René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"\"Failed to attach findings to engagement\" error when sending trivy k8s scan results to DefectDojo","articleBody":"## 🐞 Bug report\r\n\u003c!--\r\nThank you for reporting an issue in our project 🙌\r\n\r\nBefore opening a new issue, please make sure that we do not have any duplicates already open. You can ensure this by searching the issue list for this repository. If there is a duplicate, please close your issue and add a comment to the existing issue instead.\r\n--\u003e\r\n\r\n### Describe the bug\r\n\r\nWe scan Kubernetes cluster using `trivy k8s` command with the flag `--scanners=misconfig,rbac` and the hook `secureCodeBox/persistence-defectdojo` fails with the following error:\r\n\r\n```\r\nException in thread \"main\" io.securecodebox.persistence.defectdojo.exception.PersistenceException: Failed to attach findings to engagement.\r\n\tat io.securecodebox.persistence.defectdojo.service.DefaultImportScanService.createFindings(DefaultImportScanService.java:124)\r\n\tat io.securecodebox.persistence.defectdojo.service.DefaultImportScanService.reimportScan(DefaultImportScanService.java:75)\r\n\tat io.securecodebox.persistence.strategies.VersionedEngagementsStrategy.run(VersionedEngagementsStrategy.java:105)\r\n\tat io.securecodebox.persistence.DefectDojoPersistenceProvider.main(DefectDojoPersistenceProvider.java:43)\r\n```\r\n### Steps To Reproduce\r\n\r\nRun trivy scan with the following yaml:\r\n```\r\napiVersion: \"execution.securecodebox.io/v1\"\r\nkind: Scan\r\nmetadata:\r\n  name: \"trivy-k8s\"\r\nspec:\r\n  scanType: \"trivy-k8s\"\r\n  parameters:\r\n    - \"--scanners\"\r\n    - \"misconfig,rbac\"\r\n    - \"cluster\"\r\n```\r\n\r\nCheck if the hook `persistence-defectdojo` succeeds.\r\n\r\n### Expected behavior\r\n\r\nThe hook should succeed.\r\n\r\n### System (please complete the following information):\r\n\r\n- operator-4.3.0\r\n- trivy-4.3.0\r\n- persistence-defectdojo-4.3.0\r\n\r\nGoogle Kubernetes Engine\r\n\r\n```\r\nClient Version: version.Info{Major:\"1\", Minor:\"25\", GitVersion:\"v1.25.4\", GitCommit:\"872a965c6c6526caa949f0c6ac028ef7aff3fb78\", GitTreeState:\"clean\", BuildDate:\"2022-11-09T13:28:30Z\", GoVersion:\"go1.19.3\", Compiler:\"gc\", Platform:\"darwin/arm64\"}\r\nKustomize Version: v4.5.7\r\nServer Version: version.Info{Major:\"1\", Minor:\"26\", GitVersion:\"v1.26.10-gke.1101000\", GitCommit:\"375ed214cfa092ed25d2472c1709db5d7dcda078\", GitTreeState:\"clean\", BuildDate:\"2023-11-06T09:23:17Z\", GoVersion:\"go1.20.10 X:boringcrypto\", Compiler:\"gc\", Platform:\"linux/amd64\"}\r\n```\r\n\r\n### Screenshots / Logs\r\n\u003c!-- If applicable, add screenshots to help explain your problem. --\u003e\r\n\r\n### Additional context\r\n\u003c!-- Add any other context about the problem here. --\u003e\r\n","author":{"url":"https://github.com/danil-smirnov","@type":"Person","name":"danil-smirnov"},"datePublished":"2024-02-09T09:45:59.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":4},"url":"https://github.com/2271/secureCodeBox/issues/2271"}