running acs-image-check Step: acs-image-check Results: /workspace/source/source/results/acs-image-check Custom root CA variable is not set. Make sure CA trust is established Using rox central endpoint central-rhacs-operator.apps.rosa.rhtap-services.xmdt.p3.openshiftapps.com:443 Download roxctl cli roxctl image check Running acs-image-check:report ACS_IMAGE_CHECK_EYECATCHER_BEGIN { "results": [ { "metadata": { "id": "quay.io/rhtap_qe/e2e-tests-go-bdmcjuon:on-pr-bca86c81c1560ea8dd05ad7bdb9d2be240e00dc0@sha256:b9c2b30a2892d0079d290c4c4ac821b398faf6912ef8ef38a323ff30a3778705", "additionalInfo": { "name": "quay.io/rhtap_qe/e2e-tests-go-bdmcjuon:on-pr-bca86c81c1560ea8dd05ad7bdb9d2be240e00dc0@sha256:b9c2b30a2892d0079d290c4c4ac821b398faf6912ef8ef38a323ff30a3778705", "type": "image" } }, "summary": { "CRITICAL": 0, "HIGH": 0, "LOW": 1, "MEDIUM": 0, "TOTAL": 1 }, "violatedPolicies": [ { "name": "Docker CIS 4.1: Ensure That a User for the Container Has Been Created", "severity": "LOW", "description": "Containers should run as a non-root user", "violation": [ "Image has user 'root'" ], "remediation": "Ensure that the Dockerfile for each container switches from the root user", "failingCheck": false } ] } ], "summary": { "CRITICAL": 0, "HIGH": 0, "LOW": 1, "MEDIUM": 0, "TOTAL": 1 } } ACS_IMAGE_CHECK_EYECATCHER_END running acs-image-scan Step: acs-image-scan Results: /workspace/source/source/results/acs-image-scan Custom root CA variable is not set. Make sure CA trust is established Running acs-image-scan:rox-image-scan Using rox central endpoint central-rhacs-operator.apps.rosa.rhtap-services.xmdt.p3.openshiftapps.com:443 Download roxctl cli roxctl image scan {"vulnerabilities":{"critical":0,"high":2,"medium":4,"low":4}} {"result":"SUCCESS","timestamp":"1782934977","note":"Task completed: Refer to Tekton task result SCAN_OUTPUT for found vulnerabilities.","namespace":"default","successes":"0","failures":"0","warnings":"0"} Running acs-image-scan:report ACS_IMAGE_SCAN_EYECATCHER_BEGIN { "result": { "summary": { "CRITICAL": 0, "IMPORTANT": 2, "LOW": 4, "MODERATE": 4, "TOTAL-COMPONENTS": 10, "TOTAL-VULNERABILITIES": 10 }, "vulnerabilities": [ { "cveId": "CVE-2026-54369", "cveSeverity": "IMPORTANT", "cveCVSS": 7.1, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54369", "advisoryId": "", "advisoryInfo": "", "componentName": "libacl", "componentVersion": "2.3.1-4.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-54370", "cveSeverity": "MODERATE", "cveCVSS": 6.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54370", "advisoryId": "", "advisoryInfo": "", "componentName": "libacl", "componentVersion": "2.3.1-4.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-54371", "cveSeverity": "IMPORTANT", "cveCVSS": 7.1, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-54371", "advisoryId": "", "advisoryInfo": "", "componentName": "libattr", "componentVersion": "2.5.1-3.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-common", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-6238", "cveSeverity": "MODERATE", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-6238", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5435", "cveSeverity": "MODERATE", "cveCVSS": 5.9, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5435", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2026-5928", "cveSeverity": "MODERATE", "cveCVSS": 5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2026-5928", "advisoryId": "", "advisoryInfo": "", "componentName": "glibc-minimal-langpack", "componentVersion": "2.34-272.el9_8", "componentFixedVersion": "" }, { "cveId": "CVE-2022-27943", "cveSeverity": "LOW", "cveCVSS": 5.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-27943", "advisoryId": "", "advisoryInfo": "", "componentName": "libgcc", "componentVersion": "11.5.0-14.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2021-46195", "cveSeverity": "LOW", "cveCVSS": 3.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2021-46195", "advisoryId": "", "advisoryInfo": "", "componentName": "libgcc", "componentVersion": "11.5.0-14.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2023-50495", "cveSeverity": "LOW", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2023-50495", "advisoryId": "", "advisoryInfo": "", "componentName": "ncurses-base", "componentVersion": "6.2-12.20210508.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2023-50495", "cveSeverity": "LOW", "cveCVSS": 6.5, "cveInfo": "https://access.redhat.com/security/cve/CVE-2023-50495", "advisoryId": "", "advisoryInfo": "", "componentName": "ncurses-libs", "componentVersion": "6.2-12.20210508.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2022-41409", "cveSeverity": "LOW", "cveCVSS": 5.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-41409", "advisoryId": "", "advisoryInfo": "", "componentName": "pcre2", "componentVersion": "10.40-6.el9", "componentFixedVersion": "" }, { "cveId": "CVE-2022-41409", "cveSeverity": "LOW", "cveCVSS": 5.3, "cveInfo": "https://access.redhat.com/security/cve/CVE-2022-41409", "advisoryId": "", "advisoryInfo": "", "componentName": "pcre2-syntax", "componentVersion": "10.40-6.el9", "componentFixedVersion": "" } ] } } ACS_IMAGE_SCAN_EYECATCHER_END