https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/jenkins-prismacloudscanimage-function-result-file-not-found/m-p/599783#M1306 <P>Hi Everyone</P> <P>&nbsp;</P> <P>I'm trialling scanning of container images with Prisma Cloud.&nbsp; I'm finding myself stuck where the result of the scan cannot be found and the workflow fails.&nbsp; THis happens during the PrismaCloudScanImage function rather than the later PrismaCloudPublish one.&nbsp; The error message is as follow:</P> <P>&nbsp;</P> <PRE id="out" class="console-output"><SPAN class="pipeline-node-24">[PrismaCloud_DemoBuild] $ /home/jenkins/workspace/PrismaCloud_DemoBuild/twistcli18328331056399694186 images scan --docker-address tcp://192.168.0.179:12375 --ci --publish --details --address <A href="https://europe-west9.cloud.twistlock.com/france-607222237" target="_blank" rel="noopener">https://europe-west9.cloud.twistlock.com/france-607222237</A> --ci-results-file prisma-cloud-scan-results.json dev/my-ubuntu:68 [PRISMACLOUD] failed to augment data: API error (404): Could not find the file /var/lib/twistlock/analysis/result in container </SPAN></PRE> <P>&nbsp;</P> <P>A bit about the docker setup (This is a lab environment i have no concerns about security)</P> <P>&nbsp;</P> <UL> <LI>Jenkins is running in a container</LI> <LI>The docker build agent 'alpine-dockercli' is dynamically created&nbsp; upon running the pipeline. The Connect method is SSH.&nbsp;</LI> <LI>The docker build agent is based on alpine:latest and has SSHD, Java and Docker CLI installed</LI> <LI>&nbsp;</LI> <LI>Jenkins makes an API call to a SOCAT container (192.168.0.179:12375) which exposes the REST API of the underlying docker Host&nbsp;</LI> </UL> <P>&nbsp;</P> <P>Below is the pipeline script which is the example taken from the documentation</P> <P>&nbsp;</P> <P>Any thoughts ?</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <LI-CODE lang="java">pipeline { agent {label 'alpine-dockercli'} stages{ stage('createImage') { steps{ sh 'echo "Creating Dockerfile..."' sh 'echo "FROM ubuntu:bionic" &gt; Dockerfile' sh 'echo "ENV MYSQL_HOST=DB_Server" &gt;&gt; Dockerfile' sh 'echo "ENV MYSQL_PASSWORD=5TTnvuTDJJSq6" &gt;&gt; Dockerfile' sh 'echo "LABEL description=Test_Twistlock_Jenkins_Plugin" &gt;&gt; Dockerfile' sh '''docker -H=tcp://192.168.0.179:12375 build --no-cache -t dev/my-ubuntu:$BUILD_NUMBER .''' } } } stage('twistlockScan') { steps{ prismaCloudScanImage ca: '', cert: '', dockerAddress: 'tcp://192.168.0.179:12375', ignoreImageBuildTime: true, image: 'dev/my-ubuntu:$BUILD_NUMBER', key: '', logLevel: 'debug', podmanPath: '', project: '', resultsFile: 'prisma-cloud-scan-results.json', sbom: '' input "stop" } } stage('twistlockPublish') { steps{ prismaCloudPublish resultsFilePattern: 'prisma-cloud-scan-results.json' } } } }</LI-CODE> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> Tue, 08 Oct 2024 14:33:13 GMT Julien-Potier 2024-10-08T14:33:13Z https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/jenkins-prismacloudscanimage-function-result-file-not-found/m-p/599783#M1306 <P>Hi Everyone</P> <P>&nbsp;</P> <P>I'm trialling scanning of container images with Prisma Cloud.&nbsp; I'm finding myself stuck where the result of the scan cannot be found and the workflow fails.&nbsp; THis happens during the PrismaCloudScanImage function rather than the later PrismaCloudPublish one.&nbsp; The error message is as follow:</P> <P>&nbsp;</P> <PRE id="out" class="console-output"><SPAN class="pipeline-node-24">[PrismaCloud_DemoBuild] $ /home/jenkins/workspace/PrismaCloud_DemoBuild/twistcli18328331056399694186 images scan --docker-address tcp://192.168.0.179:12375 --ci --publish --details --address <A href="https://europe-west9.cloud.twistlock.com/france-607222237" target="_blank" rel="noopener">https://europe-west9.cloud.twistlock.com/france-607222237</A> --ci-results-file prisma-cloud-scan-results.json dev/my-ubuntu:68 [PRISMACLOUD] failed to augment data: API error (404): Could not find the file /var/lib/twistlock/analysis/result in container </SPAN></PRE> <P>&nbsp;</P> <P>A bit about the docker setup (This is a lab environment i have no concerns about security)</P> <P>&nbsp;</P> <UL> <LI>Jenkins is running in a container</LI> <LI>The docker build agent 'alpine-dockercli' is dynamically created&nbsp; upon running the pipeline. The Connect method is SSH.&nbsp;</LI> <LI>The docker build agent is based on alpine:latest and has SSHD, Java and Docker CLI installed</LI> <LI>&nbsp;</LI> <LI>Jenkins makes an API call to a SOCAT container (192.168.0.179:12375) which exposes the REST API of the underlying docker Host&nbsp;</LI> </UL> <P>&nbsp;</P> <P>Below is the pipeline script which is the example taken from the documentation</P> <P>&nbsp;</P> <P>Any thoughts ?</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <LI-CODE lang="java">pipeline { agent {label 'alpine-dockercli'} stages{ stage('createImage') { steps{ sh 'echo "Creating Dockerfile..."' sh 'echo "FROM ubuntu:bionic" &gt; Dockerfile' sh 'echo "ENV MYSQL_HOST=DB_Server" &gt;&gt; Dockerfile' sh 'echo "ENV MYSQL_PASSWORD=5TTnvuTDJJSq6" &gt;&gt; Dockerfile' sh 'echo "LABEL description=Test_Twistlock_Jenkins_Plugin" &gt;&gt; Dockerfile' sh '''docker -H=tcp://192.168.0.179:12375 build --no-cache -t dev/my-ubuntu:$BUILD_NUMBER .''' } } } stage('twistlockScan') { steps{ prismaCloudScanImage ca: '', cert: '', dockerAddress: 'tcp://192.168.0.179:12375', ignoreImageBuildTime: true, image: 'dev/my-ubuntu:$BUILD_NUMBER', key: '', logLevel: 'debug', podmanPath: '', project: '', resultsFile: 'prisma-cloud-scan-results.json', sbom: '' input "stop" } } stage('twistlockPublish') { steps{ prismaCloudPublish resultsFilePattern: 'prisma-cloud-scan-results.json' } } } }</LI-CODE> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> Tue, 08 Oct 2024 14:33:13 GMT https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/jenkins-prismacloudscanimage-function-result-file-not-found/m-p/599783#M1306 Julien-Potier 2024-10-08T14:33:13Z