Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade php from 8.0-fpm to 8.1-fpm #8

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade php from 8.0-fpm to 8.1-fpm #8

wants to merge 1 commit into from

Conversation

tulik
Copy link
Member

@tulik tulik commented Sep 6, 2024
edited by qodo-merge-pro bot
Loading

User description

snyk-top-banner

Snyk has created this PR to fix 3 vulnerabilities in the dockerfile dependencies of this project.

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Snyk changed the following file(s):

  • docker/base-images/php:8.0/Dockerfile

We recommend upgrading to php:8.1-fpm, as this image has only 67 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity CVE-2023-44487
SNYK-DEBIAN11-NGHTTP2-5953384		   561  
critical severity Integer Overflow or Wraparound
SNYK-DEBIAN11-ZLIB-6008961		   264  
critical severity CVE-2024-37371
SNYK-DEBIAN11-KRB5-7411316		   232  
critical severity CVE-2024-37371
SNYK-DEBIAN11-KRB5-7411316		   232  
critical severity CVE-2024-37371
SNYK-DEBIAN11-KRB5-7411316		   232  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

PR Type

enhancement, bug fix

Description

  • Upgraded the PHP base image in the Dockerfile from 8.0-fpm to 8.1-fpm to address security vulnerabilities.
  • The upgrade is intended to fix several vulnerabilities identified by Snyk, including issues with NGHTTP2 and ZLIB.
  • This change is expected to reduce the number of known vulnerabilities in the Docker image.

Changes walkthrough 📝

Relevant files
Enhancement
Dockerfile
Upgrade PHP base image to reduce vulnerabilities                 

docker/base-images/php:8.0/Dockerfile

  • Upgraded PHP base image from 8.0-fpm to 8.1-fpm.
  • Aimed to reduce vulnerabilities in the Docker image.
    		•  +1/-1     

    💡 PR-Agent usage:
    Comment /help on the PR to get a list of all available PR-Agent tools and their descriptions

    @codemaker-ai-app CodeMaker AI App
    Copy link

    Hello from @codemakerai.

    CodeMaker AI GitHub App integration.

    Usage:

    @codemakerai [command or prompt]

    Assistant

    All Assistant features are supported in GitHub. Assistant can answer general questions as well as questions directly
    related to code. It also has code editing capabilities.

    @codemakerai assistant prompt - the assistant prompt
    @codemakerai prompt - the assistant prompt. Alias to assistant command.

    Commands

    Pull Request Commands - commands that can be posted as comments on the pull request:

    @codemakerai help - prints this help message
    @codemakerai review process - process the most recent code review and all it's comments
    @codemakerai generate code [codepath] - generate code for all files in pull request, or only for matching code path.
    @codemakerai generate docs [codepath] - generate documentation for all files in pull request, or only for matching code path.
    @codemakerai replace code [codepath] - replace code for all files in pull request, or only for matching code path.
    @codemakerai replace docs [codepath] - replace documentation for all files in pull request, or only for matching code path.
    @codemakerai fix syntax - fixes the syntax in all files
    @codemakerai commit undo - removes the most recent commit

    Pull Request Code Review Commands - commands that can be posted as comments on the code review i.e. "Files changed" tab:

    @codemakerai assistant prompt - the assistant prompt
    @codemakerai explain - explains the code
    @codemakerai review - reviews the code

    Triggers

    To automatically trigger certain actions on pull requests you can create and use the following GitHub labels.

    codemakerai-pull-request-generate-documentation - automatically generates comments/documentation on Pull Request creation.
    codemakerai-pull-request-syntax-autocorrection - automatically corrects syntax on Pull Request creation.
    codemakerai-pull-request-review-process - automatically processes code review comments on Pull Request Review submission.

    For in depth explanation of the features, please consult https://docs.codemaker.ai

    In case of any issues please report them to https://community.codemaker.ai

    @qodo-merge-pro Qodo Merge Pro
    Copy link

    qodo-merge-pro bot commented Sep 6, 2024

    PR-Agent was enabled for this repository. To continue using it, please link your git user with your CodiumAI identity here.

    PR Reviewer Guide 🔍

    ⏱️ Estimated effort to review: 1 🔵⚪⚪⚪⚪
    🧪 No relevant tests
    🔒 No security concerns identified
    ⚡ No key issues to review

    @qodo-merge-pro Qodo Merge Pro
    Copy link

    qodo-merge-pro bot commented Sep 6, 2024

    PR-Agent was enabled for this repository. To continue using it, please link your git user with your CodiumAI identity here.

    PR Code Suggestions ✨

    CategorySuggestion                                                                                                                                    Score
    Best practice
    Update directory name to match the new PHP version

    Consider updating the directory name to reflect the new PHP version (8.1) for better
    organization and clarity.

    docker/base-images/php:8.0/Dockerfile [1]

    +FROM php:8.1-fpm
 
-
    • Apply this suggestion
    Suggestion importance[1-10]: 7

    Why: The suggestion to update the directory name for better organization and clarity is valid, as it aligns the directory structure with the updated PHP version in the Dockerfile. However, it is not crucial for functionality, hence a moderate score.

    		7

    @qodo-merge-pro Qodo Merge Pro
    Copy link

    qodo-merge-pro bot commented Sep 6, 2024

    PR-Agent was enabled for this repository. To continue using it, please link your git user with your CodiumAI identity here.

    CI Failure Feedback 🧐

    Action: snyk

    Failed stage: Install PHP dependencies [❌]

    Failed test name: ""

    Failure summary:

    The action failed due to the following reasons:

  • Missing peer dependencies: The workspace does not provide several required peer dependencies,
    including @testing-library/dom, @vanilla/utils, and react-is.
  • Lockfile modification: The installation process attempted to modify the lockfile, which is
    explicitly forbidden by the current configuration.

    • Relevant error logs: 
    1:  ##[group]Operating System
2:  Ubuntu
...

651:  �[93m➤�[39m YN0002: │ �[38;5;173mvanilla�[39m�[38;5;111m@�[39m�[38;5;111mworkspace:.�[39m doesn't provide �[38;5;166m@testing-library/�[39m�[38;5;173mdom�[39m (�[38;5;111mpd878a�[39m), requested by �[38;5;166m@testing-library/�[39m�[38;5;173muser-event�[39m.
652:  �[93m➤�[39m YN0002: │ �[38;5;173mvanilla�[39m�[38;5;111m@�[39m�[38;5;111mworkspace:.�[39m doesn't provide �[38;5;166m@vanilla/�[39m�[38;5;173mutils�[39m (�[38;5;111mp0cd3d�[39m), requested by �[38;5;166m@vanilla/�[39m�[38;5;173micons�[39m.
653:  �[93m➤�[39m YN0002: │ �[38;5;173mvanilla�[39m�[38;5;111m@�[39m�[38;5;111mworkspace:.�[39m doesn't provide �[38;5;173mreact-is�[39m (�[38;5;111mp2bb43�[39m), requested by �[38;5;166m@reach/�[39m�[38;5;173mmenu-button�[39m.
654:  �[93m➤�[39m YN0086: │ Some peer dependencies are incorrectly met; run �[38;5;111myarn explain peer-requirements <hash>�[39m for details, where �[38;5;111m<hash>�[39m is the six-letter p-prefixed code.
655:  �[91m➤�[39m YN0028: │ The lockfile would have been modified by this install, which is explicitly forbidden.
656:  ##[endgroup]
657:  �[91m➤�[39m YN0028: The lockfile would have been modified by this install, which is explicitly forbidden.
658:  �[94m➤�[39m �[90mYN0000�[39m: └ Completed
659:  �[91m➤�[39m YN0000: · Failed with errors in 12s 742ms
660:  Installing core node_modules failed
661:  ##[error]Process completed with exit code 1.
    ✨ CI feedback usage guide:

    The CI feedback tool (/checks) automatically triggers when a PR has a failed check.
    The tool analyzes the failed checks and provides several feedbacks:

    • Failed stage
    • Failed test name
    • Failure summary
    • Relevant error logs

    In addition to being automatically triggered, the tool can also be invoked manually by commenting on a PR:

    /checks "https://github.com/{repo_name}/actions/runs/{run_number}/job/{job_number}"

    where {repo_name} is the name of the repository, {run_number} is the run number of the failed check, and {job_number} is the job number of the failed check.

    Configuration options

    • enable_auto_checks_feedback - if set to true, the tool will automatically provide feedback when a check is failed. Default is true.
    • excluded_checks_list - a list of checks to exclude from the feedback, for example: ["check1", "check2"]. Default is an empty list.
    • enable_help_text - if set to true, the tool will provide a help message with the feedback. Default is true.
    • persistent_comment - if set to true, the tool will overwrite a previous checks comment with the new feedback. Default is true.
    • final_update_message - if persistent_comment is true and updating a previous checks message, the tool will also create a new message: "Persistent checks updated to latest commit". Default is true.

    See more information about the checks tool in the docs.

    @qodo-merge-pro Qodo Merge Pro
    Copy link

    qodo-merge-pro bot commented Sep 6, 2024

    PR-Agent was enabled for this repository. To continue using it, please link your git user with your CodiumAI identity here.

    CI Failure Feedback 🧐

    Action: Codacy Security Scan

    Failed stage: Run Codacy Analysis CLI [❌]

    Failed test name: ""

    Failure summary:

    The action failed due to multiple issues encountered during the analysis process:

  • The pmd and pmd-legacy analyses failed because no rules were found, possibly due to a misspelled
    rule name or missing configuration.
  • The eslint analysis failed because it could not load the configuration "plugin:react/jsx-runtime"
    from the .eslintrc file.
  • The phpmd analysis failed due to an IOException caused by an "Argument list too long" error,
    indicating that the command executed had too many arguments.

    • Relevant error logs: 
    1:  ##[group]Operating System
2:  Ubuntu
...

686:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/twitter/scream.png 
687:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for docker/images/nginx/certs/vanilla.localhost.crt 
688:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/twitter/sleepy.png 
689:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/rice/smile.png 
690:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for applications/dashboard/design/images/sectionIcons/2column.svg 
691:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/fonts/Raleway/1Ptsg8zYS_SKggPNyCg4TYFqL_KWxQ.woff2 
692:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for library/src/scripts/embeddedContent/storybook/attachments/wide/20x5-big.png 
693:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/VanillaInThisDiscussion/icon.png 
694:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for applications/dashboard/design/images/error.png 
...

840:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/design/unresolved.svg 
841:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/twitter/triumph.png 
842:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/yahoo/giggle.gif 
843:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for tests/fixtures/formats/html/paragraphs/output.txt 
844:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/fonts/Roboto/KFOmCnqEu92Fr1Mu7GxKKTU1Kvnz.woff2 
845:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/yahoo/clap.gif 
846:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/emoji/neutral.png 
847:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/fonts/Montserrat/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2 
848:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for library/Vanilla/EmbeddedContent/Embeds/ErrorEmbed.twig 
...

1117:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for applications/dashboard/design/images/widgetIcons/cta.svg 
1118:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for cli/bin/vnla-cli 
1119:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/little/[email protected] 
1120:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for applications/dashboard/styleguide/public/resources/images/dirty-rodent.jpg 
1121:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/fonts/Roboto Condensed/ieVl2ZhZI2eCN5jzbjEETS9weq8-19-7DQk6YvNkeg.woff2 
1122:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/emoji/star.png 
1123:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for tests/fixtures/formats/wysiwyg/inline-formatting/output.txt 
1124:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for library/src/scripts/embeddedContent/storybook/attachments/tall/5x20-xs.png 
1125:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/views/error.twig 
...

1413:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for packages/vanilla-icons/icons/data-drag-and-drop.svg 
1414:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/swagger-ui/yarn.lock 
1415:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/GooglePrettify/google-prettify.png 
1416:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for tests/fixtures/formats/ipb/carriage-returns/input.txt 
1417:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for plugins/emojiextender/emoji/twitter/relieved.png 
1418:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for addons/themes/theme-boilerplate/design/custom.css.map 
1419:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for themes/2011Compatibility/design/screenshot.png 
1420:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for .allowed-licenses 
1421:  09/06 05:00:58 �[34mINFO �[0;39m �[36mc.c.a.c.utils.LanguagesHelper:16�[0;39m - No language found for resources/views/userContentError.twig 
...

1682:  09/06 05:00:59 �[34mINFO �[0;39m �[36mc.c.a.c.t.DuplicationToolCollector:81�[0;39m - No duplication tools found for language SASS 
1683:  09/06 05:00:59 �[34mINFO �[0;39m �[36mc.c.a.c.t.DuplicationToolCollector:81�[0;39m - No duplication tools found for language HTML 
1684:  09/06 05:00:59 �[34mINFO �[0;39m �[36mc.c.a.c.t.DuplicationToolCollector:81�[0;39m - No duplication tools found for language Dockerfile 
1685:  09/06 05:00:59 �[34mINFO �[0;39m �[36mc.c.a.c.t.DuplicationToolCollector:81�[0;39m - No duplication tools found for language YAML 
1686:  09/06 05:00:59 �[39mDEBUG�[0;39m �[36mCodacyPlugins:17�[0;39m - codacy/codacy-metrics-cloc:0.2.4 doesn't exist locally. 
1687:  09/06 05:00:59 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-metrics-cloc:0.2.4 exists locally. took 46ms 
1688:  09/06 05:01:03 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-metrics-cloc:0.2.4. took 4000ms 
1689:  09/06 05:01:04 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-metrics-cloc:0.2.4. took 1123ms 
1690:  09/06 05:01:04 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:50�[0;39m - Failed metrics for metrics 
...

1756:  at com.codacy.analysis.cli.Main.main(Main.scala)
1757:  09/06 05:01:04 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for pmd 
1758:  09/06 05:01:04 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run pmd with defaults 
1759:  09/06 05:01:04 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
1760:  09/06 05:01:04 �[39mDEBUG�[0;39m �[36mCodacyPlugins:17�[0;39m - codacy/codacy-pmd:3.10.2 doesn't exist locally. 
1761:  09/06 05:01:04 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-pmd:3.10.2 exists locally. took 36ms 
1762:  09/06 05:01:06 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-pmd:3.10.2. took 1968ms 
1763:  09/06 05:01:08 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-pmd:3.10.2. took 1378ms 
1764:  09/06 05:01:08 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for pmd 
1765:  java.lang.Throwable: 
1766:  Docker exited with code 1
1767:  stdout: 
1768:  stderr: Sep 06, 2024 5:01:08 AM net.sourceforge.pmd.RulesetsFactoryUtils getRuleSets
1769:  SEVERE: No rules found. Maybe you misspelled a rule name? (null)
1770:  Error executing the tool
...

1854:  09/06 05:01:20 �[34mINFO �[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:28�[0;39m - Completed analysis for csslint with 3197 results 
1855:  09/06 05:01:20 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for pmd-legacy 
1856:  09/06 05:01:20 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run pmd-legacy with defaults 
1857:  09/06 05:01:20 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
1858:  09/06 05:01:20 �[39mDEBUG�[0;39m �[36mCodacyPlugins:17�[0;39m - codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2 doesn't exist locally. 
1859:  09/06 05:01:20 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2 exists locally. took 32ms 
1860:  09/06 05:01:23 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2. took 3193ms 
1861:  09/06 05:01:24 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2. took 1257ms 
1862:  09/06 05:01:24 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for pmd-legacy 
1863:  java.lang.Throwable: 
1864:  Docker exited with code 1
1865:  stdout: 
1866:  stderr: Sep 06, 2024 5:01:24 AM net.sourceforge.pmd.RulesetsFactoryUtils getRuleSets
1867:  SEVERE: No rules found. Maybe you mispelled a rule name? (null)
1868:  Error executing the tool
...

1951:  09/06 05:01:36 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-metrics-cloc:0.2.4 exists locally. took 33ms 
1952:  09/06 05:01:37 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-metrics-cloc:0.2.4. took 1418ms 
1953:  09/06 05:01:37 �[34mINFO �[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:48�[0;39m - Completed metrics for metrics with 305 results 
1954:  09/06 05:01:37 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for pmd 
1955:  09/06 05:01:37 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run pmd with defaults 
1956:  09/06 05:01:37 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
1957:  09/06 05:01:38 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-pmd:3.10.2 exists locally. took 29ms 
1958:  09/06 05:01:39 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-pmd:3.10.2. took 1379ms 
1959:  09/06 05:01:39 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for pmd 
1960:  java.lang.Throwable: 
1961:  Docker exited with code 1
1962:  stdout: 
1963:  stderr: Sep 06, 2024 5:01:39 AM net.sourceforge.pmd.RulesetsFactoryUtils getRuleSets
1964:  SEVERE: No rules found. Maybe you misspelled a rule name? (null)
1965:  Error executing the tool
...

2031:  09/06 05:01:50 �[34mINFO �[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:66�[0;39m - Completed duplication for duplication with 43 results 
2032:  09/06 05:01:50 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for eslint 
2033:  09/06 05:01:50 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run eslint with defaults 
2034:  09/06 05:01:50 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
2035:  09/06 05:01:50 �[39mDEBUG�[0;39m �[36mCodacyPlugins:17�[0;39m - codacy/codacy-eslint:5.9.1 doesn't exist locally. 
2036:  09/06 05:01:50 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-eslint:5.9.1 exists locally. took 30ms 
2037:  09/06 05:02:11 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-eslint:5.9.1. took 21724ms 
2038:  09/06 05:02:13 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-eslint:5.9.1. took 2141ms 
2039:  09/06 05:02:13 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for eslint 
2040:  java.lang.Throwable: 
2041:  Docker exited with code 1
2042:  stdout: 
2043:  stderr: Error: Failed to load config "plugin:react/jsx-runtime" to extend from.
2044:  Referenced from: /src/.eslintrc
2045:  at configInvalidError (/node_modules/eslint/lib/cli-engine/config-array-factory.js:295:9)
...

2113:  09/06 05:02:14 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-metrics-cloc:0.2.4 exists locally. took 39ms 
2114:  09/06 05:02:15 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-metrics-cloc:0.2.4. took 1345ms 
2115:  09/06 05:02:15 �[34mINFO �[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:48�[0;39m - Completed metrics for metrics with 222 results 
2116:  09/06 05:02:15 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for eslint 
2117:  09/06 05:02:15 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run eslint with defaults 
2118:  09/06 05:02:15 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
2119:  09/06 05:02:15 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-eslint:5.9.1 exists locally. took 30ms 
2120:  09/06 05:02:17 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-eslint:5.9.1. took 2125ms 
2121:  09/06 05:02:17 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for eslint 
2122:  java.lang.Throwable: 
2123:  Docker exited with code 1
2124:  stdout: 
2125:  stderr: Error: Failed to load config "plugin:react/jsx-runtime" to extend from.
2126:  Referenced from: /src/.eslintrc
2127:  at configInvalidError (/node_modules/eslint/lib/cli-engine/config-array-factory.js:295:9)
...

2228:  09/06 05:02:52 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-stylelint:2.9.10. took 11460ms 
2229:  09/06 05:03:22 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-stylelint:2.9.10. took 29565ms 
2230:  09/06 05:03:24 �[34mINFO �[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:28�[0;39m - Completed analysis for stylelint with 241509 results 
2231:  09/06 05:03:24 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for eslint 
2232:  09/06 05:03:24 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run eslint with defaults 
2233:  09/06 05:03:24 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
2234:  09/06 05:03:24 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-eslint:5.9.1 exists locally. took 31ms 
2235:  09/06 05:03:26 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-eslint:5.9.1. took 2124ms 
2236:  09/06 05:03:26 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for eslint 
2237:  java.lang.Throwable: 
2238:  Docker exited with code 1
2239:  stdout: 
2240:  stderr: Error: Failed to load config "plugin:react/jsx-runtime" to extend from.
2241:  Referenced from: /src/.eslintrc
2242:  at configInvalidError (/node_modules/eslint/lib/cli-engine/config-array-factory.js:295:9)
...

2306:  at scala.Option.foreach(Option.scala:407)
2307:  at com.codacy.analysis.cli.command.CommandAppWithBaseCommand.main(CommandAppWithBaseCommand.scala:88)
2308:  at com.codacy.analysis.cli.Main.main(Main.scala)
2309:  09/06 05:03:26 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for pmd-legacy 
2310:  09/06 05:03:26 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run pmd-legacy with defaults 
2311:  09/06 05:03:26 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
2312:  09/06 05:03:26 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2 exists locally. took 33ms 
2313:  09/06 05:03:28 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-pmdjava:2.0.0-pmdlegacy.57fdbf2. took 1265ms 
2314:  09/06 05:03:28 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for pmd-legacy 
2315:  java.lang.Throwable: 
2316:  Docker exited with code 1
2317:  stdout: 
2318:  stderr: Sep 06, 2024 5:03:28 AM net.sourceforge.pmd.RulesetsFactoryUtils getRuleSets
2319:  SEVERE: No rules found. Maybe you mispelled a rule name? (null)
2320:  Error executing the tool
...

2382:  at com.codacy.analysis.cli.Main.main(Main.scala)
2383:  09/06 05:03:28 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:192�[0;39m - Could not find local extra configuration for phpmd 
2384:  09/06 05:03:28 �[34mINFO �[0;39m �[36mc.c.a.c.a.AnalyseExecutor:181�[0;39m - Preparing to run phpmd with defaults 
2385:  09/06 05:03:28 �[34mINFO �[0;39m �[36mc.c.analysis.core.tools.Tool:101�[0;39m - Using the root directory /home/runner/work/vanilla/vanilla to run 
2386:  09/06 05:03:28 �[39mDEBUG�[0;39m �[36mCodacyPlugins:17�[0;39m - codacy/codacy-phpmd:2.5.3 doesn't exist locally. 
2387:  09/06 05:03:28 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Verifying if docker image codacy/codacy-phpmd:2.5.3 exists locally. took 32ms 
2388:  09/06 05:03:30 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Pulling docker image codacy/codacy-phpmd:2.5.3. took 2268ms 
2389:  09/06 05:03:31 �[34mINFO �[0;39m �[36mCodacyPlugins:26�[0;39m - Running docker image codacy/codacy-phpmd:2.5.3. took 1100ms 
2390:  09/06 05:03:31 �[1;31mERROR�[0;39m �[36mc.c.a.c.a.CodacyPluginsAnalyser:30�[0;39m - Failed analysis for phpmd 
2391:  java.lang.Throwable: 
2392:  Docker exited with code 1
2393:  stdout: 
2394:  stderr: Error executing the tool
2395:  java.io.IOException: Cannot run program "/vendor/bin/phpmd": error=7, Argument list too long
...

2403:  at codacy.phpmd.PhpMd$.apply(PhpMd.scala:52)
2404:  at com.codacy.tools.scala.seed.DockerEngine.executeTool(DockerEngine.scala:53)
2405:  at com.codacy.tools.scala.seed.DockerEngine.$anonfun$main$2(DockerEngine.scala:35)
2406:  at scala.util.Success.map(Try.scala:262)
2407:  at com.codacy.tools.scala.seed.DockerEngine.$anonfun$main$1(DockerEngine.scala:27)
2408:  at scala.util.Success.flatMap(Try.scala:258)
2409:  at com.codacy.tools.scala.seed.DockerEngine.main(DockerEngine.scala:26)
2410:  at codacy.Engine.main(Engine.scala)
2411:  Caused by: java.io.IOException: error=7, Argument list too long
...

2549:  at com.codacy.analysis.cli.MainImpl.run(Main.scala:14)
2550:  at com.codacy.analysis.cli.command.CLIApp.run(CLIApp.scala:22)
2551:  at com.codacy.analysis.cli.command.CLIApp.run(CLIApp.scala:18)
2552:  at com.codacy.analysis.cli.command.CommandAppWithBaseCommand.$anonfun$main$1(CommandAppWithBaseCommand.scala:103)
2553:  at com.codacy.analysis.cli.command.CommandAppWithBaseCommand.$anonfun$main$1$adapted(CommandAppWithBaseCommand.scala:88)
2554:  at scala.Option.foreach(Option.scala:407)
2555:  at com.codacy.analysis.cli.command.CommandAppWithBaseCommand.main(CommandAppWithBaseCommand.scala:88)
2556:  at com.codacy.analysis.cli.Main.main(Main.scala)
2557:  ##[error]Process completed with exit code 1.
    ✨ CI feedback usage guide:

    The CI feedback tool (/checks) automatically triggers when a PR has a failed check.
    The tool analyzes the failed checks and provides several feedbacks:

    • Failed stage
    • Failed test name
    • Failure summary
    • Relevant error logs

    In addition to being automatically triggered, the tool can also be invoked manually by commenting on a PR:

    /checks "https://github.com/{repo_name}/actions/runs/{run_number}/job/{job_number}"

    where {repo_name} is the name of the repository, {run_number} is the run number of the failed check, and {job_number} is the job number of the failed check.

    Configuration options

    • enable_auto_checks_feedback - if set to true, the tool will automatically provide feedback when a check is failed. Default is true.
    • excluded_checks_list - a list of checks to exclude from the feedback, for example: ["check1", "check2"]. Default is an empty list.
    • enable_help_text - if set to true, the tool will provide a help message with the feedback. Default is true.
    • persistent_comment - if set to true, the tool will overwrite a previous checks comment with the new feedback. Default is true.
    • final_update_message - if persistent_comment is true and updating a previous checks message, the tool will also create a new message: "Persistent checks updated to latest commit". Default is true.

    See more information about the checks tool in the docs.

    Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
    Reviewers
    No reviews
    Assignees
    No one assigned
    Labels
    Bug fix enhancement New feature or request Review effort [1-5]: 1
    Projects
    None yet
    Milestone
    No milestone
    Development

    Successfully merging this pull request may close these issues.
    2 participants
    @tulik @snyk-bot