not all SBOMs were verified

cluster resource 'systest-ns-ies7/DaemonSet/fluentd-elasticsearch' is '910' while resource version in BE is '879'

verify_incident_completed, timeout: 5 minutes, error: Not completed incident {"guid": "493c8ef2-b997-4868-bec9-9c617e04887b", "name": "Unexpected process launched", "attributes": {"incidentStatus": "incomplete"}, "updatedTime": "2024-09-02T07:28:33Z", "spiffe": "wlid://cluster-kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5/namespace-systest-ns-w5ug/deployment-redis-sleep", "resourceID": "", "designators": {"designatorType": "Attributes", "wlid": "wlid://cluster-kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5/namespace-systest-ns-w5ug/deployment-redis-sleep", "attributes": {"cluster": "kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5", "clusterShortName": "kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5", "containerName": "redis", "customerGUID": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833", "kind": "Deployment", "name": "redis-sleep", "namespace": "systest-ns-w5ug", "nodeName": "systests-10122c32-ac96-4bab-b1b3-9629c531eda5-control-plane", "originalCacheEntry": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833/kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5/systests-10122c32-ac96-4bab-b1b3-9629c531eda5-control-plane/wlid://cluster-kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5/namespace-systest-ns-w5ug/deployment-redis-sleep/redis/493c8ef2-b997-4868-bec9-9c617e04887b", "podName": "redis-sleep-7bd7d4785f-cc52l"}}, "arguments": {"retval": 0}, "infectedPID": 12159, "fixSuggestions": "If this is a valid behavior, please add the exec call \"/bin/ls\" to the whitelist in the application profile for the Pod \"redis-sleep-7bd7d4785f-cc52l\". You can use the following command: kubectl patch applicationprofile replicaset-redis-sleep-7bd7d4785f --namespace systest-ns-w5ug --type merge -p '{\"spec\": {\"containers\": [{\"name\": \"redis\", \"execs\": [{\"path\": \"/bin/ls\", \"args\": [\"/bin/ls\",\"-l\",\"/tmp\"]}]}]}}'", "severity": 5, "timestamp": "2024-09-02T07:28:16.712Z", "nanoseconds": 1725262096712508006, "ruleDescription": "Unexpected process launched: /bin/ls in: redis", "kind": {"Group": "", "Version": "", "Kind": ""}, "resource": {"Group": "", "Version": "", "Resource": ""}, "clusterName": "kind-systests-10122c32-ac96-4bab-b1b3-9629c531eda5", "containerName": "redis", "hostNetwork": false, "image": "docker.io/library/redis@sha256:92f3e116c1e719acf78004dd62992c3ad56f68f810c93a8db3fe2351bb9722c2", "imageDigest": "sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902", "namespace": "systest-ns-w5ug", "nodeName": "systests-10122c32-ac96-4bab-b1b3-9629c531eda5-control-plane", "containerID": "b52147e9f5be3bd938524cf27007194aaf03450799c5d08e5b51adcb3048a309", "podName": "redis-sleep-7bd7d4785f-cc52l", "podNamespace": "systest-ns-w5ug", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-w5ug", "workloadKind": "Deployment", "alertType": 0, "ruleID": "R0001", "hostName": "", "message": "Unexpected process launched: /bin/ls in: redis", "incidentCategory": "Anomaly", "incidentTypeID": "I013", "policiesApplied": [{"guid": "8ac868dd-5f24-49ef-be31-ec543f7477d6", "name": "Malware-new-systest-kind-e79839a6-7220-4714-b8f5-c4e5386bef55", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "9a82a6a1-a8ab-4382-bdb4-0ba8b48ec19b", "name": "Malware-new-systest-kind-eb731017-244a-4797-ba05-b12240b6761f", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "17794a36-9303-4692-9d6c-8ef419ae0d43", "name": "Anomaly", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}], "creationTimestamp": "2024-09-02T07:28:33.547Z", "description": "A process was launched that is not expected to run in the environment.", "incidentSeverity": "Medium", "isDismissed": false, "markedAsFalsePositive": false, "processTree": {"processTree": {"pid": 12159, "cmdline": "/bin/ls -l /tmp", "comm": "ls", "ppid": 12149, "pcomm": "runc", "hardlink": "/bin/busybox", "uid": 0, "gid": 0, "upperLayer": false, "cwd": "/data", "path": "/bin/ls"}, "uniqueID": 0, "containerID": "b52147e9f5be3bd938524cf27007194aaf03450799c5d08e5b51adcb3048a309"}}. kwargs: '{'incident_id': '493c8ef2-b997-4868-bec9-9c617e04887b'}'

cluster resource 'systest-ns-6zl5/StatefulSet/my-statefulset' is '2170' while resource version in BE is '1979'

verify_incident_completed, timeout: 5 minutes, error: Not completed incident {"guid": "fc4a1af3-88a9-4a0f-b9b0-e914d65c29c2", "name": "Unexpected process launched", "attributes": {"incidentStatus": "incomplete"}, "updatedTime": "2024-09-02T07:46:17Z", "spiffe": "wlid://cluster-kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a/namespace-systest-ns-57r7/deployment-redis-sleep", "resourceID": "", "designators": {"designatorType": "Attributes", "wlid": "wlid://cluster-kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a/namespace-systest-ns-57r7/deployment-redis-sleep", "attributes": {"cluster": "kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a", "clusterShortName": "kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a", "containerName": "redis", "customerGUID": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833", "kind": "Deployment", "name": "redis-sleep", "namespace": "systest-ns-57r7", "nodeName": "systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a-control-plane", "originalCacheEntry": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833/kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a/systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a-control-plane/wlid://cluster-kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a/namespace-systest-ns-57r7/deployment-redis-sleep/redis/fc4a1af3-88a9-4a0f-b9b0-e914d65c29c2", "podName": "redis-sleep-7bd7d4785f-5ndd8"}}, "arguments": {"retval": 0}, "infectedPID": 12305, "fixSuggestions": "If this is a valid behavior, please add the exec call \"/bin/ls\" to the whitelist in the application profile for the Pod \"redis-sleep-7bd7d4785f-5ndd8\". You can use the following command: kubectl patch applicationprofile replicaset-redis-sleep-7bd7d4785f --namespace systest-ns-57r7 --type merge -p '{\"spec\": {\"containers\": [{\"name\": \"redis\", \"execs\": [{\"path\": \"/bin/ls\", \"args\": [\"/bin/ls\",\"-l\",\"/tmp\"]}]}]}}'", "severity": 5, "timestamp": "2024-09-02T07:46:11.446Z", "nanoseconds": 1725263171446670902, "ruleDescription": "Unexpected process launched: /bin/ls in: redis", "kind": {"Group": "", "Version": "", "Kind": ""}, "resource": {"Group": "", "Version": "", "Resource": ""}, "clusterName": "kind-systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a", "containerName": "redis", "hostNetwork": false, "image": "docker.io/library/redis@sha256:92f3e116c1e719acf78004dd62992c3ad56f68f810c93a8db3fe2351bb9722c2", "imageDigest": "sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902", "namespace": "systest-ns-57r7", "nodeName": "systests-61afe96b-f7e6-41b5-9ad9-dec2ed1dd61a-control-plane", "containerID": "700827841679581ef8a49d3a8df8155e4e37652bd985c0c9ba16155d0fdeb2a4", "podName": "redis-sleep-7bd7d4785f-5ndd8", "podNamespace": "systest-ns-57r7", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-57r7", "workloadKind": "Deployment", "alertType": 0, "ruleID": "R0001", "hostName": "", "message": "Unexpected process launched: /bin/ls in: redis", "incidentCategory": "Anomaly", "incidentTypeID": "I013", "policiesApplied": [{"guid": "8ac868dd-5f24-49ef-be31-ec543f7477d6", "name": "Malware-new-systest-kind-e79839a6-7220-4714-b8f5-c4e5386bef55", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "9a82a6a1-a8ab-4382-bdb4-0ba8b48ec19b", "name": "Malware-new-systest-kind-eb731017-244a-4797-ba05-b12240b6761f", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "17794a36-9303-4692-9d6c-8ef419ae0d43", "name": "Anomaly", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}], "creationTimestamp": "2024-09-02T07:46:17.6Z", "description": "A process was launched that is not expected to run in the environment.", "incidentSeverity": "Medium", "isDismissed": false, "markedAsFalsePositive": false, "processTree": {"processTree": {"pid": 12305, "cmdline": "/bin/ls -l /tmp", "comm": "ls", "ppid": 12293, "pcomm": "runc", "hardlink": "/bin/busybox", "uid": 0, "gid": 0, "upperLayer": false, "cwd": "/data", "path": "/bin/ls"}, "uniqueID": 0, "containerID": "700827841679581ef8a49d3a8df8155e4e37652bd985c0c9ba16155d0fdeb2a4"}}. kwargs: '{'incident_id': 'fc4a1af3-88a9-4a0f-b9b0-e914d65c29c2'}'

verify_incident_completed, timeout: 5 minutes, error: Not completed incident {"guid": "b64ffcc1-5260-47c6-ba26-3c76769aa76d", "name": "Unexpected process launched", "attributes": {"incidentStatus": "incomplete"}, "updatedTime": "2024-09-02T07:56:46Z", "spiffe": "wlid://cluster-kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d/namespace-systest-ns-jhuj/deployment-redis-sleep", "resourceID": "", "designators": {"designatorType": "Attributes", "wlid": "wlid://cluster-kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d/namespace-systest-ns-jhuj/deployment-redis-sleep", "attributes": {"cluster": "kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d", "clusterShortName": "kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d", "containerName": "redis", "customerGUID": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833", "kind": "Deployment", "name": "redis-sleep", "namespace": "systest-ns-jhuj", "nodeName": "systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d-control-plane", "originalCacheEntry": "3f4a257e-11ea-4cee-8bc0-ca8daa65a833/kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d/systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d-control-plane/wlid://cluster-kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d/namespace-systest-ns-jhuj/deployment-redis-sleep/redis/b64ffcc1-5260-47c6-ba26-3c76769aa76d", "podName": "redis-sleep-7bd7d4785f-cpxns"}}, "arguments": {"retval": 0}, "infectedPID": 12401, "fixSuggestions": "If this is a valid behavior, please add the exec call \"/bin/ls\" to the whitelist in the application profile for the Pod \"redis-sleep-7bd7d4785f-cpxns\". You can use the following command: kubectl patch applicationprofile replicaset-redis-sleep-7bd7d4785f --namespace systest-ns-jhuj --type merge -p '{\"spec\": {\"containers\": [{\"name\": \"redis\", \"execs\": [{\"path\": \"/bin/ls\", \"args\": [\"/bin/ls\",\"-l\",\"/tmp\"]}]}]}}'", "severity": 5, "timestamp": "2024-09-02T07:56:39.405Z", "nanoseconds": 1725263799405665743, "ruleDescription": "Unexpected process launched: /bin/ls in: redis", "kind": {"Group": "", "Version": "", "Kind": ""}, "resource": {"Group": "", "Version": "", "Resource": ""}, "clusterName": "kind-systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d", "containerName": "redis", "hostNetwork": false, "image": "docker.io/library/redis@sha256:92f3e116c1e719acf78004dd62992c3ad56f68f810c93a8db3fe2351bb9722c2", "imageDigest": "sha256:a5b1aed421143f36e2445cb2def7135ab7edb69eaa8066d07c3fa344f1052902", "namespace": "systest-ns-jhuj", "nodeName": "systests-87b964c2-2a8d-437b-a0ad-81bea6ee630d-control-plane", "containerID": "b87d67eb3a453cf79b86e545623083258f53b0cfcd30fa7952ad9c683e9fdbb2", "podName": "redis-sleep-7bd7d4785f-cpxns", "podNamespace": "systest-ns-jhuj", "workloadName": "redis-sleep", "workloadNamespace": "systest-ns-jhuj", "workloadKind": "Deployment", "alertType": 0, "ruleID": "R0001", "hostName": "", "message": "Unexpected process launched: /bin/ls in: redis", "incidentCategory": "Anomaly", "incidentTypeID": "I013", "policiesApplied": [{"guid": "8ac868dd-5f24-49ef-be31-ec543f7477d6", "name": "Malware-new-systest-kind-e79839a6-7220-4714-b8f5-c4e5386bef55", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "9a82a6a1-a8ab-4382-bdb4-0ba8b48ec19b", "name": "Malware-new-systest-kind-eb731017-244a-4797-ba05-b12240b6761f", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}, {"guid": "17794a36-9303-4692-9d6c-8ef419ae0d43", "name": "Anomaly", "enabled": false, "scope": {}, "ruleSetType": "", "updatedBy": "", "notifications": null, "actions": null}], "creationTimestamp": "2024-09-02T07:56:46.39Z", "description": "A process was launched that is not expected to run in the environment.", "incidentSeverity": "Medium", "isDismissed": false, "markedAsFalsePositive": false, "processTree": {"processTree": {"pid": 12401, "cmdline": "/bin/ls -l /tmp", "comm": "ls", "ppid": 12391, "pcomm": "runc", "hardlink": "/bin/busybox", "uid": 0, "gid": 0, "upperLayer": false, "cwd": "/data", "path": "/bin/ls"}, "uniqueID": 0, "containerID": "b87d67eb3a453cf79b86e545623083258f53b0cfcd30fa7952ad9c683e9fdbb2"}}. kwargs: '{'incident_id': 'b64ffcc1-5260-47c6-ba26-3c76769aa76d'}'

The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/