Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error #3652

Open
aldousalvarez opened this issue Nov 26, 2024 · 1 comment · May be fixed by #3659
Open

ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error #3652

aldousalvarez opened this issue Nov 26, 2024 · 1 comment · May be fixed by #3659

Comments

@aldousalvarez
Copy link
Contributor

Description

The Trivy scan in our GitHub Actions workflow is producing inconsistent results and often fails to scan. The most frequent issue is a database download error caused by rate limits (TOOMANYREQUESTS: retry-after). This prevents Trivy from completing the scan, resulting in a DB error.

Error logs can be seen here: https://github.com/hyperledger-cacti/cacti/actions/runs/12025612225/job/33524333591?pr=3622

cmd-api-server-trivy scan logs.txt

Steps to reproduce:

  1. Run the Trivy scan using the aquasecurity/[email protected] action.
  2. Observe the frequent failure during the database download step.

Expected behavior:

  1. Trivy should consistently complete the scan without errors.
@petermetz
Copy link
Contributor

Idea: transition the trivy scans to a weekly scan so that we don't have to deal with the rate limits for now.

aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
d0d6e16 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
@aldousalvarez aldousalvarez linked a pull request Nov 29, 2024 that will close this issue
Open
5 tasks
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
81180c1 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
9a269e7 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
edeffa0 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
65dcb35 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
d07a7d0 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
ba179c3 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
6cb6a17 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
aldousalvarez added a commit to aldousalvarez/cactus that referenced this issue Nov 29, 2024
@aldousalvarez
ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error
7b88789 
Primary Changes
----------------
1. Updated the ci.yaml to make the trivy scan
   run only on the weekends

Fixes hyperledger-cacti#3652

Signed-off-by: aldousalvarez <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

ci(trivy): fix scan failures due to TOOMANYREQUESTS DB error aldousalvarez/cactus
2 participants
@petermetz @aldousalvarez