Running with gitlab-runner 15.5.0 (0d4137b8)  on osm3 6MUAF4hG section_start:1682589816:resolve_secrets Resolving secrets section_end:1682589816:resolve_secrets section_start:1682589816:prepare_executor Preparing the "docker" executor Using Docker executor with image registry.gitlab.com/gitlab-org/security-products/analyzers/bandit:2 ... Pulling docker image registry.gitlab.com/gitlab-org/security-products/analyzers/bandit:2 ... Using docker image sha256:e6c6b290a8d8b0e2d37dc2e79a861f06dc820e4a8d2f37068636241c2e980d3c for registry.gitlab.com/gitlab-org/security-products/analyzers/bandit:2 with digest registry.gitlab.com/gitlab-org/security-products/analyzers/bandit@sha256:e197083f829519f6ef68369d98eb839933ab2c8d9419a56f6b4e301e368f4b86 ... section_end:1682589821:prepare_executor section_start:1682589821:prepare_script Preparing environment Running on runner-6muaf4hg-project-61-concurrent-2 via osm3... section_end:1682589822:prepare_script section_start:1682589822:get_sources Getting source from Git repository Fetching changes with git depth set to 50... Reinitialized existing Git repository in /builds/gitlab/osm/common/.git/ Checking out 09496abf as master... Removing gl-sast-report.json Skipping Git submodules setup section_end:1682589826:get_sources section_start:1682589826:step_script Executing "step_script" stage of the job script Using docker image sha256:e6c6b290a8d8b0e2d37dc2e79a861f06dc820e4a8d2f37068636241c2e980d3c for registry.gitlab.com/gitlab-org/security-products/analyzers/bandit:2 with digest registry.gitlab.com/gitlab-org/security-products/analyzers/bandit@sha256:e197083f829519f6ef68369d98eb839933ab2c8d9419a56f6b4e301e368f4b86 ... $ /analyzer run [INFO] [Bandit] [2023-04-27T10:03:47Z] ▶ GitLab Bandit analyzer v2.12.6 [INFO] [Bandit] [2023-04-27T10:03:47Z] ▶ Detecting project [INFO] [Bandit] [2023-04-27T10:03:47Z] ▶ Found relevant files in project, analyzing entire repository [INFO] [Bandit] [2023-04-27T10:03:47Z] ▶ Running analyzer [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ /usr/local/bin/bandit -a vuln -f json --exclude -o /tmp/bandit.json -r . [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None [json] INFO JSON output written to file: /tmp/bandit.json [INFO] [Bandit] [2023-04-27T10:03:49Z] ▶ Creating report [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ Excluded 311 findings matching path exclusions. First 10: [osm_common/tests/test_dbbase.py:15f638d22b73a1f0cbc806aee9a7892719e70df69c0730bb821525a41500fbae:B101 osm_common/tests/test_dbbase.py:8a5fb7b2565d442032e92d1a7ca4a5f51885fa02daccdf8fc68d72fdb3df66e5:B101 osm_common/tests/test_dbbase.py:60e2b1b02178864bed32e852619e86afa6b574154ff4df06f34c862c642b564b:B101 osm_common/tests/test_dbbase.py:f0d2a2493e15cc6720a96db25719f009c50420749ea0528b3d8fbfbf53ad3366:B101 osm_common/tests/test_dbbase.py:290810a906336468970c05d979a1dcc3529b06dc03048c789afd4821b222f93f:B101 osm_common/tests/test_dbbase.py:9506081b9231b9332f0486c8bb7334bf75e2cb0cb815112451dc5218244f3632:B101 osm_common/tests/test_dbbase.py:290810a906336468970c05d979a1dcc3529b06dc03048c789afd4821b222f93f:B101 osm_common/tests/test_dbbase.py:1686f8ab4de58df4f52f46fbefeb2b25a29725b0ce9d16ea9f5a94ce866ed0fd:B101 osm_common/tests/test_dbbase.py:290810a906336468970c05d979a1dcc3529b06dc03048c789afd4821b222f93f:B101 osm_common/tests/test_dbbase.py:e7aaf9fe2d595e080bafda30a4b8aca127273f81951f5ec7082b80b3a03618e0:B101] [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ /builds/gitlab/osm/common/.gitlab/sast-ruleset.toml not found, ruleset support will be disabled. [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ Applying report overrides [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ /builds/gitlab/osm/common/.gitlab/sast-ruleset.toml not found, ruleset support will be disabled. [DEBU] [Bandit] [2023-04-27T10:03:49Z] ▶ Optimizing JSON Output section_end:1682589831:step_script section_start:1682589831:upload_artifacts_on_success Uploading artifacts for successful job Uploading artifacts... gl-sast-report.json: found 1 matching files and directories Uploading artifacts as "sast" to coordinator... 201 Created id=61730 responseStatus=201 Created token=zAT_k9xY section_end:1682589832:upload_artifacts_on_success section_start:1682589832:cleanup_file_variables Cleaning up project directory and file based variables section_end:1682589833:cleanup_file_variables Job succeeded