dockerize/0.8.0-r1: cve remediation #36940
Merged
Octo STS / elastic-build
succeeded
Dec 13, 2024 in 3m 47s
APKs built successfully
Build ID: e2583ff3-b944-47ab-8880-447e41cc1373
Details
x86_64 Logs
Click to expand
git commit for build config not provided, attempting to detect automatically
melange v0.17.7 is building:
configuration file: dockerize.yaml
workspace dir: /tmp/melange-workspace-697039382
evaluating pipelines for package requirements
--cache-dir ./melange-cache/ not a dir; skipping
populating workspace /tmp/melange-workspace-697039382 from dockerize
building workspace in '/tmp/melange-guest-1520554578' with apko
Error: rpc error: code = NotFound desc = federate identity: rpc error: code = NotFound desc = no identity found for (https://accounts.google.com, 109346087047205543085)
Error running `chainctl auth token`: exit status 1
2024/12/13 19:29:46 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9/apk-configuration
2024/12/13 19:29:47 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9 https://packages.wolfi.dev/os]
2024/12/13 19:29:49 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9/apk-configuration
2024/12/13 19:29:49 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9 https://packages.wolfi.dev/os]
image configuration:
contents:
build repositories: []
runtime repositories: []
keyring: []
packages: [bash=5.2.37-r2 binutils=2.43.1-r2 binutils-gold=2.43.1-r2 build-base=1-r8 busybox=1.37.0-r0 ca-certificates-bundle=20241010-r2 cyrus-sasl=2.1.28-r5 gcc=14.2.0-r6 gdbm=1.24-r1 git=2.47.1-r0 glibc=2.40-r3 glibc-dev=2.40-r3 glibc-locale-posix=2.40-r3 gmp=6.3.0-r2 go-1.23=1.23.4-r0 gobump=0.8.0-r1 heimdal-libs=7.8.0-r7 isl=0.27-r0 keyutils-libs=1.6.3-r5 krb5-conf=1.0-r3 krb5-libs=1.21.3-r2 ld-linux=2.40-r3 libatomic=14.2.0-r6 libbrotlicommon1=1.1.0-r4 libbrotlidec1=1.1.0-r4 libcom_err=1.47.1-r1 libcrypt1=2.40-r3 libcrypto3=3.4.0-r4 libcurl-openssl4=8.11.1-r0 libevent=2.1.12-r6 libexpat1=2.6.4-r0 libgcc=14.2.0-r6 libgo=14.2.0-r6 libgomp=14.2.0-r6 libidn2=2.3.7-r3 libldap=2.6.9-r0 libnghttp2-14=1.64.0-r1 libpcre2-8-0=10.44-r2 libpsl=0.21.5-r4 libquadmath=14.2.0-r6 libssl3=3.4.0-r4 libstdc++=14.2.0-r6 libstdc++-dev=14.2.0-r6 libunistring=1.3-r1 libverto=0.3.2-r4 libxcrypt=4.4.36-r8 libxcrypt-dev=4.4.36-r8 libzstd1=1.5.6-r5 linux-headers=6.6.65-r0 make=4.4.1-r4 mpc=1.3.1-r5 mpfr=4.2.1-r5 ncurses=6.5_p20241006-r4 ncurses-terminfo-base=6.5_p20241006-r4 nss-db=2.40-r3 nss-hesiod=2.40-r3 openssf-compiler-options=20240627-r5 pkgconf=2.3.0-r1 posix-cc-wrappers=1-r4 readline=8.2.13-r1 scanelf=1.3.8-r1 sqlite-libs=3.47.2-r0 wolfi-baselayout=20230201-r15 zlib=1.3.1-r4]
accounts:
runas:
users:
- uid=1000(build) gid=1000
groups:
- gid=1000(build) members=[build]
auth configured for: []
installing ca-certificates-bundle (20241010-r2)
installing wolfi-baselayout (20230201-r15)
installing ld-linux (2.40-r3)
installing glibc-locale-posix (2.40-r3)
installing glibc (2.40-r3)
installing libgcc (14.2.0-r6)
installing ncurses-terminfo-base (6.5_p20241006-r4)
installing ncurses (6.5_p20241006-r4)
installing bash (5.2.37-r2)
installing libstdc++ (14.2.0-r6)
installing libzstd1 (1.5.6-r5)
installing binutils-gold (2.43.1-r2)
installing binutils (2.43.1-r2)
installing libquadmath (14.2.0-r6)
installing libstdc++-dev (14.2.0-r6)
installing openssf-compiler-options (20240627-r5)
installing posix-cc-wrappers (1-r4)
installing libatomic (14.2.0-r6)
installing gmp (6.3.0-r2)
installing libgo (14.2.0-r6)
installing libgomp (14.2.0-r6)
installing isl (0.27-r0)
installing mpfr (4.2.1-r5)
installing mpc (1.3.1-r5)
installing zlib (1.3.1-r4)
installing gcc (14.2.0-r6)
installing libxcrypt (4.4.36-r8)
installing libxcrypt-dev (4.4.36-r8)
installing linux-headers (6.6.65-r0)
installing nss-db (2.40-r3)
installing nss-hesiod (2.40-r3)
installing glibc-dev (2.40-r3)
installing make (4.4.1-r4)
installing pkgconf (2.3.0-r1)
installing build-base (1-r8)
installing libcrypt1 (2.40-r3)
installing busybox (1.37.0-r0)
installing readline (8.2.13-r1)
installing sqlite-libs (3.47.2-r0)
installing heimdal-libs (7.8.0-r7)
installing libcrypto3 (3.4.0-r4)
installing gdbm (1.24-r1)
installing cyrus-sasl (2.1.28-r5)
installing libbrotlicommon1 (1.1.0-r4)
installing libbrotlidec1 (1.1.0-r4)
installing krb5-conf (1.0-r3)
installing libcom_err (1.47.1-r1)
installing keyutils-libs (1.6.3-r5)
installing libssl3 (3.4.0-r4)
installing libverto (0.3.2-r4)
installing krb5-libs (1.21.3-r2)
installing libevent (2.1.12-r6)
installing libldap (2.6.9-r0)
installing libnghttp2-14 (1.64.0-r1)
installing libunistring (1.3-r1)
installing libidn2 (2.3.7-r3)
installing libpsl (0.21.5-r4)
installing libcurl-openssl4 (8.11.1-r0)
installing libexpat1 (2.6.4-r0)
installing libpcre2-8-0 (10.44-r2)
installing git (2.47.1-r0)
installing go-1.23 (1.23.4-r0)
installing gobump (0.8.0-r1)
installing scanelf (1.3.8-r1)
built image layer tarball as /tmp/apko-temp-3528725215/apko-x86_64.tar.gz
using /tmp/apko-temp-3528725215/apko-x86_64.tar.gz for image layer
ImgRef = /tmp/melange-guest-3611157480
running step "git-checkout"
[git checkout] repo='https://github.com/jwilder/dockerize' dest='.' depth='1' branch='' tag='v0.8.0' expcommit='b9b22a266f4f11efe04b0db837ceb3fca7b30dad' recurse='false'
[git checkout] execute: git config --global --add safe.directory /tmp/tmp.rbkmGO
[git checkout] execute: git config --global --add safe.directory /home/build
[git checkout] execute: git clone --quiet --origin=origin --config=user.name=Melange Build [email protected] --config=advice.detachedHead=false --branch=v0.8.0 --depth=1 https://github.com/jwilder/dockerize /tmp/tmp.rbkmGO
[git checkout] execute: cd /tmp/tmp.rbkmGO
[git checkout] tar -c . | tar -C "/home/build" -x
[git checkout] execute: cd /home/build
[git checkout] execute: git config --global --add safe.directory /home/build
[git checkout] execute: git fetch --quiet origin --depth=1 --no-tags +refs/tags/v0.8.0:refs/origin/tags/v0.8.0
[git checkout] execute: git checkout --quiet origin/tags/v0.8.0
[git checkout] tag v0.8.0 is b9b22a266f4f11efe04b0db837ceb3fca7b30dad
running step "go/bump"
2024/12/13 19:31:37 Running go mod tidy with go version '1.23.4' ...
2024/12/13 19:31:38 Update package: golang.org/x/crypto
2024/12/13 19:31:38 Running go mod edit -droprequire ...
2024/12/13 19:31:38 Running go get ...
2024/12/13 19:31:38 Running go mod tidy with go version '1.23.4' ...
running step "go/build"
running step "strip"
retrieving workspace from builder:
retrieved and wrote post-build workspace to: /tmp/melange-workspace-697039382
running package linters for dockerize
linting apk: dockerize
writing SBOM for dockerize
generating package dockerize-0.8.0-r2
scanning for shared object dependencies...
scanning for commands...
found command usr/bin/dockerize
scanning for -doc package...
scanning for pkg-config data...
scanning for python modules...
scanning for ruby gems...
scanning for shbang deps...
provides:
cmd:dockerize=0.8.0-r2
installed-size: 7736507
data.tar.gz digest: 5cf358ec7c9c195f0f11a3860b9bc6b4ef31324a275eebf22938f41557872802
wrote packages/x86_64/dockerize-0.8.0-r2.apk
cleaning Workspace by removing 17 file/directories in /home/build
generating apk index from packages in packages/x86_64
processing package packages/x86_64/dockerize-0.8.0-r2.apk
updating index at packages/x86_64/APKINDEX.tar.gz with new packages: [dockerize-0.8.0-r2]
deleting guest dir /tmp/melange-guest-1520554578
deleting workspace dir /tmp/melange-workspace-697039382
removing image path /tmp/melange-guest-3611157480
aarch64 Logs
Click to expand
git commit for build config not provided, attempting to detect automatically
melange v0.17.7 is building:
configuration file: dockerize.yaml
workspace dir: /tmp/melange-workspace-884498049
evaluating pipelines for package requirements
--cache-dir ./melange-cache/ not a dir; skipping
populating workspace /tmp/melange-workspace-884498049 from dockerize
building workspace in '/tmp/melange-guest-4028408870' with apko
Error: rpc error: code = NotFound desc = federate identity: rpc error: code = NotFound desc = no identity found for (https://accounts.google.com, 109346087047205543085)
Error running `chainctl auth token`: exit status 1
2024/12/13 19:29:39 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9/apk-configuration
2024/12/13 19:29:40 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9 https://packages.wolfi.dev/os]
2024/12/13 19:29:41 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9/apk-configuration
2024/12/13 19:29:41 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9 https://packages.wolfi.dev/os]
image configuration:
contents:
build repositories: []
runtime repositories: []
keyring: []
packages: [bash=5.2.37-r2 binutils=2.43.1-r2 binutils-gold=2.43.1-r2 build-base=1-r8 busybox=1.37.0-r0 ca-certificates-bundle=20241010-r2 cyrus-sasl=2.1.28-r5 gcc=14.2.0-r6 gdbm=1.24-r1 git=2.47.1-r0 glibc=2.40-r3 glibc-dev=2.40-r3 glibc-locale-posix=2.40-r3 gmp=6.3.0-r2 go-1.23=1.23.4-r0 gobump=0.8.0-r1 heimdal-libs=7.8.0-r7 isl=0.27-r0 keyutils-libs=1.6.3-r5 krb5-conf=1.0-r3 krb5-libs=1.21.3-r2 ld-linux=2.40-r3 libatomic=14.2.0-r6 libbrotlicommon1=1.1.0-r4 libbrotlidec1=1.1.0-r4 libcom_err=1.47.1-r1 libcrypt1=2.40-r3 libcrypto3=3.4.0-r4 libcurl-openssl4=8.11.1-r0 libevent=2.1.12-r6 libexpat1=2.6.4-r0 libgcc=14.2.0-r6 libgo=14.2.0-r6 libgomp=14.2.0-r6 libidn2=2.3.7-r3 libldap=2.6.9-r0 libnghttp2-14=1.64.0-r1 libpcre2-8-0=10.44-r2 libpsl=0.21.5-r4 libquadmath=14.2.0-r6 libssl3=3.4.0-r4 libstdc++=14.2.0-r6 libstdc++-dev=14.2.0-r6 libunistring=1.3-r1 libverto=0.3.2-r4 libxcrypt=4.4.36-r8 libxcrypt-dev=4.4.36-r8 libzstd1=1.5.6-r5 linux-headers=6.6.65-r0 make=4.4.1-r4 mpc=1.3.1-r5 mpfr=4.2.1-r5 ncurses=6.5_p20241006-r4 ncurses-terminfo-base=6.5_p20241006-r4 nss-db=2.40-r3 nss-hesiod=2.40-r3 openssf-compiler-options=20240627-r5 pkgconf=2.3.0-r1 posix-cc-wrappers=1-r4 readline=8.2.13-r1 scanelf=1.3.8-r1 sqlite-libs=3.47.2-r0 wolfi-baselayout=20230201-r15 zlib=1.3.1-r4]
accounts:
runas:
users:
- uid=1000(build) gid=1000
groups:
- gid=1000(build) members=[build]
auth configured for: []
installing ca-certificates-bundle (20241010-r2)
installing wolfi-baselayout (20230201-r15)
installing ld-linux (2.40-r3)
installing glibc-locale-posix (2.40-r3)
installing glibc (2.40-r3)
installing libgcc (14.2.0-r6)
installing ncurses-terminfo-base (6.5_p20241006-r4)
installing ncurses (6.5_p20241006-r4)
installing bash (5.2.37-r2)
installing libstdc++ (14.2.0-r6)
installing libzstd1 (1.5.6-r5)
installing binutils-gold (2.43.1-r2)
installing binutils (2.43.1-r2)
installing libquadmath (14.2.0-r6)
installing libstdc++-dev (14.2.0-r6)
installing openssf-compiler-options (20240627-r5)
installing posix-cc-wrappers (1-r4)
installing libatomic (14.2.0-r6)
installing gmp (6.3.0-r2)
installing libgo (14.2.0-r6)
installing libgomp (14.2.0-r6)
installing isl (0.27-r0)
installing mpfr (4.2.1-r5)
installing mpc (1.3.1-r5)
installing zlib (1.3.1-r4)
installing gcc (14.2.0-r6)
installing libxcrypt (4.4.36-r8)
installing libxcrypt-dev (4.4.36-r8)
installing linux-headers (6.6.65-r0)
installing nss-db (2.40-r3)
installing nss-hesiod (2.40-r3)
installing glibc-dev (2.40-r3)
installing make (4.4.1-r4)
installing pkgconf (2.3.0-r1)
installing build-base (1-r8)
installing libcrypt1 (2.40-r3)
installing busybox (1.37.0-r0)
installing readline (8.2.13-r1)
installing sqlite-libs (3.47.2-r0)
installing heimdal-libs (7.8.0-r7)
installing libcrypto3 (3.4.0-r4)
installing gdbm (1.24-r1)
installing cyrus-sasl (2.1.28-r5)
installing libbrotlicommon1 (1.1.0-r4)
installing libbrotlidec1 (1.1.0-r4)
installing krb5-conf (1.0-r3)
installing libcom_err (1.47.1-r1)
installing keyutils-libs (1.6.3-r5)
installing libssl3 (3.4.0-r4)
installing libverto (0.3.2-r4)
installing krb5-libs (1.21.3-r2)
installing libevent (2.1.12-r6)
installing libldap (2.6.9-r0)
installing libnghttp2-14 (1.64.0-r1)
installing libunistring (1.3-r1)
installing libidn2 (2.3.7-r3)
installing libpsl (0.21.5-r4)
installing libcurl-openssl4 (8.11.1-r0)
installing libexpat1 (2.6.4-r0)
installing libpcre2-8-0 (10.44-r2)
installing git (2.47.1-r0)
installing go-1.23 (1.23.4-r0)
installing gobump (0.8.0-r1)
installing scanelf (1.3.8-r1)
built image layer tarball as /tmp/apko-temp-932654039/apko-aarch64.tar.gz
using /tmp/apko-temp-932654039/apko-aarch64.tar.gz for image layer
ImgRef = /tmp/melange-guest-2783378614
running step "git-checkout"
[git checkout] repo='https://github.com/jwilder/dockerize' dest='.' depth='1' branch='' tag='v0.8.0' expcommit='b9b22a266f4f11efe04b0db837ceb3fca7b30dad' recurse='false'
[git checkout] execute: git config --global --add safe.directory /tmp/tmp.vlOQAA
[git checkout] execute: git config --global --add safe.directory /home/build
[git checkout] execute: git clone --quiet --origin=origin --config=user.name=Melange Build [email protected] --config=advice.detachedHead=false --branch=v0.8.0 --depth=1 https://github.com/jwilder/dockerize /tmp/tmp.vlOQAA
[git checkout] execute: cd /tmp/tmp.vlOQAA
[git checkout] tar -c . | tar -C "/home/build" -x
[git checkout] execute: cd /home/build
[git checkout] execute: git config --global --add safe.directory /home/build
[git checkout] execute: git fetch --quiet origin --depth=1 --no-tags +refs/tags/v0.8.0:refs/origin/tags/v0.8.0
[git checkout] execute: git checkout --quiet origin/tags/v0.8.0
[git checkout] tag v0.8.0 is b9b22a266f4f11efe04b0db837ceb3fca7b30dad
running step "go/bump"
2024/12/13 19:29:57 Running go mod tidy with go version '1.23.4' ...
2024/12/13 19:29:57 Update package: golang.org/x/crypto
2024/12/13 19:29:57 Running go mod edit -droprequire ...
2024/12/13 19:29:57 Running go get ...
2024/12/13 19:29:58 Running go mod tidy with go version '1.23.4' ...
running step "go/build"
running step "strip"
retrieving workspace from builder:
retrieved and wrote post-build workspace to: /tmp/melange-workspace-884498049
running package linters for dockerize
linting apk: dockerize
writing SBOM for dockerize
generating package dockerize-0.8.0-r2
scanning for shared object dependencies...
scanning for commands...
found command usr/bin/dockerize
scanning for -doc package...
scanning for pkg-config data...
scanning for python modules...
scanning for ruby gems...
scanning for shbang deps...
provides:
cmd:dockerize=0.8.0-r2
installed-size: 7450204
data.tar.gz digest: 2cf9e1d1df82f7dbcc1a66da57440b82fadce500515870823d42e7ceb5b71008
wrote packages/aarch64/dockerize-0.8.0-r2.apk
cleaning Workspace by removing 17 file/directories in /home/build
generating apk index from packages in packages/aarch64
processing package packages/aarch64/dockerize-0.8.0-r2.apk
updating index at packages/aarch64/APKINDEX.tar.gz with new packages: [dockerize-0.8.0-r2]
deleting guest dir /tmp/melange-guest-4028408870
deleting workspace dir /tmp/melange-workspace-884498049
removing image path /tmp/melange-guest-2783378614
Indexes
https://apk.cgr.dev/wolfi-presubmit/dc2770141790860e07a0d895c4fa31fd23901bb9
Packages
- ✅ dockerize (success | 2m12s | x86_64 logs | aarch64 logs)
Tests
- ✅ dockerize (success | 10s | x86_64 logs | aarch64 logs)
More Observability
Command
cg build log \
--build-id e2583ff3-b944-47ab-8880-447e41cc1373 \
--project prod-wolfi-os \
--cluster elastic-pre-a \
--namespace pre-wolfi \
--start 2024-12-13T19:28:11Z \
--end 2024-12-13T19:42:00Z \
--attrs pkg,arch
Loading