>>> trivy: Building testing/trivy 0.22.0-r0 (using abuild 3.9.0-r0) started Sat, 25 Dec 2021 23:20:48 +0000 >>> trivy: Checking sanity of /home/buildozer/aports/testing/trivy/APKBUILD... >>> trivy: Analyzing dependencies... >>> trivy: Installing for build: build-base btrfs-progs-dev go linux-headers lvm2-dev (1/16) Installing linux-headers (5.10.41-r0) (2/16) Installing btrfs-progs-libs (5.15.1-r1) (3/16) Installing btrfs-progs-dev (5.15.1-r1) (4/16) Installing go (1.17.4-r0) (5/16) Installing device-mapper-libs (2.02.187-r2) (6/16) Installing device-mapper-event-libs (2.02.187-r2) (7/16) Installing libaio (0.3.112-r1) (8/16) Installing libblkid (2.37.2-r6) (9/16) Installing lvm2-libs (2.02.187-r2) (10/16) Installing libuuid (2.37.2-r6) (11/16) Installing libfdisk (2.37.2-r6) (12/16) Installing libmount (2.37.2-r6) (13/16) Installing libsmartcols (2.37.2-r6) (14/16) Installing util-linux-dev (2.37.2-r6) (15/16) Installing lvm2-dev (2.02.187-r2) (16/16) Installing .makedepends-trivy (20211225.232049) Executing busybox-1.34.1-r5.trigger OK: 615 MiB in 105 packages >>> trivy: Cleaning up srcdir >>> trivy: Cleaning up pkgdir >>> trivy: Fetching https://distfiles.alpinelinux.org/distfiles/edge//trivy-0.22.0.tar.gz % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- 0:00:01 --:--:-- 0 0 146 0 0 0 0 0 0 --:--:-- 0:00:01 --:--:-- 0 curl: (22) The requested URL returned error: 404 >>> trivy: Fetching https://github.com/aquasecurity/trivy/archive/v0.22.0/trivy-0.22.0.tar.gz % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 127 100 127 0 0 234 0 --:--:-- --:--:-- --:--:-- 234 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 205k 0 205k 0 0 129k 0 --:--:-- 0:00:01 --:--:-- 221k 100 17.6M 0 17.6M 0 0 7004k 0 --:--:-- 0:00:02 --:--:-- 9445k 100 22.3M 0 22.3M 0 0 8240k 0 --:--:-- 0:00:02 --:--:-- 10.5M >>> trivy: Fetching https://distfiles.alpinelinux.org/distfiles/edge//trivy-0.22.0.tar.gz >>> trivy: Checking sha512sums... trivy-0.22.0.tar.gz: OK >>> trivy: Unpacking /var/cache/distfiles/edge/trivy-0.22.0.tar.gz... go build -ldflags "-s -w -X=main.version=v3.15.0-3178-gc823fafa34" ./cmd/trivy go: downloading github.com/aquasecurity/fanal v0.0.0-20211224205755-c94f68b6d71a go: downloading github.com/aquasecurity/go-dep-parser v0.0.0-20211224170007-df43bca6b6ff go: downloading github.com/aquasecurity/tfsec v0.63.1 go: downloading github.com/moby/buildkit v0.9.3 go: downloading github.com/hashicorp/hcl/v2 v2.11.1 go: downloading github.com/knqyf263/go-rpmdb v0.0.0-20211216113947-1369b2ee40b7 go: downloading github.com/containerd/stargz-snapshotter v0.6.4 go: downloading github.com/containerd/containerd v1.5.8 go: downloading github.com/agext/levenshtein v1.2.3 go test -v -short -coverprofile=coverage.txt -covermode=atomic ./... ? github.com/aquasecurity/trivy/cmd/trivy [no test files] ? github.com/aquasecurity/trivy/integration/docker [no test files] ? github.com/aquasecurity/trivy/misc/eol [no test files] === RUN TestRemoteCache_PutArtifact === RUN TestRemoteCache_PutArtifact/happy_path === RUN TestRemoteCache_PutArtifact/sad_path === RUN TestRemoteCache_PutArtifact/sad_path:_invalid_token --- PASS: TestRemoteCache_PutArtifact (0.00s) --- PASS: TestRemoteCache_PutArtifact/happy_path (0.00s) --- PASS: TestRemoteCache_PutArtifact/sad_path (0.00s) --- PASS: TestRemoteCache_PutArtifact/sad_path:_invalid_token (0.00s) === RUN TestRemoteCache_PutBlob === RUN TestRemoteCache_PutBlob/happy_path === RUN TestRemoteCache_PutBlob/sad_path === RUN TestRemoteCache_PutBlob/sad_path:_invalid_token --- PASS: TestRemoteCache_PutBlob (0.00s) --- PASS: TestRemoteCache_PutBlob/happy_path (0.00s) --- PASS: TestRemoteCache_PutBlob/sad_path (0.00s) --- PASS: TestRemoteCache_PutBlob/sad_path:_invalid_token (0.00s) === RUN TestRemoteCache_MissingBlobs === RUN TestRemoteCache_MissingBlobs/happy_path === RUN TestRemoteCache_MissingBlobs/sad_path === RUN TestRemoteCache_MissingBlobs/sad_path_with_invalid_token --- PASS: TestRemoteCache_MissingBlobs (0.00s) --- PASS: TestRemoteCache_MissingBlobs/happy_path (0.00s) --- PASS: TestRemoteCache_MissingBlobs/sad_path (0.00s) --- PASS: TestRemoteCache_MissingBlobs/sad_path_with_invalid_token (0.00s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/cache 0.019s coverage: 100.0% of statements === RUN Test_showVersion === RUN Test_showVersion/happy_path,_table_output === RUN Test_showVersion/happy_path,_JSON_output === RUN Test_showVersion/sad_path,_no_DB_is_available === RUN Test_showVersion/sad_path,_bogus_cache_dir --- PASS: Test_showVersion (0.00s) --- PASS: Test_showVersion/happy_path,_table_output (0.00s) --- PASS: Test_showVersion/happy_path,_JSON_output (0.00s) --- PASS: Test_showVersion/sad_path,_no_DB_is_available (0.00s) --- PASS: Test_showVersion/sad_path,_bogus_cache_dir (0.00s) === RUN TestNewCommands --- PASS: TestNewCommands (0.00s) PASS coverage: 90.8% of statements ok github.com/aquasecurity/trivy/pkg/commands 0.166s coverage: 90.8% of statements === RUN TestOption_Init === RUN TestOption_Init/happy_path === RUN TestOption_Init/config_scanning === RUN TestOption_Init/happy_path:_reset === RUN TestOption_Init/happy_path_with_an_unknown_severity === RUN TestOption_Init/invalid_option_combination:_--template_enabled_without_--format === RUN TestOption_Init/invalid_option_combination:_--template_and_--format_json === RUN TestOption_Init/invalid_option_combination:_--format_template_without_--template === RUN TestOption_Init/sad:_skip_and_download_db === RUN TestOption_Init/sad:_multiple_image_names --- PASS: TestOption_Init (0.00s) --- PASS: TestOption_Init/happy_path (0.00s) --- PASS: TestOption_Init/config_scanning (0.00s) --- PASS: TestOption_Init/happy_path:_reset (0.00s) --- PASS: TestOption_Init/happy_path_with_an_unknown_severity (0.00s) --- PASS: TestOption_Init/invalid_option_combination:_--template_enabled_without_--format (0.00s) --- PASS: TestOption_Init/invalid_option_combination:_--template_and_--format_json (0.00s) --- PASS: TestOption_Init/invalid_option_combination:_--format_template_without_--template (0.00s) --- PASS: TestOption_Init/sad:_skip_and_download_db (0.00s) --- PASS: TestOption_Init/sad:_multiple_image_names (0.00s) PASS coverage: 8.5% of statements ok github.com/aquasecurity/trivy/pkg/commands/artifact 0.216s coverage: 8.5% of statements === RUN TestConfig_Init === RUN TestConfig_Init/happy_path === RUN TestConfig_Init/config_scanning === RUN TestConfig_Init/happy_path_with_token_and_token_header === RUN TestConfig_Init/happy_path_with_good_custom_headers === RUN TestConfig_Init/happy_path_with_bad_custom_headers === RUN TestConfig_Init/happy_path_with_an_unknown_severity === RUN TestConfig_Init/invalid_option_combination:_--template_enabled_without_--format === RUN TestConfig_Init/invalid_option_combination:_--template_and_--format_json === RUN TestConfig_Init/invalid_option_combination:_--format_template_without_--template === RUN TestConfig_Init/invalid_option_combination:_--format_template_without_--template#01 === RUN TestConfig_Init/sad:_multiple_image_names --- PASS: TestConfig_Init (0.00s) --- PASS: TestConfig_Init/happy_path (0.00s) --- PASS: TestConfig_Init/config_scanning (0.00s) --- PASS: TestConfig_Init/happy_path_with_token_and_token_header (0.00s) --- PASS: TestConfig_Init/happy_path_with_good_custom_headers (0.00s) --- PASS: TestConfig_Init/happy_path_with_bad_custom_headers (0.00s) --- PASS: TestConfig_Init/happy_path_with_an_unknown_severity (0.00s) --- PASS: TestConfig_Init/invalid_option_combination:_--template_enabled_without_--format (0.00s) --- PASS: TestConfig_Init/invalid_option_combination:_--template_and_--format_json (0.00s) --- PASS: TestConfig_Init/invalid_option_combination:_--format_template_without_--template (0.00s) --- PASS: TestConfig_Init/invalid_option_combination:_--format_template_without_--template#01 (0.00s) --- PASS: TestConfig_Init/sad:_multiple_image_names (0.00s) === RUN Test_splitCustomHeaders === RUN Test_splitCustomHeaders/happy_path --- PASS: Test_splitCustomHeaders (0.00s) --- PASS: Test_splitCustomHeaders/happy_path (0.00s) PASS coverage: 15.0% of statements ok github.com/aquasecurity/trivy/pkg/commands/client 0.172s coverage: 15.0% of statements ? github.com/aquasecurity/trivy/pkg/commands/operation [no test files] === RUN TestReportReportConfig_Init === RUN TestReportReportConfig_Init/happy_path === RUN TestReportReportConfig_Init/happy_path_with_an_unknown_severity === RUN TestReportReportConfig_Init/invalid_option_combination:_--template_enabled_without_--format === RUN TestReportReportConfig_Init/invalid_option_combination:_--template_and_--format_json === RUN TestReportReportConfig_Init/invalid_option_combination:_--format_template_without_--template --- PASS: TestReportReportConfig_Init (0.00s) --- PASS: TestReportReportConfig_Init/happy_path (0.00s) --- PASS: TestReportReportConfig_Init/happy_path_with_an_unknown_severity (0.00s) --- PASS: TestReportReportConfig_Init/invalid_option_combination:_--template_enabled_without_--format (0.00s) --- PASS: TestReportReportConfig_Init/invalid_option_combination:_--template_and_--format_json (0.00s) --- PASS: TestReportReportConfig_Init/invalid_option_combination:_--format_template_without_--template (0.00s) === RUN TestArtifactOption_Init === RUN TestArtifactOption_Init/happy_path === RUN TestArtifactOption_Init/sad:_multiple_image_names --- PASS: TestArtifactOption_Init (0.00s) --- PASS: TestArtifactOption_Init/happy_path (0.00s) --- PASS: TestArtifactOption_Init/sad:_multiple_image_names (0.00s) === RUN TestNewCacheOption === RUN TestNewCacheOption/happy_path === RUN TestNewCacheOption/default --- PASS: TestNewCacheOption (0.00s) --- PASS: TestNewCacheOption/happy_path (0.00s) --- PASS: TestNewCacheOption/default (0.00s) === RUN TestCacheOption_Init === RUN TestCacheOption_Init/fs === RUN TestCacheOption_Init/redis === RUN TestCacheOption_Init/sad_path --- PASS: TestCacheOption_Init (0.00s) --- PASS: TestCacheOption_Init/fs (0.00s) --- PASS: TestCacheOption_Init/redis (0.00s) --- PASS: TestCacheOption_Init/sad_path (0.00s) === RUN TestNewDBOption === RUN TestNewDBOption/happy_path --- PASS: TestNewDBOption (0.00s) --- PASS: TestNewDBOption/happy_path (0.00s) === RUN TestDBOption_Init === RUN TestDBOption_Init/happy_path === RUN TestDBOption_Init/sad_path --- PASS: TestDBOption_Init (0.00s) --- PASS: TestDBOption_Init/happy_path (0.00s) --- PASS: TestDBOption_Init/sad_path (0.00s) === RUN TestNewGlobalConfig === RUN TestNewGlobalConfig/happy_path --- PASS: TestNewGlobalConfig (0.00s) --- PASS: TestNewGlobalConfig/happy_path (0.00s) PASS coverage: 80.6% of statements ok github.com/aquasecurity/trivy/pkg/commands/option 0.009s coverage: 80.6% of statements ? github.com/aquasecurity/trivy/pkg/commands/plugin [no test files] === RUN TestNew === RUN TestNew/happy_path --- PASS: TestNew (0.00s) --- PASS: TestNew/happy_path (0.00s) === RUN TestConfig_Init === RUN TestConfig_Init/happy_path === RUN TestConfig_Init/happy_path:_reset === RUN TestConfig_Init/sad:_skip_and_download_db --- PASS: TestConfig_Init (0.00s) --- PASS: TestConfig_Init/happy_path (0.00s) --- PASS: TestConfig_Init/happy_path:_reset (0.00s) --- PASS: TestConfig_Init/sad:_skip_and_download_db (0.00s) PASS coverage: 21.4% of statements ok github.com/aquasecurity/trivy/pkg/commands/server 0.171s coverage: 21.4% of statements === RUN TestClient_NeedsUpdate === RUN TestClient_NeedsUpdate/happy_path === RUN TestClient_NeedsUpdate/happy_path_for_first_run === RUN TestClient_NeedsUpdate/happy_path_with_different_type === RUN TestClient_NeedsUpdate/happy_path_with_old_schema_version === RUN TestClient_NeedsUpdate/happy_path_with_--skip-update === RUN TestClient_NeedsUpdate/skip_downloading_DB === RUN TestClient_NeedsUpdate/newer_schema_version 2021-12-25T23:21:34.410Z ERROR Trivy version (test) is old. Update to the latest version. === RUN TestClient_NeedsUpdate/--skip-update_on_the_first_run 2021-12-25T23:21:34.410Z ERROR The first run cannot skip downloading DB === RUN TestClient_NeedsUpdate/--skip-update_with_different_schema_version 2021-12-25T23:21:34.410Z ERROR The local DB is old and needs to be updated === RUN TestClient_NeedsUpdate/happy_with_old_DownloadedAt === RUN TestClient_NeedsUpdate/skip_downloading_DB_with_recent_DownloadedAt --- PASS: TestClient_NeedsUpdate (0.00s) --- PASS: TestClient_NeedsUpdate/happy_path (0.00s) --- PASS: TestClient_NeedsUpdate/happy_path_for_first_run (0.00s) --- PASS: TestClient_NeedsUpdate/happy_path_with_different_type (0.00s) --- PASS: TestClient_NeedsUpdate/happy_path_with_old_schema_version (0.00s) --- PASS: TestClient_NeedsUpdate/happy_path_with_--skip-update (0.00s) --- PASS: TestClient_NeedsUpdate/skip_downloading_DB (0.00s) --- PASS: TestClient_NeedsUpdate/newer_schema_version (0.00s) --- PASS: TestClient_NeedsUpdate/--skip-update_on_the_first_run (0.00s) --- PASS: TestClient_NeedsUpdate/--skip-update_with_different_schema_version (0.00s) --- PASS: TestClient_NeedsUpdate/happy_with_old_DownloadedAt (0.00s) --- PASS: TestClient_NeedsUpdate/skip_downloading_DB_with_recent_DownloadedAt (0.00s) === RUN TestClient_Download === RUN TestClient_Download/happy_path db_test.go:264: PASS: DownloadDB(string,string) === RUN TestClient_Download/DownloadDB_returns_an_error db_test.go:264: PASS: DownloadDB(string,string) === RUN TestClient_Download/invalid_gzip db_test.go:264: PASS: DownloadDB(string,string) --- PASS: TestClient_Download (0.00s) --- PASS: TestClient_Download/happy_path (0.00s) --- PASS: TestClient_Download/DownloadDB_returns_an_error (0.00s) --- PASS: TestClient_Download/invalid_gzip (0.00s) === RUN TestClient_UpdateMetadata === RUN TestClient_UpdateMetadata/happy_path === RUN TestClient_UpdateMetadata/sad_path,_get_metadata_fails === RUN TestClient_UpdateMetadata/sad_path,_store_metadata_fails --- PASS: TestClient_UpdateMetadata (3.22s) --- PASS: TestClient_UpdateMetadata/happy_path (3.13s) --- PASS: TestClient_UpdateMetadata/sad_path,_get_metadata_fails (0.05s) --- PASS: TestClient_UpdateMetadata/sad_path,_store_metadata_fails (0.04s) PASS coverage: 56.8% of statements ok github.com/aquasecurity/trivy/pkg/db 3.228s coverage: 56.8% of statements ? github.com/aquasecurity/trivy/pkg/dbtest [no test files] === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/happy_path === RUN TestAdvisory_DetectVulnerabilities/no_patched_versions_in_the_advisory === RUN TestAdvisory_DetectVulnerabilities/no_vulnerable_versions_in_the_advisory === RUN TestAdvisory_DetectVulnerabilities/no_vulnerability --- PASS: TestAdvisory_DetectVulnerabilities (1.73s) --- PASS: TestAdvisory_DetectVulnerabilities/happy_path (1.17s) --- PASS: TestAdvisory_DetectVulnerabilities/no_patched_versions_in_the_advisory (0.18s) --- PASS: TestAdvisory_DetectVulnerabilities/no_vulnerable_versions_in_the_advisory (0.21s) --- PASS: TestAdvisory_DetectVulnerabilities/no_vulnerability (0.16s) === RUN TestDriver_Detect === RUN TestDriver_Detect/happy_path === RUN TestDriver_Detect/non-prefix_buckets === RUN TestDriver_Detect/no_patched_versions_in_the_advisory === RUN TestDriver_Detect/no_vulnerable_versions_in_the_advisory === RUN TestDriver_Detect/no_vulnerability --- PASS: TestDriver_Detect (0.70s) --- PASS: TestDriver_Detect/happy_path (0.17s) --- PASS: TestDriver_Detect/non-prefix_buckets (0.17s) --- PASS: TestDriver_Detect/no_patched_versions_in_the_advisory (0.13s) --- PASS: TestDriver_Detect/no_vulnerable_versions_in_the_advisory (0.12s) --- PASS: TestDriver_Detect/no_vulnerability (0.10s) PASS coverage: 39.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library 2.436s coverage: 39.0% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/invalid_JSON --- PASS: TestAdvisory_DetectVulnerabilities (1.49s) --- PASS: TestAdvisory_DetectVulnerabilities/detected (1.08s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.19s) --- PASS: TestAdvisory_DetectVulnerabilities/invalid_JSON (0.22s) === RUN TestRubyGemsComparer_IsVulnerable === RUN TestRubyGemsComparer_IsVulnerable/happy_path === RUN TestRubyGemsComparer_IsVulnerable/pre-release === RUN TestRubyGemsComparer_IsVulnerable/pre-release_without_dot === RUN TestRubyGemsComparer_IsVulnerable/hyphen === RUN TestRubyGemsComparer_IsVulnerable/pessimistic === RUN TestRubyGemsComparer_IsVulnerable/invalid_version 2021-12-25T23:21:38.105Z WARN RubyGems version error (1.2..4): invalid gem version === RUN TestRubyGemsComparer_IsVulnerable/invalid_constraint 2021-12-25T23:21:38.105Z WARN RubyGems constraint error (!1.2.0): improper constraint: !1.2.0 --- PASS: TestRubyGemsComparer_IsVulnerable (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/happy_path (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/pre-release (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/pre-release_without_dot (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/hyphen (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/pessimistic (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/invalid_version (0.00s) --- PASS: TestRubyGemsComparer_IsVulnerable/invalid_constraint (0.00s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/bundler 1.497s coverage: 100.0% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/no_patched_version === RUN TestAdvisory_DetectVulnerabilities/invalid_JSON --- PASS: TestAdvisory_DetectVulnerabilities (0.69s) --- PASS: TestAdvisory_DetectVulnerabilities/detected (0.20s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.13s) --- PASS: TestAdvisory_DetectVulnerabilities/no_patched_version (0.17s) --- PASS: TestAdvisory_DetectVulnerabilities/invalid_JSON (0.18s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/cargo 0.693s coverage: 100.0% of statements === RUN TestGenericComparer_IsVulnerable === RUN TestGenericComparer_IsVulnerable/happy_path === RUN TestGenericComparer_IsVulnerable/no_patch === RUN TestGenericComparer_IsVulnerable/pre-release === RUN TestGenericComparer_IsVulnerable/multiple_constraints === RUN TestGenericComparer_IsVulnerable/invalid_version 2021-12-25T23:21:35.514Z WARN version error (1.2..4): malformed version: 1.2..4 === RUN TestGenericComparer_IsVulnerable/improper_constraint 2021-12-25T23:21:35.514Z WARN constraint error (1.2.3): improper constraint: * === RUN TestGenericComparer_IsVulnerable/empty_patched_version === RUN TestGenericComparer_IsVulnerable/empty_vulnerable_&_patched_version --- PASS: TestGenericComparer_IsVulnerable (0.00s) --- PASS: TestGenericComparer_IsVulnerable/happy_path (0.00s) --- PASS: TestGenericComparer_IsVulnerable/no_patch (0.00s) --- PASS: TestGenericComparer_IsVulnerable/pre-release (0.00s) --- PASS: TestGenericComparer_IsVulnerable/multiple_constraints (0.00s) --- PASS: TestGenericComparer_IsVulnerable/invalid_version (0.00s) --- PASS: TestGenericComparer_IsVulnerable/improper_constraint (0.00s) --- PASS: TestGenericComparer_IsVulnerable/empty_patched_version (0.00s) --- PASS: TestGenericComparer_IsVulnerable/empty_vulnerable_&_patched_version (0.00s) PASS coverage: 89.3% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/comparer 0.005s coverage: 89.3% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/malformed_JSON --- PASS: TestAdvisory_DetectVulnerabilities (1.45s) --- PASS: TestAdvisory_DetectVulnerabilities/detected (1.06s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.18s) --- PASS: TestAdvisory_DetectVulnerabilities/malformed_JSON (0.21s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/composer 1.459s coverage: 100.0% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/composer_detected === RUN TestAdvisory_DetectVulnerabilities/nuget_detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/malformed_JSON --- PASS: TestAdvisory_DetectVulnerabilities (1.67s) --- PASS: TestAdvisory_DetectVulnerabilities/composer_detected (1.10s) --- PASS: TestAdvisory_DetectVulnerabilities/nuget_detected (0.19s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.21s) --- PASS: TestAdvisory_DetectVulnerabilities/malformed_JSON (0.16s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/ghsa 1.673s coverage: 100.0% of statements === RUN TestComparer_IsVulnerable === RUN TestComparer_IsVulnerable/happy_path === RUN TestComparer_IsVulnerable/final_release === RUN TestComparer_IsVulnerable/pre-release === RUN TestComparer_IsVulnerable/multiple_constraints === RUN TestComparer_IsVulnerable/version_requirements === RUN TestComparer_IsVulnerable/version_soft_requirements_happy === RUN TestComparer_IsVulnerable/version_soft_requirements === RUN TestComparer_IsVulnerable/invalid_constraint 2021-12-25T23:21:35.411Z WARN maven constraint error (<1.0\.0): failed to new comparer: 2 errors occurred: * improper constraint: <1.0\.0 * improper requirements: [] --- PASS: TestComparer_IsVulnerable (0.00s) --- PASS: TestComparer_IsVulnerable/happy_path (0.00s) --- PASS: TestComparer_IsVulnerable/final_release (0.00s) --- PASS: TestComparer_IsVulnerable/pre-release (0.00s) --- PASS: TestComparer_IsVulnerable/multiple_constraints (0.00s) --- PASS: TestComparer_IsVulnerable/version_requirements (0.00s) --- PASS: TestComparer_IsVulnerable/version_soft_requirements_happy (0.00s) --- PASS: TestComparer_IsVulnerable/version_soft_requirements (0.00s) --- PASS: TestComparer_IsVulnerable/invalid_constraint (0.00s) PASS coverage: 87.5% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/maven 0.009s coverage: 87.5% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/empty_value === RUN TestAdvisory_DetectVulnerabilities/malformed_JSON --- PASS: TestAdvisory_DetectVulnerabilities (1.41s) --- PASS: TestAdvisory_DetectVulnerabilities/detected (0.87s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.14s) --- PASS: TestAdvisory_DetectVulnerabilities/empty_value (0.23s) --- PASS: TestAdvisory_DetectVulnerabilities/malformed_JSON (0.17s) === RUN TestNpmComparer_IsVulnerable === RUN TestNpmComparer_IsVulnerable/happy_path === RUN TestNpmComparer_IsVulnerable/no_patch === RUN TestNpmComparer_IsVulnerable/no_patch_with_wildcard === RUN TestNpmComparer_IsVulnerable/pre-release === RUN TestNpmComparer_IsVulnerable/multiple_constraints === RUN TestNpmComparer_IsVulnerable/x === RUN TestNpmComparer_IsVulnerable/exact_versions === RUN TestNpmComparer_IsVulnerable/caret === RUN TestNpmComparer_IsVulnerable/invalid_version 2021-12-25T23:21:38.229Z WARN npm version error (1.2..4): invalid semantic version === RUN TestNpmComparer_IsVulnerable/invalid_constraint 2021-12-25T23:21:38.230Z WARN npm constraint error (!1.0.0): improper constraint: !1.0.0 --- PASS: TestNpmComparer_IsVulnerable (0.00s) --- PASS: TestNpmComparer_IsVulnerable/happy_path (0.00s) --- PASS: TestNpmComparer_IsVulnerable/no_patch (0.00s) --- PASS: TestNpmComparer_IsVulnerable/no_patch_with_wildcard (0.00s) --- PASS: TestNpmComparer_IsVulnerable/pre-release (0.00s) --- PASS: TestNpmComparer_IsVulnerable/multiple_constraints (0.00s) --- PASS: TestNpmComparer_IsVulnerable/x (0.00s) --- PASS: TestNpmComparer_IsVulnerable/exact_versions (0.00s) --- PASS: TestNpmComparer_IsVulnerable/caret (0.00s) --- PASS: TestNpmComparer_IsVulnerable/invalid_version (0.00s) --- PASS: TestNpmComparer_IsVulnerable/invalid_constraint (0.00s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/npm 1.415s coverage: 100.0% of statements === RUN TestAdvisory_DetectVulnerabilities === RUN TestAdvisory_DetectVulnerabilities/detected === RUN TestAdvisory_DetectVulnerabilities/not_detected === RUN TestAdvisory_DetectVulnerabilities/malformed_JSON --- PASS: TestAdvisory_DetectVulnerabilities (1.49s) --- PASS: TestAdvisory_DetectVulnerabilities/detected (1.08s) --- PASS: TestAdvisory_DetectVulnerabilities/not_detected (0.19s) --- PASS: TestAdvisory_DetectVulnerabilities/malformed_JSON (0.21s) === RUN TestPep440Comparer_IsVulnerable === RUN TestPep440Comparer_IsVulnerable/happy_path === RUN TestPep440Comparer_IsVulnerable/no_patch === RUN TestPep440Comparer_IsVulnerable/no_patch_with_wildcard === RUN TestPep440Comparer_IsVulnerable/pre-release === RUN TestPep440Comparer_IsVulnerable/multiple_constraints === RUN TestPep440Comparer_IsVulnerable/exact_versions === RUN TestPep440Comparer_IsVulnerable/invalid_version 2021-12-25T23:21:38.096Z WARN python version error (1.2..4): malformed version: 1.2..4 === RUN TestPep440Comparer_IsVulnerable/invalid_constraint 2021-12-25T23:21:38.097Z WARN python constraint error (!1.0.0): improper constraint: !1.0.0 --- PASS: TestPep440Comparer_IsVulnerable (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/happy_path (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/no_patch (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/no_patch_with_wildcard (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/pre-release (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/multiple_constraints (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/exact_versions (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/invalid_version (0.00s) --- PASS: TestPep440Comparer_IsVulnerable/invalid_constraint (0.00s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/detector/library/python 1.496s coverage: 100.0% of statements ? github.com/aquasecurity/trivy/pkg/detector/ospkg [no test files] === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path 2021-12-25T23:21:37.695Z INFO Detecting Alpine vulnerabilities... === RUN TestScanner_Detect/contain_rc 2021-12-25T23:21:37.891Z INFO Detecting Alpine vulnerabilities... === RUN TestScanner_Detect/contain_pre 2021-12-25T23:21:38.088Z INFO Detecting Alpine vulnerabilities... === RUN TestScanner_Detect/Get_returns_an_error 2021-12-25T23:21:38.256Z INFO Detecting Alpine vulnerabilities... --- PASS: TestScanner_Detect (1.39s) --- PASS: TestScanner_Detect/happy_path (0.83s) --- PASS: TestScanner_Detect/contain_rc (0.20s) --- PASS: TestScanner_Detect/contain_pre (0.20s) --- PASS: TestScanner_Detect/Get_returns_an_error (0.16s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/alpine_3.6 === RUN TestScanner_IsSupportedVersion/alpine_3.6_with_EOL === RUN TestScanner_IsSupportedVersion/alpine_3.9 === RUN TestScanner_IsSupportedVersion/alpine_3.10 === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:38.258Z WARN This OS version is not on the EOL list: alpine unknown --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/alpine_3.6 (0.00s) --- PASS: TestScanner_IsSupportedVersion/alpine_3.6_with_EOL (0.00s) --- PASS: TestScanner_IsSupportedVersion/alpine_3.9 (0.00s) --- PASS: TestScanner_IsSupportedVersion/alpine_3.10 (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) PASS coverage: 95.7% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/alpine 1.401s coverage: 95.7% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/amazon_linux_1 2021-12-25T23:21:38.061Z INFO Detecting Amazon Linux vulnerabilities... === RUN TestScanner_Detect/amazon_linux_2 2021-12-25T23:21:38.227Z INFO Detecting Amazon Linux vulnerabilities... === RUN TestScanner_Detect/empty_version 2021-12-25T23:21:38.347Z INFO Detecting Amazon Linux vulnerabilities... === RUN TestScanner_Detect/Get_returns_an_error 2021-12-25T23:21:38.507Z INFO Detecting Amazon Linux vulnerabilities... --- PASS: TestScanner_Detect (0.69s) --- PASS: TestScanner_Detect/amazon_linux_1 (0.24s) --- PASS: TestScanner_Detect/amazon_linux_2 (0.17s) --- PASS: TestScanner_Detect/empty_version (0.13s) --- PASS: TestScanner_Detect/Get_returns_an_error (0.16s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/amazon_linux_1 === RUN TestScanner_IsSupportedVersion/amazon_linux_1_EOL === RUN TestScanner_IsSupportedVersion/amazon_linux_2 --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/amazon_linux_1 (0.00s) --- PASS: TestScanner_IsSupportedVersion/amazon_linux_1_EOL (0.00s) --- PASS: TestScanner_IsSupportedVersion/amazon_linux_2 (0.00s) PASS coverage: 85.4% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/amazon 0.695s coverage: 85.4% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path 2021-12-25T23:21:37.681Z INFO Detecting Debian vulnerabilities... === RUN TestScanner_Detect/invalid_bucket 2021-12-25T23:21:37.890Z INFO Detecting Debian vulnerabilities... --- PASS: TestScanner_Detect (1.07s) --- PASS: TestScanner_Detect/happy_path (0.86s) --- PASS: TestScanner_Detect/invalid_bucket (0.21s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/debian_7 === RUN TestScanner_IsSupportedVersion/debian_8_EOL === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:37.891Z WARN This OS version is not on the EOL list: debian unknown --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/debian_7 (0.00s) --- PASS: TestScanner_IsSupportedVersion/debian_8_EOL (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) PASS coverage: 90.9% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/debian 1.080s coverage: 90.9% of statements === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/oracle3 === RUN TestScanner_IsSupportedVersion/oracle4 === RUN TestScanner_IsSupportedVersion/oracle6 === RUN TestScanner_IsSupportedVersion/oracle8-same-time === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:36.791Z WARN This OS version is not on the EOL list: oracle unknown === RUN TestScanner_IsSupportedVersion/oracle5 === RUN TestScanner_IsSupportedVersion/oracle7 === RUN TestScanner_IsSupportedVersion/oracle7.6 === RUN TestScanner_IsSupportedVersion/oracle8 --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle3 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle4 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle6 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle8-same-time (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle5 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle7 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle7.6 (0.00s) --- PASS: TestScanner_IsSupportedVersion/oracle8 (0.00s) === RUN TestScanner_Detect === RUN TestScanner_Detect/detected 2021-12-25T23:21:37.697Z INFO Detecting Oracle Linux vulnerabilities... === RUN TestScanner_Detect/without_ksplice 2021-12-25T23:21:37.871Z INFO Detecting Oracle Linux vulnerabilities... === RUN TestScanner_Detect/the_installed_version_has_ksplice2 2021-12-25T23:21:38.084Z INFO Detecting Oracle Linux vulnerabilities... === RUN TestScanner_Detect/with_ksplice 2021-12-25T23:21:38.256Z INFO Detecting Oracle Linux vulnerabilities... === RUN TestScanner_Detect/malformed 2021-12-25T23:21:38.408Z INFO Detecting Oracle Linux vulnerabilities... --- PASS: TestScanner_Detect (1.62s) --- PASS: TestScanner_Detect/detected (0.91s) --- PASS: TestScanner_Detect/without_ksplice (0.18s) --- PASS: TestScanner_Detect/the_installed_version_has_ksplice2 (0.21s) --- PASS: TestScanner_Detect/with_ksplice (0.16s) --- PASS: TestScanner_Detect/malformed (0.15s) PASS coverage: 97.1% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/oracle 1.623s coverage: 97.1% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path 2021-12-25T23:21:37.683Z INFO Detecting Photon Linux vulnerabilities... === RUN TestScanner_Detect/invalid_bucket 2021-12-25T23:21:37.866Z INFO Detecting Photon Linux vulnerabilities... --- PASS: TestScanner_Detect (1.32s) --- PASS: TestScanner_Detect/happy_path (1.12s) --- PASS: TestScanner_Detect/invalid_bucket (0.20s) PASS coverage: 94.7% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/photon 1.324s coverage: 94.7% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path:_src_pkg_name_is_different_from_bin_pkg_name 2021-12-25T23:21:38.100Z INFO Detecting RHEL/CentOS vulnerabilities... === RUN TestScanner_Detect/happy_path:_src_pkg_name_is_the_same_as_bin_pkg_name 2021-12-25T23:21:38.256Z INFO Detecting RHEL/CentOS vulnerabilities... === RUN TestScanner_Detect/happy_path:_modular_packages 2021-12-25T23:21:38.419Z INFO Detecting RHEL/CentOS vulnerabilities... === RUN TestScanner_Detect/happy_path:_packages_from_remi_repository_are_skipped 2021-12-25T23:21:38.601Z INFO Detecting RHEL/CentOS vulnerabilities... === RUN TestScanner_Detect/invalid_bucket 2021-12-25T23:21:38.706Z INFO Detecting RHEL/CentOS vulnerabilities... --- PASS: TestScanner_Detect (0.84s) --- PASS: TestScanner_Detect/happy_path:_src_pkg_name_is_different_from_bin_pkg_name (0.23s) --- PASS: TestScanner_Detect/happy_path:_src_pkg_name_is_the_same_as_bin_pkg_name (0.16s) --- PASS: TestScanner_Detect/happy_path:_modular_packages (0.17s) --- PASS: TestScanner_Detect/happy_path:_packages_from_remi_repository_are_skipped (0.17s) --- PASS: TestScanner_Detect/invalid_bucket (0.11s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/centos_6 === RUN TestScanner_IsSupportedVersion/centos_6_EOL === RUN TestScanner_IsSupportedVersion/two_dots === RUN TestScanner_IsSupportedVersion/rhel_8 === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:38.707Z WARN This OS version is not on the EOL list: unknown 8 --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/centos_6 (0.00s) --- PASS: TestScanner_IsSupportedVersion/centos_6_EOL (0.00s) --- PASS: TestScanner_IsSupportedVersion/two_dots (0.00s) --- PASS: TestScanner_IsSupportedVersion/rhel_8 (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) PASS coverage: 98.3% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/redhat 0.848s coverage: 98.3% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path 2021-12-25T23:21:37.695Z INFO Detecting SUSE vulnerabilities... === RUN TestScanner_Detect/broken_bucket 2021-12-25T23:21:37.865Z INFO Detecting SUSE vulnerabilities... --- PASS: TestScanner_Detect (1.39s) --- PASS: TestScanner_Detect/happy_path (1.21s) --- PASS: TestScanner_Detect/broken_bucket (0.18s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/opensuse.leap42.3 === RUN TestScanner_IsSupportedVersion/sles12.3 === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:37.879Z WARN This OS version is not on the EOL list: unknown unknown --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/opensuse.leap42.3 (0.00s) --- PASS: TestScanner_IsSupportedVersion/sles12.3 (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) PASS coverage: 97.2% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/suse 1.400s coverage: 97.2% of statements === RUN TestScanner_Detect === RUN TestScanner_Detect/happy_path 2021-12-25T23:21:37.690Z INFO Detecting Ubuntu vulnerabilities... === RUN TestScanner_Detect/broken_bucket 2021-12-25T23:21:37.864Z INFO Detecting Ubuntu vulnerabilities... --- PASS: TestScanner_Detect (1.16s) --- PASS: TestScanner_Detect/happy_path (0.97s) --- PASS: TestScanner_Detect/broken_bucket (0.19s) === RUN TestScanner_IsSupportedVersion === RUN TestScanner_IsSupportedVersion/ubuntu_12.04_eol_ends === RUN TestScanner_IsSupportedVersion/ubuntu12.04 === RUN TestScanner_IsSupportedVersion/unknown 2021-12-25T23:21:37.879Z WARN This OS version is not on the EOL list: ubuntu unknown --- PASS: TestScanner_IsSupportedVersion (0.00s) --- PASS: TestScanner_IsSupportedVersion/ubuntu_12.04_eol_ends (0.00s) --- PASS: TestScanner_IsSupportedVersion/ubuntu12.04 (0.00s) --- PASS: TestScanner_IsSupportedVersion/unknown (0.00s) PASS coverage: 88.9% of statements ok github.com/aquasecurity/trivy/pkg/detector/ospkg/ubuntu 1.166s coverage: 88.9% of statements ? github.com/aquasecurity/trivy/pkg/downloader [no test files] === RUN TestClient_DownloadDB === RUN TestClient_DownloadDB/happy_path github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) === RUN TestClient_DownloadDB/happy_path_with_redirect_URL github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) === RUN TestClient_DownloadDB/happy_path_with_inorder_releases github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) === RUN TestClient_DownloadDB/happy_path_with_no_asset github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) === RUN TestClient_DownloadDB/no_asset github_test.go:455: PASS: ListReleases(string,string) === RUN TestClient_DownloadDB/the_file_name_doesn't_match github_test.go:455: PASS: ListReleases(string,string) === RUN TestClient_DownloadDB/ListReleases_returns_error github_test.go:455: PASS: ListReleases(string,string) === RUN TestClient_DownloadDB/DownloadAsset_returns_error github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) === RUN TestClient_DownloadDB/404_error github_test.go:455: PASS: ListReleases(string,string) github_test.go:455: PASS: DownloadAsset(string,int64) --- PASS: TestClient_DownloadDB (0.00s) --- PASS: TestClient_DownloadDB/happy_path (0.00s) --- PASS: TestClient_DownloadDB/happy_path_with_redirect_URL (0.00s) --- PASS: TestClient_DownloadDB/happy_path_with_inorder_releases (0.00s) --- PASS: TestClient_DownloadDB/happy_path_with_no_asset (0.00s) --- PASS: TestClient_DownloadDB/no_asset (0.00s) --- PASS: TestClient_DownloadDB/the_file_name_doesn't_match (0.00s) --- PASS: TestClient_DownloadDB/ListReleases_returns_error (0.00s) --- PASS: TestClient_DownloadDB/DownloadAsset_returns_error (0.00s) --- PASS: TestClient_DownloadDB/404_error (0.00s) PASS coverage: 50.0% of statements ok github.com/aquasecurity/trivy/pkg/github 0.011s coverage: 50.0% of statements ? github.com/aquasecurity/trivy/pkg/indicator [no test files] ? github.com/aquasecurity/trivy/pkg/log [no test files] === RUN TestPlugin_Run === RUN TestPlugin_Run/happy_path foo === RUN TestPlugin_Run/no_selector foo === RUN TestPlugin_Run/no_matched_platform === RUN TestPlugin_Run/no_execution_file === RUN TestPlugin_Run/plugin_exec_error --- PASS: TestPlugin_Run (0.00s) --- PASS: TestPlugin_Run/happy_path (0.00s) --- PASS: TestPlugin_Run/no_selector (0.00s) --- PASS: TestPlugin_Run/no_matched_platform (0.00s) --- PASS: TestPlugin_Run/no_execution_file (0.00s) --- PASS: TestPlugin_Run/plugin_exec_error (0.00s) === RUN TestInstall === RUN TestInstall/happy_path === RUN TestInstall/plugin_not_found === RUN TestInstall/no_plugin.yaml --- PASS: TestInstall (0.00s) --- PASS: TestInstall/happy_path (0.00s) --- PASS: TestInstall/plugin_not_found (0.00s) --- PASS: TestInstall/no_plugin.yaml (0.00s) === RUN TestUninstall --- PASS: TestUninstall (0.00s) === RUN TestInformation --- PASS: TestInformation (0.00s) === RUN TestLoadAll1 === RUN TestLoadAll1/happy_path === RUN TestLoadAll1/sad_path --- PASS: TestLoadAll1 (0.00s) --- PASS: TestLoadAll1/happy_path (0.00s) --- PASS: TestLoadAll1/sad_path (0.00s) === RUN TestUpdate --- PASS: TestUpdate (0.00s) PASS coverage: 74.0% of statements ok github.com/aquasecurity/trivy/pkg/plugin 0.029s coverage: 74.0% of statements === RUN TestClient_LoadBuiltinPolicies === RUN TestClient_LoadBuiltinPolicies/happy_path === RUN TestClient_LoadBuiltinPolicies/empty_roots === RUN TestClient_LoadBuiltinPolicies/broken_manifest === RUN TestClient_LoadBuiltinPolicies/no_such_file --- PASS: TestClient_LoadBuiltinPolicies (0.00s) --- PASS: TestClient_LoadBuiltinPolicies/happy_path (0.00s) --- PASS: TestClient_LoadBuiltinPolicies/empty_roots (0.00s) --- PASS: TestClient_LoadBuiltinPolicies/broken_manifest (0.00s) --- PASS: TestClient_LoadBuiltinPolicies/no_such_file (0.00s) === RUN TestClient_NeedsUpdate === RUN TestClient_NeedsUpdate/recent_download === RUN TestClient_NeedsUpdate/same_digest === RUN TestClient_NeedsUpdate/different_digest === RUN TestClient_NeedsUpdate/sad:_Digest_returns__an_error === RUN TestClient_NeedsUpdate/sad:_non-existent_metadata === RUN TestClient_NeedsUpdate/sad:_broken_metadata 2021-12-25T23:21:36.734Z WARN Policy metadata decode error: json: cannot unmarshal string into Go value of type policy.Metadata --- PASS: TestClient_NeedsUpdate (0.00s) --- PASS: TestClient_NeedsUpdate/recent_download (0.00s) --- PASS: TestClient_NeedsUpdate/same_digest (0.00s) --- PASS: TestClient_NeedsUpdate/different_digest (0.00s) --- PASS: TestClient_NeedsUpdate/sad:_Digest_returns__an_error (0.00s) --- PASS: TestClient_NeedsUpdate/sad:_non-existent_metadata (0.00s) --- PASS: TestClient_NeedsUpdate/sad:_broken_metadata (0.00s) === RUN TestClient_DownloadBuiltinPolicies === RUN TestClient_DownloadBuiltinPolicies/happy_path === RUN TestClient_DownloadBuiltinPolicies/sad:_two_layers === RUN TestClient_DownloadBuiltinPolicies/sad:_Layers_returns_an_error === RUN TestClient_DownloadBuiltinPolicies/sad:_Digest_returns_an_error --- PASS: TestClient_DownloadBuiltinPolicies (0.00s) --- PASS: TestClient_DownloadBuiltinPolicies/happy_path (0.00s) --- PASS: TestClient_DownloadBuiltinPolicies/sad:_two_layers (0.00s) --- PASS: TestClient_DownloadBuiltinPolicies/sad:_Layers_returns_an_error (0.00s) --- PASS: TestClient_DownloadBuiltinPolicies/sad:_Digest_returns_an_error (0.00s) PASS coverage: 79.8% of statements ok github.com/aquasecurity/trivy/pkg/policy 0.300s coverage: 79.8% of statements === RUN TestReportWriter_toSarifRuleName === RUN TestReportWriter_toSarifRuleName/ubuntu === RUN TestReportWriter_toSarifRuleName/alpine === RUN TestReportWriter_toSarifRuleName/redhat === RUN TestReportWriter_toSarifRuleName/redhat-oval === RUN TestReportWriter_toSarifRuleName/debian === RUN TestReportWriter_toSarifRuleName/debian-oval === RUN TestReportWriter_toSarifRuleName/fedora === RUN TestReportWriter_toSarifRuleName/amazon === RUN TestReportWriter_toSarifRuleName/oracle-oval === RUN TestReportWriter_toSarifRuleName/suse-cvrf === RUN TestReportWriter_toSarifRuleName/opensuse-cvrf === RUN TestReportWriter_toSarifRuleName/photon === RUN TestReportWriter_toSarifRuleName/centos === RUN TestReportWriter_toSarifRuleName/npm === RUN TestReportWriter_toSarifRuleName/yarn === RUN TestReportWriter_toSarifRuleName/nuget === RUN TestReportWriter_toSarifRuleName/pipenv === RUN TestReportWriter_toSarifRuleName/poetry === RUN TestReportWriter_toSarifRuleName/bundler === RUN TestReportWriter_toSarifRuleName/cargo === RUN TestReportWriter_toSarifRuleName/composer === RUN TestReportWriter_toSarifRuleName/redis --- PASS: TestReportWriter_toSarifRuleName (0.00s) --- PASS: TestReportWriter_toSarifRuleName/ubuntu (0.00s) --- PASS: TestReportWriter_toSarifRuleName/alpine (0.00s) --- PASS: TestReportWriter_toSarifRuleName/redhat (0.00s) --- PASS: TestReportWriter_toSarifRuleName/redhat-oval (0.00s) --- PASS: TestReportWriter_toSarifRuleName/debian (0.00s) --- PASS: TestReportWriter_toSarifRuleName/debian-oval (0.00s) --- PASS: TestReportWriter_toSarifRuleName/fedora (0.00s) --- PASS: TestReportWriter_toSarifRuleName/amazon (0.00s) --- PASS: TestReportWriter_toSarifRuleName/oracle-oval (0.00s) --- PASS: TestReportWriter_toSarifRuleName/suse-cvrf (0.00s) --- PASS: TestReportWriter_toSarifRuleName/opensuse-cvrf (0.00s) --- PASS: TestReportWriter_toSarifRuleName/photon (0.00s) --- PASS: TestReportWriter_toSarifRuleName/centos (0.00s) --- PASS: TestReportWriter_toSarifRuleName/npm (0.00s) --- PASS: TestReportWriter_toSarifRuleName/yarn (0.00s) --- PASS: TestReportWriter_toSarifRuleName/nuget (0.00s) --- PASS: TestReportWriter_toSarifRuleName/pipenv (0.00s) --- PASS: TestReportWriter_toSarifRuleName/poetry (0.00s) --- PASS: TestReportWriter_toSarifRuleName/bundler (0.00s) --- PASS: TestReportWriter_toSarifRuleName/cargo (0.00s) --- PASS: TestReportWriter_toSarifRuleName/composer (0.00s) --- PASS: TestReportWriter_toSarifRuleName/redis (0.00s) === RUN TestReportWriter_toSarifErrorLevel === RUN TestReportWriter_toSarifErrorLevel/CRITICAL === RUN TestReportWriter_toSarifErrorLevel/HIGH === RUN TestReportWriter_toSarifErrorLevel/MEDIUM === RUN TestReportWriter_toSarifErrorLevel/LOW === RUN TestReportWriter_toSarifErrorLevel/UNKNOWN === RUN TestReportWriter_toSarifErrorLevel/OTHER --- PASS: TestReportWriter_toSarifErrorLevel (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/CRITICAL (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/HIGH (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/MEDIUM (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/LOW (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/UNKNOWN (0.00s) --- PASS: TestReportWriter_toSarifErrorLevel/OTHER (0.00s) === RUN TestReportWriter_JSON === RUN TestReportWriter_JSON/happy_path --- PASS: TestReportWriter_JSON (0.00s) --- PASS: TestReportWriter_JSON/happy_path (0.00s) === RUN TestReportWriter_Table === RUN TestReportWriter_Table/happy_path_full test () ======= Total: 0 () === RUN TestReportWriter_Table/happy_path_light test () ======= Total: 0 () === RUN TestReportWriter_Table/no_title_for_vuln_and_missing_primary_link test () ======= Total: 0 () === RUN TestReportWriter_Table/long_title_for_vuln test () ======= Total: 0 () === RUN TestReportWriter_Table/happy_path_misconfigurations test () ======= Total: 0 () === RUN TestReportWriter_Table/happy_path_misconfigurations_with_successes test () ======= Total: 0 () === RUN TestReportWriter_Table/no_vulns --- PASS: TestReportWriter_Table (0.01s) --- PASS: TestReportWriter_Table/happy_path_full (0.00s) --- PASS: TestReportWriter_Table/happy_path_light (0.00s) --- PASS: TestReportWriter_Table/no_title_for_vuln_and_missing_primary_link (0.00s) --- PASS: TestReportWriter_Table/long_title_for_vuln (0.00s) --- PASS: TestReportWriter_Table/happy_path_misconfigurations (0.00s) --- PASS: TestReportWriter_Table/happy_path_misconfigurations_with_successes (0.00s) --- PASS: TestReportWriter_Table/no_vulns (0.00s) === RUN TestReportWriter_Template === RUN TestReportWriter_Template/happy_path === RUN TestReportWriter_Template/happy_path#01 === RUN TestReportWriter_Template/happy_path_with/without_period_description_should_return_with_period === RUN TestReportWriter_Template/Calculate_using_sprig === RUN TestReportWriter_Template/happy_path:_env_var_parsing_and_getCurrentTime --- PASS: TestReportWriter_Template (0.00s) --- PASS: TestReportWriter_Template/happy_path (0.00s) --- PASS: TestReportWriter_Template/happy_path#01 (0.00s) --- PASS: TestReportWriter_Template/happy_path_with/without_period_description_should_return_with_period (0.00s) --- PASS: TestReportWriter_Template/Calculate_using_sprig (0.00s) --- PASS: TestReportWriter_Template/happy_path:_env_var_parsing_and_getCurrentTime (0.00s) === RUN TestReportWriter_Template_SARIF --- PASS: TestReportWriter_Template_SARIF (0.00s) === RUN TestResults_Failed === RUN TestResults_Failed/no_vulnerabilities_and_misconfigurations === RUN TestResults_Failed/vulnerabilities_found === RUN TestResults_Failed/failed_misconfigurations === RUN TestResults_Failed/passed_misconfigurations --- PASS: TestResults_Failed (0.00s) --- PASS: TestResults_Failed/no_vulnerabilities_and_misconfigurations (0.00s) --- PASS: TestResults_Failed/vulnerabilities_found (0.00s) --- PASS: TestResults_Failed/failed_misconfigurations (0.00s) --- PASS: TestResults_Failed/passed_misconfigurations (0.00s) PASS coverage: 70.0% of statements ok github.com/aquasecurity/trivy/pkg/report 0.030s coverage: 70.0% of statements === RUN TestClient_FillVulnerabilityInfo === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_vendor_severity,_no_NVD === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_vendor_severity,_yes_NVD === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_severity,_no_vendor_severity,_no_NVD === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability,_yes_vendor_severity,_with_both_NVD_and_CVSS_info === RUN TestClient_FillVulnerabilityInfo/happy_path_light_db,_with_only_OS_vulnerability,_yes_vendor_severity === RUN TestClient_FillVulnerabilityInfo/happy_path_light_db,_with_only_OS_vulnerability,_no_vendor_severity === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_only_library_vulnerability === RUN TestClient_FillVulnerabilityInfo/happy_path,_with_package-specific_severity === RUN TestClient_FillVulnerabilityInfo/GetVulnerability_returns_an_error 2021-12-25T23:21:39.054Z WARN Error while getting vulnerability details: failed to get the vulnerability: failed to marshal JSON: unexpected end of JSON input --- PASS: TestClient_FillVulnerabilityInfo (1.25s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_vendor_severity,_no_NVD (0.22s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_vendor_severity,_yes_NVD (0.17s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability_but_no_severity,_no_vendor_severity,_no_NVD (0.11s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_only_OS_vulnerability,_yes_vendor_severity,_with_both_NVD_and_CVSS_info (0.18s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path_light_db,_with_only_OS_vulnerability,_yes_vendor_severity (0.14s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path_light_db,_with_only_OS_vulnerability,_no_vendor_severity (0.10s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_only_library_vulnerability (0.10s) --- PASS: TestClient_FillVulnerabilityInfo/happy_path,_with_package-specific_severity (0.13s) --- PASS: TestClient_FillVulnerabilityInfo/GetVulnerability_returns_an_error (0.10s) === RUN TestClient_getPrimaryURL === RUN TestClient_getPrimaryURL/CVE-ID === RUN TestClient_getPrimaryURL/RUSTSEC === RUN TestClient_getPrimaryURL/GHSA === RUN TestClient_getPrimaryURL/Debian_temp_vulnerability === RUN TestClient_getPrimaryURL/npm === RUN TestClient_getPrimaryURL/suse --- PASS: TestClient_getPrimaryURL (0.00s) --- PASS: TestClient_getPrimaryURL/CVE-ID (0.00s) --- PASS: TestClient_getPrimaryURL/RUSTSEC (0.00s) --- PASS: TestClient_getPrimaryURL/GHSA (0.00s) --- PASS: TestClient_getPrimaryURL/Debian_temp_vulnerability (0.00s) --- PASS: TestClient_getPrimaryURL/npm (0.00s) --- PASS: TestClient_getPrimaryURL/suse (0.00s) === RUN TestClient_Filter === RUN TestClient_Filter/happy_path === RUN TestClient_Filter/happy_path_with_ignore-unfixed === RUN TestClient_Filter/happy_path_with_ignore-file === RUN TestClient_Filter/happy_path_with_a_policy_file === RUN TestClient_Filter/happy_path_with_duplicates,_one_with_empty_fixed_version --- PASS: TestClient_Filter (0.01s) --- PASS: TestClient_Filter/happy_path (0.00s) --- PASS: TestClient_Filter/happy_path_with_ignore-unfixed (0.00s) --- PASS: TestClient_Filter/happy_path_with_ignore-file (0.00s) --- PASS: TestClient_Filter/happy_path_with_a_policy_file (0.01s) --- PASS: TestClient_Filter/happy_path_with_duplicates,_one_with_empty_fixed_version (0.00s) PASS coverage: 83.3% of statements ok github.com/aquasecurity/trivy/pkg/result 1.268s coverage: 83.3% of statements === RUN TestConvertToRpcPkgs === RUN TestConvertToRpcPkgs/happy_path --- PASS: TestConvertToRpcPkgs (0.00s) --- PASS: TestConvertToRpcPkgs/happy_path (0.00s) === RUN TestConvertFromRpcPkgs === RUN TestConvertFromRpcPkgs/#00 --- PASS: TestConvertFromRpcPkgs (0.00s) --- PASS: TestConvertFromRpcPkgs/#00 (0.00s) === RUN TestConvertFromRpcLibraries === RUN TestConvertFromRpcLibraries/happy_path --- PASS: TestConvertFromRpcLibraries (0.00s) --- PASS: TestConvertFromRpcLibraries/happy_path (0.00s) === RUN TestConvertToRpcLibraries === RUN TestConvertToRpcLibraries/happy_path --- PASS: TestConvertToRpcLibraries (0.00s) --- PASS: TestConvertToRpcLibraries/happy_path (0.00s) === RUN TestConvertToRpcVulns === RUN TestConvertToRpcVulns/happy_path === RUN TestConvertToRpcVulns/invalid_severity 2021-12-25T23:21:35.736Z WARN unknown severity: INVALID --- PASS: TestConvertToRpcVulns (0.00s) --- PASS: TestConvertToRpcVulns/happy_path (0.00s) --- PASS: TestConvertToRpcVulns/invalid_severity (0.00s) === RUN TestConvertFromRPCResults === RUN TestConvertFromRPCResults/happy_path === RUN TestConvertFromRPCResults/happy_path_-_with_nil_dates --- PASS: TestConvertFromRPCResults (0.00s) --- PASS: TestConvertFromRPCResults/happy_path (0.00s) --- PASS: TestConvertFromRPCResults/happy_path_-_with_nil_dates (0.00s) PASS coverage: 42.8% of statements ok github.com/aquasecurity/trivy/pkg/rpc 0.383s coverage: 42.8% of statements === RUN TestScanner_Scan === RUN TestScanner_Scan/happy_path === RUN TestScanner_Scan/sad_path:_Scan_returns_an_error --- PASS: TestScanner_Scan (0.00s) --- PASS: TestScanner_Scan/happy_path (0.00s) --- PASS: TestScanner_Scan/sad_path:_Scan_returns_an_error (0.00s) === RUN TestWithCustomHeaders 2021-12-25T23:21:36.203Z WARN twirp error setting headers: provided header cannot set Content-Type --- PASS: TestWithCustomHeaders (0.00s) PASS coverage: 93.8% of statements ok github.com/aquasecurity/trivy/pkg/rpc/client 0.007s coverage: 93.8% of statements === RUN Test_dbWorker_update === RUN Test_dbWorker_update/happy_path 2021-12-25T23:21:40.342Z INFO Updating DB... 2021-12-25T23:21:40.342Z INFO Suspending all requests during DB update 2021-12-25T23:21:40.343Z INFO Waiting for all requests to be processed before DB update... 2021-12-25T23:21:40.343Z INFO Reopening DB... listen_test.go:156: PASS: NeedsUpdate(string,bool,bool) listen_test.go:156: PASS: UpdateMetadata(string) listen_test.go:156: PASS: Download(string,string,bool) === RUN Test_dbWorker_update/not_update === RUN Test_dbWorker_update/NeedsUpdate_returns_an_error === RUN Test_dbWorker_update/Download_returns_an_error 2021-12-25T23:21:40.543Z INFO Updating DB... --- PASS: Test_dbWorker_update (0.24s) --- PASS: Test_dbWorker_update/happy_path (0.04s) --- PASS: Test_dbWorker_update/not_update (0.05s) --- PASS: Test_dbWorker_update/NeedsUpdate_returns_an_error (0.09s) --- PASS: Test_dbWorker_update/Download_returns_an_error (0.06s) === RUN Test_newServeMux === RUN Test_newServeMux/health_check === RUN Test_newServeMux/cache_endpoint === RUN Test_newServeMux/with_token === RUN Test_newServeMux/sad_path:_no_handler === RUN Test_newServeMux/sad_path:_invalid_token --- PASS: Test_newServeMux (0.41s) --- PASS: Test_newServeMux/health_check (0.07s) --- PASS: Test_newServeMux/cache_endpoint (0.08s) --- PASS: Test_newServeMux/with_token (0.08s) --- PASS: Test_newServeMux/sad_path:_no_handler (0.08s) --- PASS: Test_newServeMux/sad_path:_invalid_token (0.10s) === RUN TestScanServer_Scan === RUN TestScanServer_Scan/happy_path === RUN TestScanServer_Scan/sad_path:_Scan_returns_an_error --- PASS: TestScanServer_Scan (0.11s) --- PASS: TestScanServer_Scan/happy_path (0.08s) --- PASS: TestScanServer_Scan/sad_path:_Scan_returns_an_error (0.03s) === RUN TestCacheServer_PutArtifact === RUN TestCacheServer_PutArtifact/happy_path === RUN TestCacheServer_PutArtifact/sad_path === RUN TestCacheServer_PutArtifact/sad_path:_empty_image_info --- PASS: TestCacheServer_PutArtifact (0.00s) --- PASS: TestCacheServer_PutArtifact/happy_path (0.00s) --- PASS: TestCacheServer_PutArtifact/sad_path (0.00s) --- PASS: TestCacheServer_PutArtifact/sad_path:_empty_image_info (0.00s) === RUN TestCacheServer_PutBlob === RUN TestCacheServer_PutBlob/happy_path === RUN TestCacheServer_PutBlob/sad_path === RUN TestCacheServer_PutBlob/sad_path:_empty_layer_info --- PASS: TestCacheServer_PutBlob (0.00s) --- PASS: TestCacheServer_PutBlob/happy_path (0.00s) --- PASS: TestCacheServer_PutBlob/sad_path (0.00s) --- PASS: TestCacheServer_PutBlob/sad_path:_empty_layer_info (0.00s) === RUN TestCacheServer_MissingBlobs === RUN TestCacheServer_MissingBlobs/happy_path server_test.go:562: PASS: MissingBlobs(string,[]string) --- PASS: TestCacheServer_MissingBlobs (0.00s) --- PASS: TestCacheServer_MissingBlobs/happy_path (0.00s) PASS coverage: 73.1% of statements ok github.com/aquasecurity/trivy/pkg/rpc/server 0.929s coverage: 73.1% of statements === RUN TestScanner_ScanArtifact === RUN TestScanner_ScanArtifact/happy_path 2021-12-25T23:21:38.281Z WARN This OS version is no longer supported by the distribution: alpine 3.10 2021-12-25T23:21:38.281Z WARN The vulnerability detection may be insufficient because security updates are not provided === RUN TestScanner_ScanArtifact/sad_path:_AnalyzerAnalyze_returns_an_error === RUN TestScanner_ScanArtifact/sad_path:_Scan_returns_an_error --- PASS: TestScanner_ScanArtifact (0.00s) --- PASS: TestScanner_ScanArtifact/happy_path (0.00s) --- PASS: TestScanner_ScanArtifact/sad_path:_AnalyzerAnalyze_returns_an_error (0.00s) --- PASS: TestScanner_ScanArtifact/sad_path:_Scan_returns_an_error (0.00s) PASS coverage: 66.0% of statements ok github.com/aquasecurity/trivy/pkg/scanner 0.250s coverage: 66.0% of statements === RUN TestScanner_Scan === RUN TestScanner_Scan/happy_path 2021-12-25T23:21:38.262Z INFO Detected OS: alpine 2021-12-25T23:21:38.262Z INFO Number of language-specific files: 1 2021-12-25T23:21:38.262Z INFO Detecting bundler vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) scan_test.go:942: PASS: Detect(string,string,string,time.Time,[]types.Package) === RUN TestScanner_Scan/happy_path_with_list_all_packages 2021-12-25T23:21:38.448Z INFO Detected OS: alpine 2021-12-25T23:21:38.448Z INFO Number of language-specific files: 1 2021-12-25T23:21:38.448Z INFO Detecting bundler vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) scan_test.go:942: PASS: Detect(string,string,string,time.Time,[]types.Package) === RUN TestScanner_Scan/happy_path_with_empty_os 2021-12-25T23:21:38.624Z INFO Detected OS: 2021-12-25T23:21:38.624Z INFO Number of language-specific files: 1 2021-12-25T23:21:38.624Z INFO Detecting bundler vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) === RUN TestScanner_Scan/happy_path_with_no_package 2021-12-25T23:21:38.723Z WARN No OS package is detected. Make sure you haven't deleted any files that contain information about the installed packages. 2021-12-25T23:21:38.723Z WARN e.g. files under "/lib/apk/db/", "/var/lib/dpkg/" and "/var/lib/rpm" 2021-12-25T23:21:38.723Z INFO Detected OS: alpine 2021-12-25T23:21:38.724Z INFO Number of language-specific files: 1 2021-12-25T23:21:38.724Z INFO Detecting bundler vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) scan_test.go:942: PASS: Detect(string,string,string,time.Time,[]types.Package) === RUN TestScanner_Scan/happy_path_with_unsupported_os 2021-12-25T23:21:38.814Z INFO Detected OS: fedora 2021-12-25T23:21:38.814Z INFO Number of language-specific files: 1 2021-12-25T23:21:38.814Z INFO Detecting bundler vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) scan_test.go:942: PASS: Detect(string,string,string,time.Time,[]types.Package) === RUN TestScanner_Scan/happy_path_with_a_scratch_image 2021-12-25T23:21:38.924Z INFO Number of language-specific files: 0 scan_test.go:941: PASS: ApplyLayers(string,[]string) === RUN TestScanner_Scan/happy_path_with_only_library_detection 2021-12-25T23:21:39.038Z INFO Number of language-specific files: 2 2021-12-25T23:21:39.038Z INFO Detecting bundler vulnerabilities... 2021-12-25T23:21:39.038Z INFO Detecting composer vulnerabilities... scan_test.go:941: PASS: ApplyLayers(string,[]string) === RUN TestScanner_Scan/happy_path_with_misconfigurations 2021-12-25T23:21:39.122Z INFO Detected config files: 2 2021-12-25T23:21:39.122Z WARN severity must be [UNKNOWN LOW MEDIUM HIGH CRITICAL], but DUMMY scan_test.go:941: PASS: ApplyLayers(string,[]string) === RUN TestScanner_Scan/sad_path:_ApplyLayers_returns_an_error === RUN TestScanner_Scan/sad_path:_ospkgDetector.Detect_returns_an_error 2021-12-25T23:21:39.373Z INFO Detected OS: alpine === RUN TestScanner_Scan/sad_path:_library.Detect_returns_an_error 2021-12-25T23:21:39.459Z INFO Number of language-specific files: 1 2021-12-25T23:21:39.459Z INFO Detecting bundler vulnerabilities... --- PASS: TestScanner_Scan (1.36s) --- PASS: TestScanner_Scan/happy_path (0.18s) --- PASS: TestScanner_Scan/happy_path_with_list_all_packages (0.18s) --- PASS: TestScanner_Scan/happy_path_with_empty_os (0.17s) --- PASS: TestScanner_Scan/happy_path_with_no_package (0.10s) --- PASS: TestScanner_Scan/happy_path_with_unsupported_os (0.09s) --- PASS: TestScanner_Scan/happy_path_with_a_scratch_image (0.11s) --- PASS: TestScanner_Scan/happy_path_with_only_library_detection (0.11s) --- PASS: TestScanner_Scan/happy_path_with_misconfigurations (0.08s) --- PASS: TestScanner_Scan/sad_path:_ApplyLayers_returns_an_error (0.08s) --- PASS: TestScanner_Scan/sad_path:_ospkgDetector.Detect_returns_an_error (0.17s) --- PASS: TestScanner_Scan/sad_path:_library.Detect_returns_an_error (0.09s) PASS coverage: 84.3% of statements ok github.com/aquasecurity/trivy/pkg/scanner/local 1.383s coverage: 84.3% of statements === RUN TestFormatSrcVersion === RUN TestFormatSrcVersion/happy_path === RUN TestFormatSrcVersion/with_epoch --- PASS: TestFormatSrcVersion (0.00s) --- PASS: TestFormatSrcVersion/happy_path (0.00s) --- PASS: TestFormatSrcVersion/with_epoch (0.00s) === RUN TestFormatVersion === RUN TestFormatVersion/happy_path === RUN TestFormatVersion/with_epoch --- PASS: TestFormatVersion (0.00s) --- PASS: TestFormatVersion/happy_path (0.00s) --- PASS: TestFormatVersion/with_epoch (0.00s) PASS coverage: 100.0% of statements ok github.com/aquasecurity/trivy/pkg/scanner/utils 0.007s coverage: 100.0% of statements ? github.com/aquasecurity/trivy/pkg/types [no test files] === RUN TestCopyFile === RUN TestCopyFile/happy_path --- PASS: TestCopyFile (0.02s) --- PASS: TestCopyFile/happy_path (0.02s) PASS coverage: 44.0% of statements ok github.com/aquasecurity/trivy/pkg/utils 0.030s coverage: 44.0% of statements ? github.com/aquasecurity/trivy/rpc/cache [no test files] ? github.com/aquasecurity/trivy/rpc/common [no test files] ? github.com/aquasecurity/trivy/rpc/scanner [no test files] >>> trivy: Entering fakeroot... >>> trivy*: Running postcheck for trivy >>> trivy*: Preparing package trivy... >>> trivy*: Stripping binaries >>> trivy*: Scanning shared objects >>> trivy*: Tracing dependencies... so:libc.musl-ppc64le.so.1 >>> trivy*: Package size: 50.5 MB >>> trivy*: Compressing data... >>> trivy*: Create checksum... >>> trivy*: Create trivy-0.22.0-r0.apk >>> trivy: Build complete at Sat, 25 Dec 2021 23:21:42 +0000 elapsed time 0h 0m 54s >>> trivy: Cleaning up srcdir >>> trivy: Cleaning up pkgdir >>> trivy: Uninstalling dependencies... (1/16) Purging .makedepends-trivy (20211225.232049) (2/16) Purging btrfs-progs-dev (5.15.1-r1) (3/16) Purging btrfs-progs-libs (5.15.1-r1) (4/16) Purging go (1.17.4-r0) (5/16) Purging lvm2-dev (2.02.187-r2) (6/16) Purging linux-headers (5.10.41-r0) (7/16) Purging lvm2-libs (2.02.187-r2) (8/16) Purging device-mapper-event-libs (2.02.187-r2) (9/16) Purging device-mapper-libs (2.02.187-r2) (10/16) Purging libaio (0.3.112-r1) (11/16) Purging util-linux-dev (2.37.2-r6) (12/16) Purging libfdisk (2.37.2-r6) (13/16) Purging libmount (2.37.2-r6) (14/16) Purging libsmartcols (2.37.2-r6) (15/16) Purging libuuid (2.37.2-r6) (16/16) Purging libblkid (2.37.2-r6) Executing busybox-1.34.1-r5.trigger OK: 230 MiB in 89 packages >>> trivy: Updating the testing/ppc64le repository index... >>> trivy: Signing the index...