Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Horusec analysis report an "error" on pipelines #1012

Closed
adrianovieira opened this issue Mar 4, 2022 · 2 comments
Closed

Horusec analysis report an "error" on pipelines #1012

adrianovieira opened this issue Mar 4, 2022 · 2 comments

Comments

@adrianovieira
Copy link

What happened:

Horusec reports "error" in pipeline analysis, but we didn't found one.

What you expected to happen:

Horusec report "error" only if it exists.

How to reproduce it (as minimally and precisely as possible):
I'm not sure how to reproduce it, but you can check it on https://github.com/ZupIT/beagle-docs/runs/5422976461 (or see Logging below)

Anything else we need to know?:
Please, check out the logging on https://github.com/ZupIT/beagle-docs/runs/5422976461 (or see Logging below)

Environment:

  • Horusec version (use horusec version): v2.7.1
  • Operating System: github action, Ubuntu 20.04 LTS
  • Network plugin / Tool and version (if this is a network-related / tool bug):
  • Others:

Logging

==================================================================================

HORUSEC ENDED THE ANALYSIS WITH STATUS OF "error" AND WITH THE FOLLOWING RESULTS:

==================================================================================

Analysis StartedAt: [202](https://github.com/ZupIT/beagle-docs/runs/5422976461?check_suite_focus=true#step:4:202)2-03-04 13:38:36
Analysis FinishedAt: 2022-03-04 13:38:52

==================================================================================


time="2022-03-04T13:38:52Z" level=warning msg="{HORUSEC_CLI} No authorization token was found, your code it is not going to be sent to horusec. Please enter a token with the -a flag to configure and save your analysis"

time="2022-03-04T13:38:52Z" level=warning msg="YOUR ANALYSIS HAD FINISHED WITHOUT ANY VULNERABILITY!"

time="2022-03-04T13:38:52Z" level=warning msg="{HORUSEC_CLI} Horusec not show info vulnerabilities in this analysis, to see info vulnerabilities add option \"--information-severity=true\". For more details use (horusec start --help) command."

==================================================================================

time="2022-03-04T13:38:52Z" level=warning msg="{HORUSEC_CLI} During execution we found some problems:"

time="2022-03-04T13:38:52Z" level=warning msg="Error while running tool NpmAudit: {HORUSEC_CLI} Error It looks like your project doesn't have a package-lock.json file. If you use NPM to handle your dependencies, it would be a good idea to commit it so horusec can check for vulnerabilities"
time="2022-03-04T13:38:52Z" level=warning msg=" Error while running tool YarnAudit: {HORUSEC_CLI} Error It looks like your project doesn't have a yarn.lock file. If you use Yarn to handle your dependencies, it would be a good idea to commit it so horusec can check for vulnerabilities"
@nathanmartinszup
Copy link
Contributor

Hi, @adrianovieira.

The pull request #1013 fixes the problem.

Thanks for the feedback!!

@nathanmartinszup
Copy link
Contributor

nathanmartinszup commented Mar 4, 2022
edited
Loading

Pull request merged, it will be available on the next release, watch out for the updates.

I will be closing this issue. Thank you very much for the contribution!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@adrianovieira @nathanmartinszup