2024-11-04T13:09:14Z INFO [vulndb] Need to update DB 2024-11-04T13:09:14Z INFO [vulndb] Downloading vulnerability DB... 2024-11-04T13:09:14Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2" 2024-11-04T13:09:14Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="OCI repository error: 1 error occurred:\n\t* GET https://ghcr.io/v2/aquasecurity/trivy-db/manifests/2: TOOMANYREQUESTS: retry-after: 170.141µs, allowed: 44000/minute\n\n" 2024-11-04T13:09:14Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source: 1 error occurred: * OCI repository error: 1 error occurred: * GET https://ghcr.io/v2/aquasecurity/trivy-db/manifests/2: TOOMANYREQUESTS: retry-after: 170.141µs, allowed: 44000/minute

2024-11-04T13:09:14Z INFO [vulndb] Need to update DB 2024-11-04T13:09:14Z INFO [vulndb] Downloading vulnerability DB... 2024-11-04T13:09:14Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2" 2024-11-04T13:09:14Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:94ec5a973ffcefbede5fe46a039c67d3d17506cc66b804096953e68928a76046: TOOMANYREQUESTS: retry-after: 51.498µs, allowed: 44000/minute" 2024-11-04T13:09:14Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source: 1 error occurred: * oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:94ec5a973ffcefbede5fe46a039c67d3d17506cc66b804096953e68928a76046: TOOMANYREQUESTS: retry-after: 51.498µs, allowed: 44000/minute

Container image is unhealthy. Following your desired severity threshold (HIGH), the job has been marked as failed.

2024-11-04T13:09:17Z INFO [vulndb] Need to update DB 2024-11-04T13:09:17Z INFO [vulndb] Downloading vulnerability DB... 2024-11-04T13:09:17Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2" 2024-11-04T13:09:17Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:94ec5a973ffcefbede5fe46a039c67d3d17506cc66b804096953e68928a76046: TOOMANYREQUESTS: retry-after: 773.28µs, allowed: 44000/minute" 2024-11-04T13:09:17Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source: 1 error occurred: * oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:94ec5a973ffcefbede5fe46a039c67d3d17506cc66b804096953e68928a76046: TOOMANYREQUESTS: retry-after: 773.28µs, allowed: 44000/minute

2024-11-04T13:09:20Z INFO [vuln] Vulnerability scanning is enabled 2024-11-04T13:09:20Z INFO [secret] Secret scanning is enabled 2024-11-04T13:09:20Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning 2024-11-04T13:09:20Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection 2024-11-04T13:09:21Z FATAL Fatal error image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: unable to find the specified image "public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0" in ["docker" "containerd" "podman" "remote"]: 4 errors occurred: * docker error: unable to inspect the image (public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0): Error response from daemon: No such image: public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0 * containerd error: failed to initialize a containerd client: failed to dial "/run/containerd/containerd.sock": connection error: desc = "transport: error while dialing: dial unix /run/containerd/containerd.sock: connect: permission denied" * podman error: unable to inspect the image (public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0): failed to find image public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0: public.ecr.aws/cloudwatch-agent/cloudwatch-agent-operator:1.8.0: No such image * remote error: GET https://public.ecr.aws/v2/cloudwatch-agent/cloudwatch-agent-operator/manifests/sha256:f03975fce33b3acaf9baeea5ec1d9d9e95aeb37b0acf186341503ee68addd8f4: TOOMANYREQUESTS: Rate exceeded

Container image is unhealthy. Following your desired severity threshold (HIGH), the job has been marked as failed.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

Dockerfile not provided. Skipping sarif scan result.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

Dockerfile not provided. Skipping sarif scan result.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

Dockerfile not provided. Skipping sarif scan result.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/

Dockerfile not provided. Skipping sarif scan result.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, aws-actions/configure-aws-credentials@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/