running acs-image-check Step: acs-image-check Results: /workspace/source/source/results/acs-image-check Custom root CA variable is not set. Make sure CA trust is established Using rox central endpoint central-rhacs-operator.apps.rosa.rhtap-services.xmdt.p3.openshiftapps.com:443 Download roxctl cli roxctl image check Running acs-image-check:report ACS_IMAGE_CHECK_EYECATCHER_BEGIN { "results": [ { "metadata": { "id": "quay.io/rhtap_qe/e2e-tests-go-ouwjgimi:on-pr-6ebc94be02409559779e4a0893e6dc5e3967aa91@sha256:f8423574c48246b105f8dc4fa2a6aabbb7a0206b64b9e59ac452cbe9f0a6e59f", "additionalInfo": { "name": "quay.io/rhtap_qe/e2e-tests-go-ouwjgimi:on-pr-6ebc94be02409559779e4a0893e6dc5e3967aa91@sha256:f8423574c48246b105f8dc4fa2a6aabbb7a0206b64b9e59ac452cbe9f0a6e59f", "type": "image" } }, "summary": { "CRITICAL": 0, "HIGH": 0, "LOW": 1, "MEDIUM": 0, "TOTAL": 1 }, "violatedPolicies": [ { "name": "Docker CIS 4.1: Ensure That a User for the Container Has Been Created", "severity": "LOW", "description": "Containers should run as a non-root user", "violation": [ "Image has user 'root'" ], "remediation": "Ensure that the Dockerfile for each container switches from the root user", "failingCheck": false } ] } ], "summary": { "CRITICAL": 0, "HIGH": 0, "LOW": 1, "MEDIUM": 0, "TOTAL": 1 } } ACS_IMAGE_CHECK_EYECATCHER_END running acs-image-scan Step: acs-image-scan Results: /workspace/source/source/results/acs-image-scan Custom root CA variable is not set. Make sure CA trust is established Running acs-image-scan:rox-image-scan Using rox central endpoint central-rhacs-operator.apps.rosa.rhtap-services.xmdt.p3.openshiftapps.com:443 Download roxctl cli roxctl image scan {"vulnerabilities":{"critical":0,"high":2,"medium":4,"low":4}} {"result":"SUCCESS","timestamp":"1782994223","note":"Task completed: Refer to Tekton task result SCAN_OUTPUT for found vulnerabilities.","namespace":"default","successes":"0","failures":"0","warnings":"0"} Running acs-image-scan:report ACS_IMAGE_SCAN_EYECATCHER_BEGIN { "result": { "summary": { "CRITICAL": 0, "IMPORTANT": 2, "LOW": 4, "MODERATE": 4, "TOTAL-COMPONENTS": 10, "TOTAL-VULNERABILITIES": 10 }, "vulnerabilities": [ { "cveId": "CVE-2026-54369", "cveSeverity": "IMPORTANT", "cveCVSS": 7.1, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54369", "advisoryId": "", "advisoryInfo": "", "componentName": "libacl", "componentVersion": "2.3.1-4.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-54370", "cveSeverity": "MODERATE", "cveCVSS": 6.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54370", "advisoryId": "", "advisoryInfo": "", "componentName": "libacl", "componentVersion": "2.3.1-4.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-54371", "cveSeverity": "IMPORTANT", "cveCVSS": 7.1, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54371", "advisoryId": "", "advisoryInfo": "", "componentName": "libattr", "componentVersion": "2.5.1-3.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2022-27943", "cveSeverity": "LOW", "cveCVSS": 5.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-27943", "advisoryId": "", "advisoryInfo": "", "componentName": "libgcc", "componentVersion": "11.5.0-14.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2021-46195", "cveSeverity": "LOW", "cveCVSS": 3.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2021-46195", "advisoryId": "", "advisoryInfo": "", "componentName": "libgcc", "componentVersion": "11.5.0-14.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2023-50495", "cveSeverity": "LOW", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2023-50495", "advisoryId": "", "advisoryInfo": "", "componentName": "ncurses-base", "componentVersion": "6.2-12.20210508.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2023-50495", "cveSeverity": "LOW", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2023-50495", "advisoryId": "", "advisoryInfo": "", "componentName": "ncurses-libs", "componentVersion": "6.2-12.20210508.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2022-41409", "cveSeverity": "LOW", "cveCVSS": 5.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-41409", "advisoryId": "", "advisoryInfo": "", "componentName": "pcre2", "componentVersion": "10.40-6.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2022-41409", "cveSeverity": "LOW", "cveCVSS": 5.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-41409", "advisoryId": "", "advisoryInfo": "", "componentName": "pcre2-syntax", "componentVersion": "10.40-6.el9", "componentFixedVersion": "" } ] } } ACS_IMAGE_SCAN_EYECATCHER_END