synchronizer_race_condition

validate_expected_backend_results, timeout: 2 minutes, error: object of type 'NoneType' has no len(). kwargs: '{'cluster': 'kind-systests-478eea3e-eb45-40fa-8862-f4f0ce5175d0', 'namespace': 'systest-ns-tsfg', 'expected_workloads_list': [{'apiVersion': 'apps/v1', 'kind': 'Deployment', 'metadata': {'name': 'busybox-deployment'}, 'spec': {'replicas': 2, 'selector': {'matchLabels': {'app': 'busybox'}}, 'template': {'metadata': {'labels': {'app': 'busybox'}}, 'spec': {'containers': [{'name': 'busybox', 'image': 'busybox', 'command': ['tail', '-f', '/dev/null'], 'env': [{'name': 'ARMO_TEST_NAME', 'value': 'network_policy_known_servers'}, {'name': 'CAA_ENABLE_CRASH_REPORTER', 'value': '1'}]}]}}}}], 'expected_network_neighborhood_list': [{'kind': 'NetworkNeighborhood', 'apiVersion': 'spdx.softwarecomposition.kubescape.io/v1beta1', 'metadata': {'name': 'deployment-busybox-deployment', 'namespace': 'systest-ns-myoi', 'uid': '3ca77764-ca27-492f-b752-ef4560887a28', 'resourceVersion': '1', 'creationTimestamp': '2024-07-03T15:37:19Z', 'labels': {'kubescape.io/workload-api-group': 'apps', 'kubescape.io/workload-api-version': 'v1', 'kubescape.io/workload-kind': 'Deployment', 'kubescape.io/workload-name': 'busybox-deployment'}, 'annotations': {'kubescape.io/completion': 'complete', 'kubescape.io/status': 'ready'}}, 'spec': {'containers': [{'name': 'busybox', 'egress': [{'identifier': '238053dc2e1cbe8820de562678e8cde84593e95d41e6f1a58bb987741f9e30a3', 'type': 'external', 'dns': '', 'ports': [{'name': 'TCP-80', 'protocol': 'TCP', 'port': 80}], 'podSelector': None, 'namespaceSelector': None, 'ipAddress': '185.199.108.153'}, {'identifier': 'e5e8ca3d76f701a19b7478fdc1c8c24ccc6cef9902b52c8c7e015439e2a1ddf3', 'type': 'internal', 'dns': '', 'ports': [{'name': 'UDP-53', 'protocol': 'UDP', 'port': 53}], 'podSelector': {'matchLabels': {'k8s-app': 'kube-dns'}}, 'namespaceSelector': {'matchLabels': {'kubernetes.io/metadata.name': 'kube-system'}}, 'ipAddress': ''}, {'identifier': '35d62fc884ab3d8896d6be5bad0176619aa60756d33dfa47c9de024902a720c5', 'type': 'external', 'dns': 'www.google.com.', 'dnsNames': ['www.google.com.'], 'ports': [{'name': 'TCP-80', 'protocol': 'TCP', 'port': 80}], 'podSelector': None, 'namespaceSelector': None, 'ipAddress': '142.250.179.68'}], 'ingress': []}], 'matchLabels': {'app': 'busybox'}}}], 'expected_generated_network_policy_list': [{'apiVersion': 'spdx.softwarecomposition.kubescape.io/v1beta1', 'kind': 'GeneratedNetworkPolicy', 'metadata': {'creationTimestamp': '2024-03-07T13:03:29Z', 'labels': {'kubescape.io/workload-api-group': 'apps', 'kubescape.io/workload-api-version': 'v1', 'kubescape.io/workload-kind': 'Deployment', 'kubescape.io/workload-name': 'busybox-deployment'}, 'name': 'deployment-busybox-deployment', 'namespace': 'systest-ns-sjcr'}, 'policyRef': [{'dns': 'www.google.com.', 'ipBlock': '64.233.181.104/32', 'name': '', 'originalIP': '64.233.181.104', 'server': ''}, {'dns': '', 'ipBlock': '185.199.108.153/24', 'name': 'github-workflows', 'originalIP': '185.199.108.153', 'server': 'github.com'}], 'spec': {'apiVersion': 'networking.k8s.io/v1', 'kind': 'NetworkPolicy', 'metadata': {'annotations': {'generated-by': 'kubescape'}, 'creationTimestamp': None, 'labels': {'kubescape.io/workload-api-group': 'apps', 'kubescape.io/workload-api-version': 'v1', 'kubescape.io/workload-kind': 'Deployment', 'kubescape.io/workload-name': 'busybox-deployment'}, 'name': 'deployment-busybox-deployment', 'namespace': 'systest-ns-sjcr'}, 'spec': {'egress': [{'ports': [{'port': 80, 'protocol': 'TCP'}], 'to': [{'ipBlock': {'cidr': '185.199.108.153/24'}}, {'ipBlock': {'cidr': '64.233.181.104/32'}}]}, {'ports': [{'port': 53, 'protocol': 'UDP'}], 'to': [{'namespaceSelector': {'matchLabels': {'kubernetes.io/metadata.name': 'kube-system'}}, 'podSelector': {'matchLabels': {'k8s-app': 'kube-dns'}}}]}], 'ingress': [], 'podSelector': {'matchLabels': {'app': 'busybox'}}, 'policyTypes': ['Ingress', 'Egress']}}}]}'

synchronizer

Failed to get the report-guid for the last scan.

Failed to get the report-guid for the last scan.

Failed to get the report-guid for the last scan.

Failed to get the report-guid for the last scan.

in validate_network_policy_entry: verified_entries is not equal, actual: 0, expected: 1

verify_incident_completed, timeout: 5 minutes, error: Not completed incident {"guid": "fd5bdb66-8e64-4134-81f9-7ec669fa3cae", "name": "Unexpected process launched", "attributes": {"incidentStatus": "incomplete"}, "updatedTime": "2024-09-03T09:27:32Z", "spiffe": "wlid://cluster-kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e/namespace-systest-ns-eurz/deployment-redis-sleep", "resourceID": "", "designators": {"designatorType": "Attributes", "wlid": "wlid://cluster-kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e/namespace-systest-ns-eurz/deployment-redis-sleep", "attributes": {"cluster": "kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e", "clusterShortName": "kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e", "containerName": "redis", "customerGUID": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833", "kind": "Deployment", "name": "redis-sleep", "namespace": "systest-ns-eurz", "nodeName": "systests-f0553324-3fcd-4208-9d56-97a600b8524e-control-plane", "originalCacheEntry": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833/kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e/systests-f0553324-3fcd-4208-9d56-97a600b8524e-control-plane/wlid://cluster-kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e/namespace-systest-ns-eurz/deployment-redis-sleep/redis/fd5bdb66-8e64-4134-81f9-7ec669fa3cae", "podName": "redis-sleep-7bd7d4785f-6nr6t"}}, "arguments": {"retval": 0}, "infectedPID": 12204, "fixSuggestions": "If this is a valid behavior, please add the exec call \"/bin/ls\" to the whitelist in the application profile for the Pod \"redis-sleep-7bd7d4785f-6nr6t\". You can use the following command: kubectl patch applicationprofile replicaset-redis-sleep-7bd7d4785f --namespace systest-ns-eurz --type merge -p '{\"spec\": {\"containers\": [{\"name\": \"redis\", \"execs\": [{\"path\": \"/bin/ls\", \"args\": [\"/bin/ls\",\"-l\",\"/tmp\"]}]}]}}'", "severity": 5, "timestamp": "2024-09-03T09:27:04.071Z", "nanoseconds": 1725355624071079961, "ruleDescription": "Unexpected process launched: /bin/ls in: redis", "kind": {"Group": "", "Version": "", "Kind": ""}, "resource": {"Group": "", "Version": "", "Resource": ""}, "clusterName": "kind-systests-f0553324-3fcd-4208-9d56-97a600b8524e", "containerName": "redis", "hostNetwork": false, "image": "docker.io/library/redis@sha256:92f3e116c1e719acf78004dd62992c3ad56f68f810c93a8db3fe2351bb9722c2", "imageDigest": "sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902", "namespace": "systest-ns-eurz", "nodeName": "systests-f0553324-3fcd-4208-9d56-97a600b8524e-control-plane", "containerID": "2f9f99562734b55ecab6779269f97ad0766de28eed859f34b513a8931f8882cf", "podName": "redis-sleep-7bd7d4785f-6nr6t", "podNamespace": "systest-ns-eurz", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-eurz", "workloadKind": "Deployment", "alertType": 0, "ruleID": "R0001", "hostName": "", "message": "Unexpected process launched: /bin/ls in: redis", "incidentCategory": "Anomaly", "incidentTypeID": "I013", "policiesApplied": [{"guid": "8ac868dd-5f24-49ef-be31-ec543f7477d6", "name": "Malware-new-systest-kind-e79839a6-7220-4714-b8f5-c4e5386bef55", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "9a82a6a1-a8ab-4382-bdb4-0ba8b48ec19b", "name": "Malware-new-systest-kind-eb731017-244a-4797-ba05-b12240b6761f", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "17794a36-9303-4692-9d6c-8ef419ae0d43", "name": "Anomaly", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}], "creationTimestamp": "2024-09-03T09:27:32.459Z", "description": "A process was launched that is not expected to run in the environment.", "incidentSeverity": "Medium", "isDismissed": false, "markedAsFalsePositive": false, "processTree": {"processTree": {"pid": 12204, "cmdline": "/bin/ls -l /tmp", "comm": "ls", "ppid": 12195, "pcomm": "runc", "hardlink": "/bin/busybox", "uid": 0, "gid": 0, "upperLayer": false, "cwd": "/data", "path": "/bin/ls"}, "uniqueID": 0, "containerID": "2f9f99562734b55ecab6779269f97ad0766de28eed859f34b513a8931f8882cf"}}. kwargs: '{'incident_id': 'fd5bdb66-8e64-4134-81f9-7ec669fa3cae'}'

Failed to get the report-guid for the last scan.

Failed to get the report-guid for the last scan.

check_process_graph, timeout: 0 minutes, error: Failed to get process graph node 2, nodeMetadata, {'image': 'sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902', 'workloadKind': 'Deployment', 'workloadName': 'redis-sleep', 'workloadNamespace': 'systest-ns-l0cv'}. {"graphNodes": [{"graphNodeType": "Node", "graphNodeID": "0e4e82a5-def9-4173-9a21-f0b72d039859-Node-systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane", "graphNodeLabel": "systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane", "hasIncident": false, "graphNodeBadge": 0, "nodeMetadata": {}}, {"graphNodeType": "Pod", "graphNodeID": "0e4e82a5-def9-4173-9a21-f0b72d039859-Pod-redis-sleep-7bd7d4785f-74fvz", "graphNodeLabel": "redis-sleep-7bd7d4785f-74fvz", "hasIncident": false, "graphNodeBadge": 0, "nodeMetadata": {"workloadKind": "Deployment", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-l0cv"}}, {"graphNodeType": "Container", "graphNodeID": "0e4e82a5-def9-4173-9a21-f0b72d039859-Container-redis", "graphNodeLabel": "redis", "hasIncident": false, "graphNodeBadge": 0, "nodeMetadata": {"image": "sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902", "workloadKind": "Deployment", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-l0cv"}}, {"graphNodeType": "Process", "graphNodeID": "0e4e82a5-def9-4173-9a21-f0b72d039859-Process-ls:12207", "graphNodeLabel": "ls:12207", "hasIncident": true, "graphNodeBadge": 0, "nodeMetadata": {"processID": 12207, "processName": "ls"}}], "graphEdges": [{"from": "0e4e82a5-def9-4173-9a21-f0b72d039859-Node-systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane", "to": "0e4e82a5-def9-4173-9a21-f0b72d039859-Pod-redis-sleep-7bd7d4785f-74fvz", "edgeType": "directed"}, {"from": "0e4e82a5-def9-4173-9a21-f0b72d039859-Pod-redis-sleep-7bd7d4785f-74fvz", "to": "0e4e82a5-def9-4173-9a21-f0b72d039859-Container-redis", "edgeType": "directed"}, {"from": "0e4e82a5-def9-4173-9a21-f0b72d039859-Container-redis", "to": "0e4e82a5-def9-4173-9a21-f0b72d039859-Process-ls:12207", "edgeType": "directed"}]}. kwargs: '{'incident': {'guid': '0e4e82a5-def9-4173-9a21-f0b72d039859', 'name': 'Unexpected process launched', 'attributes': {'incidentStatus': 'completed'}, 'updatedTime': '2024-09-03T09:45:22Z', 'spiffe': 'wlid://cluster-kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9/namespace-systest-ns-l0cv/deployment-redis-sleep', 'resourceID': '', 'designators': {'designatorType': 'Attributes', 'wlid': 'wlid://cluster-kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9/namespace-systest-ns-l0cv/deployment-redis-sleep', 'attributes': {'cluster': 'kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9', 'clusterShortName': 'kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9', 'containerName': 'redis', 'customerGUID': '3f4a257e-11ea-4cee-8bc0-ca8daa65a833', 'kind': 'Deployment', 'name': 'redis-sleep', 'namespace': 'systest-ns-l0cv', 'nodeName': 'systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane', 'originalCacheEntry': '3f4a257e-11ea-4cee-8bc0-ca8daa65a833/kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9/systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane/wlid://cluster-kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9/namespace-systest-ns-l0cv/deployment-redis-sleep/redis/0e4e82a5-def9-4173-9a21-f0b72d039859', 'podName': 'redis-sleep-7bd7d4785f-74fvz'}}, 'arguments': {'retval': 0}, 'infectedPID': 12207, 'fixSuggestions': 'If this is a valid behavior, please add the exec call "/bin/ls" to the whitelist in the application profile for the Pod "redis-sleep-7bd7d4785f-74fvz". You can use the following command: kubectl patch applicationprofile replicaset-redis-sleep-7bd7d4785f --namespace systest-ns-l0cv --type merge -p \'{"spec": {"containers": [{"name": "redis", "execs": [{"path": "/bin/ls", "args": ["/bin/ls","-l","/tmp"]}]}]}}\'', 'severity': 5, 'timestamp': '2024-09-03T09:40:24.1Z', 'nanoseconds': 1725356424100130979, 'ruleDescription': 'Unexpected process launched: /bin/ls in: redis', 'kind': {'Group': '', 'Version': '', 'Kind': ''}, 'resource': {'Group': '', 'Version': '', 'Resource': ''}, 'clusterName': 'kind-systests-73bf5974-8375-45ba-a719-69b5c7872fe9', 'containerName': 'redis', 'hostNetwork': False, 'image': 'sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902', 'imageDigest': 'sha256:92f3e116c1e719acf78004dd62992c3ad56f68f810c93a8db3fe2351bb9722c2', 'namespace': 'systest-ns-l0cv', 'nodeName': 'systests-73bf5974-8375-45ba-a719-69b5c7872fe9-control-plane', 'containerID': '498b7b8d82066e69573b77749bd533adba8c41e74a9a17214428f0e17bda06f1', 'podName': 'redis-sleep-7bd7d4785f-74fvz', 'podNamespace': 'systest-ns-l0cv', 'workloadName': 'redis-sleep', 'workloadNamespace': 'systest-ns-l0cv', 'workloadKind': 'Deployment', 'alertType': 0, 'ruleID': 'R0001', 'hostName': '', 'message': 'Unexpected process launched: /bin/ls in: redis', 'incidentCategory': 'Anomaly', 'incidentTypeID': 'I013', 'policiesApplied': [{'guid': '8ac868dd-5f24-49ef-be31-ec543f7477d6', 'name': 'Malware-new-systest-kind-e79839a6-7220-4714-b8f5-c4e5386bef55', 'enabled': False, 'scope': {}, 'ruleSetType': '', 'updatedBy': '', 'notifications': None, 'actions': None}, {'guid': '9a82a6a1-a8ab-4382-bdb4-0ba8b48ec19b', 'name': 'Malware-new-systest-kind-eb731017-244a-4797-ba05-b12240b6761f', 'enabled': False, 'scope': {}, 'ruleSetType': '', 'updatedBy': '', 'notifications': None, 'actions': None}, {'guid': '17794a36-9303-4692-9d6c-8ef419ae0d43', 'name': 'Anomaly', 'enabled': False, 'scope': {}, 'ruleSetType': '', 'updatedBy': '', 'notifications': None, 'actions': None}], 'creationTimestamp': '2024-09-03T09:40:34.701Z', 'description': 'A process was launched that is not expected to run in the environment.', 'mitreTactic': 'TA0002', 'incidentSeverity': 'Medium', 'severityScore': 300, 'isDismissed': False, 'markedAsFalsePositive': False, 'processTree': {'processTree': {'pid': 12207, 'cmdline': '/bin/ls -l /tmp', 'comm': 'ls', 'ppid': 12197, 'pcomm': 'runc', 'hardlink': '/bin/busybox', 'uid': 0, 'gid': 0, 'upperLayer': False, 'cwd': '/data', 'path': '/bin/ls'}, 'uniqueID': 0, 'containerID': '498b7b8d82066e69573b77749bd533adba8c41e74a9a17214428f0e17bda06f1'}}}'

Failed to get the report-guid for the last scan.

Failed to get the report-guid for the last scan.

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/