kubevuln icon indicating copy to clipboard operation
kubevuln copied to clipboard

Published 20 hours ago verified publisher icon kubescape

service error - ScanCVE, error creating SBOM

Open zhuw726 opened this issue 6 months ago • 0 comments

Description

Service error - ScanCVE, error creating SBOM, error as below:

{
  "level": "error",
  "ts": "2024-08-20T07:47:58Z",
  "msg": "service error - ScanCVE",
  "error": "error creating SBOM: errors occurred attempting to resolve 'docker-upstream.AABBCC.com/istio/proxyv2@sha256:2f112f92629576':\n - docker: docker not available: failed to connect to Docker daemon. Ensure Docker is running and accessible\n - podman: podman not available: no host address\n - containerd: containerd not available: no grpc connection or services is available: unavailable\n - oci-registry: failed to get image descriptor from registry: Get \"https://docker-upstream.AABBCC .com/v2/\": Internal Server Error\n - additionally, the following providers failed with file does not exist: docker-archive, oci-archive, oci-dir, singularity, oci-dir, local-file, local-directory",
  "wlid": "wlid://cluster-arn-aws-eks-region-AWSACCOUNT-cluster-CLUSTERNAME/namespace-blobstore/deployment-gateway",
  "imageSlug": "docker-upstream.AABBCC.com-istio-proxyv2-1.22.2-distroless-629576",
  "imageTag": "docker-upstream.AABBCC.com/istio/proxyv2:1.22.2-distroless",
  "imageHash": "docker-upstream.AABBCC.com/istio/proxyv2@sha256:2f454292629576"
}

Environment

OS: AmazonLinux2 Version: 0.3.25

Steps To Reproduce

helm repo add kubescape https://kubescape.github.io/helm-charts/ ; 
helm repo update ; 
helm upgrade --install kubescape kubescape/kubescape-operator -n kubescape --create-namespace --set clusterName=`kubectl config current-context` --set capabilities.continuousScan=enable --set kubevuln.verbose=true

Expected behavior

No error appear.

Actual Behavior

Error as below:

{
  "level": "error",
  "ts": "2024-08-20T07:47:58Z",
  "msg": "service error - ScanCVE",
  "error": "error creating SBOM: errors occurred attempting to resolve 'docker-upstream.AABBCC.com/istio/proxyv2@sha256:2f112f92629576':\n - docker: docker not available: failed to connect to Docker daemon. Ensure Docker is running and accessible\n - podman: podman not available: no host address\n - containerd: containerd not available: no grpc connection or services is available: unavailable\n - oci-registry: failed to get image descriptor from registry: Get \"https://docker-upstream.AABBCC .com/v2/\": Internal Server Error\n - additionally, the following providers failed with file does not exist: docker-archive, oci-archive, oci-dir, singularity, oci-dir, local-file, local-directory",
  "wlid": "wlid://cluster-arn-aws-eks-region-AWSACCOUNT-cluster-CLUSTERNAME/namespace-blobstore/deployment-gateway",
  "imageSlug": "docker-upstream.AABBCC.com-istio-proxyv2-1.22.2-distroless-629576",
  "imageTag": "docker-upstream.AABBCC.com/istio/proxyv2:1.22.2-distroless",
  "imageHash": "docker-upstream.AABBCC.com/istio/proxyv2@sha256:2f454292629576"
}

Additional context

zhuw726 avatar Aug 21 '24 07:08 zhuw726