Skip to content
CI

chore: add Trivy security scanning and fix non-root container users #1753

Sign in to view logs

chore: add Trivy security scanning and fix non-root container users

chore: add Trivy security scanning and fix non-root container users #1753

Triggered via pull request March 5, 2026 16:16
@auricomauricom
synchronize #3082
marko/add-trivy-scan
Status Failure
Total duration 9m 14s
Artifacts 3

ci.yml

on: pull_request
Determine Image Tag
3s
Determine Image Tag
test  /  Run Unit Tests
2m 48s
test / Run Unit Tests
test  /  Run Integration Tests
1m 56s
test / Run Integration Tests
test  /  Build All ev-node Binaries
1m 31s
test / Build All ev-node Binaries
lint  /  golangci-lint
33s
lint / golangci-lint
lint  /  hadolint
7s
lint / hadolint
lint  /  yamllint
12s
lint / yamllint
lint  /  markdown-lint
2m 57s
lint / markdown-lint
lint  /  goreleaser-check
7s
lint / goreleaser-check
test  /  Go Mod Tidy Check
32s
test / Go Mod Tidy Check
proto  /  buf-check
11s
proto / buf-check
Matrix: docker / build-images
test  /  Combine and Upload Coverage
0s
test / Combine and Upload Coverage
test  /  Run E2E System Tests
7m 38s
test / Run E2E System Tests
test  /  Run EVM Execution Tests
2m 13s
test / Run EVM Execution Tests
docker-tests  /  Docker Compatibility E2E Tests
docker-tests / Docker Compatibility E2E Tests
docker-tests  /  Docker E2E Tests
docker-tests / Docker E2E Tests
docker-tests  /  Docker Upgrade E2E Tests
docker-tests / Docker Upgrade E2E Tests
Fit to window
Zoom out
Zoom in

Annotations

9 errors and 1 notice
lint / hadolint: tools/local-da/Dockerfile#L13
DL3003 warning: Use WORKDIR to switch to a directory
lint / hadolint: apps/testapp/Dockerfile#L24
DL3062 warning: Pin versions in go. Instead of `go install <package>` use `go install <package>@<version>`
lint / hadolint: apps/testapp/Dockerfile#L24
DL3003 warning: Use WORKDIR to switch to a directory
lint / hadolint: apps/testapp/Dockerfile#L4
DL3008 warning: Pin versions in apt get install. Instead of `apt-get install <package>` use `apt-get install <package>=<version>`
docker / Build ev-node-evm
buildx failed with: ERROR: failed to build: failed to solve: process "/bin/sh -c addgroup -g 1000 ev-node && adduser -u 1000 -G ev-node -s /bin/sh ev-node" did not complete successfully: exit code: 1
docker / Build ev-node-testapp
The strategy configuration was canceled because "docker.build-images.ev-node-evm_apps_evm_Dock" failed
docker / Build ev-node-testapp
The operation was canceled.
test / Run Unit Tests
Process completed with exit code 1.
test / Run E2E System Tests
Process completed with exit code 1.
Determine Image Tag
Using PR-based tag: pr-3082

Artifacts

Produced during runtime
Name Size Digest
evstack~ev-node~775AAL.dockerbuild
31.9 KB
sha256:fd244354f9e55a6ade20e472694467e2781706f10f9d612460b3caa6eaa86603
evstack~ev-node~U5RKPO.dockerbuild
36.8 KB
sha256:7a02bdffa7c503b84561d0643cdd1ae73a342bb50a82815ff3b1e65552f4ec02
integration-test-coverage-report-f0638708720ce3991878ff0757e65873fe1a0555
2.25 KB
sha256:15ce7aebb94805c1273c6a852df666a9f472aaa595aebf2286863c14b677ac52