.openshift.expose-services": "",
"io.openshift.tags": "certification,automation,dashboard",
"build-date": "2019-07-23T16:18:12.522162",
"com.redhat.license_terms": "https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI",
"io.k8s.description": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10.",
"com.redhat.build-host": "ppc64le-c1-vm-05.prod.osbs.eng.rdu2.redhat.com"
},
"AttachStdin": false,
"User": "",
"Env": [
"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
"container=oci"
],
"Entrypoint": null,
"OnBuild": [],
"AttachStderr": false,
"AttachStdout": false,
"OpenStdin": false
},
"Author": "",
"GraphDriver": {
"Data": {
"MergedDir": "/var/lib/docker/overlay2/aad7d912575f71d1c065b08168969b5645887068de65529e606bab357524c49c/merged",
"WorkDir": "/var/lib/docker/overlay2/aad7d912575f71d1c065b08168969b5645887068de65529e606bab357524c49c/work",
"LowerDir": "/var/lib/docker/overlay2/6bfd5d4ad384c49a7487cd5371f1e244b23e8ee3c979444c5d1c3f62d43baea0/diff:/var/lib/docker/overlay2/24f55e12cab8727af72e898c1cf8316a55dd2cef1d3dcd4b6ce5b62c5006ae5a/diff",
"UpperDir": "/var/lib/docker/overlay2/aad7d912575f71d1c065b08168969b5645887068de65529e606bab357524c49c/diff"
},
"Name": "overlay2"
},
"VirtualSize": 132005889,
"Os": "linux",
"Architecture": "ppc64le",
"RootFS": {
"Layers": [
"sha256:f531f122cc45ea976f9d9ecba2cedeacc277ca7c5c5f2c535382d6b367e15fcc",
"sha256:b7dca514edfd357e1de00b7acb7c0517baf117b795becbd151fe0c15a539c7d3",
"sha256:bdd14e2507654b96b9c7756e596a93ba34d61bfc671ffdc553554f0e3b8713dd"
],
"Type": "layers"
},
"ContainerConfig": {
"Tty": false,
"Cmd": [
"/bin/sh",
"-c",
"microdnf install rh-nodejs10 && microdnf update; microdnf clean all && ln -s /opt/rh/rh-nodejs10/root/usr/bin/node /usr/local/bin/node && ln -s /opt/rh/rh-nodejs10/root/usr/bin/npm /usr/local/bin/npm"
],
"Volumes": null,
"Domainname": "",
"WorkingDir": "",
"Image": "sha256:403b34370071b49face3958005113e9f9c393bf76b04d48a4eaf24bf23032472",
"Hostname": "d8920e931d23",
"StdinOnce": false,
"ArgsEscaped": true,
"Labels": {
"com.redhat.component": "ubi8-minimal-container",
"authoritative-source-url": "registry.access.redhat.com",
"distribution-scope": "public",
"maintainer": "Red Hat, Inc.",
"description": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10.",
"url": "https://access.redhat.com/containers/#/registry.access.redhat.com/ubi8-minimal/images/8.0-159",
"io.k8s.display-name": "certification-automation-base",
"summary": "Base image to be used by the certification automation dashboard",
"vcs-type": "git",
"vendor": "IBM",
"name": "certification-automation-base",
"vcs-ref": "e4add3c63b371d610c87a43359fd7e0ffe1da51a",
"version": "0.0.1",
"architecture": "ppc64le",
"release": "159",
"io.openshift.expose-services": "",
"io.openshift.tags": "certification,automation,dashboard",
"build-date": "2019-07-23T16:18:12.522162",
"com.redhat.license_terms": "https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI",
"io.k8s.description": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10.",
"com.redhat.build-host": "ppc64le-c1-vm-05.prod.osbs.eng.rdu2.redhat.com"
},
"AttachStdin": false,
"User": "",
"Env": [
"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
"container=oci"
],
"Entrypoint": null,
"OnBuild": [],
"AttachStderr": false,
"AttachStdout": false,
"OpenStdin": false
},
"Size": 132005889,
"RepoDigests": [
"registry.rhc4tp.openshift.com/ospid-f47832a6-32a3-4acc-9727-0b47f76ca2e8/vuln-test-power@sha256:03716639d645a88d7fc10379cc7deaeb0d4d7950dd0dba461dd5de68bcae1d72"
],
"Id": "sha256:0ad546a107ee845ad7a9ff94a9e2896e6af28fa87c1844ab5c6406f3a76fa6a6",
"RepoTags": [
"registry.rhc4tp.openshift.com/ospid-f47832a6-32a3-4acc-9727-0b47f76ca2e8/vuln-test-power:0.0.1"
]
}
},
"isv_plugin_version": "2017101700",
"Results": [
{
"Custom": {
"failing_checks": [
"has_licenses",
"atomic_help_exists"
]
}
}
],
"certification_date": "",
"Successful": "True",
"parsed_data": {
"parsed_date": "20190913T15:43:49.465+0000",
"uncompressed_layer_sizes": [
{
"layer_id": "sha256:f531f122cc45ea976f9d9ecba2cedeacc277ca7c5c5f2c535382d6b367e15fcc",
"size_bytes": "0"
},
{
"layer_id": "sha256:b7dca514edfd357e1de00b7acb7c0517baf117b795becbd151fe0c15a539c7d3",
"size_bytes": "0"
},
{
"layer_id": "sha256:bdd14e2507654b96b9c7756e596a93ba34d61bfc671ffdc553554f0e3b8713dd",
"size_bytes": "0"
}
],
"container": "e2e53c27d0c3af51ff1b541900d8aeeb7f2ea43569e9a2bdc00ca7bf78291657",
"created": "2019-09-10T19:00:50.326450421Z",
"docker_image_digest": "sha256:03716639d645a88d7fc10379cc7deaeb0d4d7950dd0dba461dd5de68bcae1d72",
"labels": [
{
"name": "name",
"value": "certification-automation-base"
},
{
"name": "vendor",
"value": "IBM"
},
{
"name": "version",
"value": "0.0.1"
},
{
"name": "release",
"value": "159"
},
{
"name": "com.redhat.component",
"value": "ubi8-minimal-container"
},
{
"name": "authoritative-source-url",
"value": "registry.access.redhat.com"
},
{
"name": "distribution-scope",
"value": "public"
},
{
"name": "maintainer",
"value": "Red Hat, Inc."
},
{
"name": "description",
"value": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10."
},
{
"name": "url",
"value": "https://access.redhat.com/containers/#/registry.access.redhat.com/ubi8-minimal/images/8.0-159"
},
{
"name": "io.k8s.display-name",
"value": "certification-automation-base"
},
{
"name": "summary",
"value": "Base image to be used by the certification automation dashboard"
},
{
"name": "vcs-type",
"value": "git"
},
{
"name": "vcs-ref",
"value": "e4add3c63b371d610c87a43359fd7e0ffe1da51a"
},
{
"name": "architecture",
"value": "ppc64le"
},
{
"name": "io.openshift.tags",
"value": "certification,automation,dashboard"
},
{
"name": "build-date",
"value": "2019-07-23T16:18:12.522162"
},
{
"name": "com.redhat.license_terms",
"value": "https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI"
},
{
"name": "io.k8s.description",
"value": "Base image to be used by the certification automation dashboard. Built using UBI 7 and Nodejs 10."
},
{
"name": "com.redhat.build-host",
"value": "ppc64le-c1-vm-05.prod.osbs.eng.rdu2.redhat.com"
}
],
"env_variables": [
"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
"container=oci"
],
"apb_label_test": {
"label exists": false
},
"repo_tags": [
"registry.rhc4tp.openshift.com/ospid-f47832a6-32a3-4acc-9727-0b47f76ca2e8/vuln-test-power:0.0.1"
],
"command": "/bin/bash",
"architecture": "ppc64le",
"docker_version": "18.06.1-ce",
"virtual_size": 132005889,
"os": "Red Hat Enterprise Linux release 8.0 (Ootpa)",
"docker_image_id": "sha256:0ad546a107ee845ad7a9ff94a9e2896e6af28fa87c1844ab5c6406f3a76fa6a6",
"Size": 132005889
},
"Finished Time": "2019-09-13T15:43:49",
"run_time": "20190913T15:43:48.899+0000",
"docker_version": "1.13.1-103.git7f2769b.el7",
"assessments": [
{
"url": "http://nope.nope/nope.html#is_rhel",
"required_for_certification": true,
"name": "is_rhel",
"value": true
},
{
"url": "http://nope.nope/nope.html#licenses",
"required_for_certification": true,
"name": "has_licenses",
"value": false
},
{
"url": "http://nope.nope/nope.html#rpm_verify_successful",
"required_for_certification": false,
"name": "rpm_verify_successful",
"value": true
},
{
"url": "http://nope.nope/nope.html#repo_list_successful",
"required_for_certification": false,
"name": "repo_list_successful",
"value": false
},
{
"url": "http://nope.nope/nope.html#not_running_privileged",
"required_for_certification": true,
"name": "not_running_privileged",
"value": true
},
{
"url": "http://nope.nope/nope.html#not_running_as_root",
"required_for_certification": true,
"name": "not_running_as_root",
"value": true
},
{
"url": "http://nope.nope/nope.html#name_label_exists",
"required_for_certification": true,
"name": "name_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#vendor_label_exists",
"required_for_certification": true,
"name": "vendor_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#version_label_exists",
"required_for_certification": true,
"name": "version_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#release_label_exists",
"required_for_certification": true,
"name": "release_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#run_label_exists",
"required_for_certification": false,
"name": "run_label_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#stop_label_exists",
"required_for_certification": false,
"name": "stop_label_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#Size_exists",
"required_for_certification": false,
"name": "Size_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#VirtualSize_exists",
"required_for_certification": false,
"name": "VirtualSize_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Architecture_exists",
"required_for_certification": false,
"name": "Architecture_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Author_exists",
"required_for_certification": false,
"name": "Author_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Comment_exists",
"required_for_certification": false,
"name": "Comment_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Container_exists",
"required_for_certification": false,
"name": "Container_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Created_exists",
"required_for_certification": false,
"name": "Created_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#DockerVersion_exists",
"required_for_certification": false,
"name": "DockerVersion_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#Id_exists",
"required_for_certification": false,
"name": "Id_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#RepoDigests_exists",
"required_for_certification": false,
"name": "RepoDigests_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#help_label_exists",
"required_for_certification": false,
"name": "help_label_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#dockerfile_exists",
"required_for_certification": false,
"name": "dockerfile_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#atomic_help_exists",
"required_for_certification": true,
"name": "atomic_help_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#good_tags",
"required_for_certification": true,
"name": "good_tags",
"value": true
},
{
"url": "http://nope.nope/nope.html#good_apb_label",
"required_for_certification": false,
"name": "good_apb_label",
"value": false
},
{
"url": "http://nope.nope/nope.html#Env_exists",
"required_for_certification": false,
"name": "Env_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#ExposedPorts_exists",
"required_for_certification": false,
"name": "ExposedPorts_exists",
"value": false
},
{
"url": "http://nope.nope/nope.html#has_apb_file_tree",
"required_for_certification": false,
"name": "has_apb_file_tree",
"value": false
},
{
"url": "http://nope.nope/nope.html#apb_provision",
"required_for_certification": false,
"name": "apb_provision",
"value": false
},
{
"url": "http://nope.nope/nope.html#apb_deprovision",
"required_for_certification": false,
"name": "apb_deprovision",
"value": false
},
{
"url": "http://nope.nope/nope.html#apb_test_included",
"required_for_certification": false,
"name": "apb_test_included",
"value": false
},
{
"url": "http://nope.nope/nope.html#apb_bind",
"required_for_certification": false,
"name": "apb_bind",
"value": true
},
{
"url": "http://nope.nope/nope.html#com.redhat.component_label_exists",
"required_for_certification": false,
"name": "com.redhat.component_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#authoritative-source-url_label_exists",
"required_for_certification": false,
"name": "authoritative-source-url_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#distribution-scope_label_exists",
"required_for_certification": false,
"name": "distribution-scope_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#maintainer_label_exists",
"required_for_certification": false,
"name": "maintainer_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#description_label_exists",
"required_for_certification": false,
"name": "description_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#url_label_exists",
"required_for_certification": false,
"name": "url_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#io.k8s.display-name_label_exists",
"required_for_certification": false,
"name": "io.k8s.display-name_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#summary_label_exists",
"required_for_certification": false,
"name": "summary_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#vcs-type_label_exists",
"required_for_certification": false,
"name": "vcs-type_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#vcs-ref_label_exists",
"required_for_certification": false,
"name": "vcs-ref_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#architecture_label_exists",
"required_for_certification": false,
"name": "architecture_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#io.openshift.expose-services_label_exists",
"required_for_certification": false,
"name": "io.openshift.expose-services_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#io.openshift.tags_label_exists",
"required_for_certification": false,
"name": "io.openshift.tags_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#build-date_label_exists",
"required_for_certification": false,
"name": "build-date_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#com.redhat.license_terms_label_exists",
"required_for_certification": false,
"name": "com.redhat.license_terms_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#io.k8s.description_label_exists",
"required_for_certification": false,
"name": "io.k8s.description_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#com.redhat.build-host_label_exists",
"required_for_certification": false,
"name": "com.redhat.build-host_label_exists",
"value": true
},
{
"url": "http://nope.nope/nope.html#good_layer_count",
"required_for_certification": true,
"name": "good_layer_count",
"value": true
},
{
"url": "http://nope.nope/nope.html#free_of_critical_vulnerabilities",
"required_for_certification": true,
"name": "free_of_critical_vulnerabilities",
"value": true
}
],
"container_id": "sha256:0ad546a107ee845ad7a9ff94a9e2896e6af28fa87c1844ab5c6406f3a76fa6a6",
"atomic_scan_version": "1.22.1-29.gitb507039.el7"
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment