New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Read Connection Timeout - Downloading Grype DB #306
Comments
I think you're confusing two options, @saisatishkarra. The We have had some reports of the database (and listing file) downloads being flaky over the past few weeks. These are hosted on CDN, outside of our control for the most part. We have been able to sporadically reproduce problems and have provided as much information as we can to the CDN provider, but haven't been able to identify what the issue is nor have we been able to get any resolution. |
My concern is mostly around the flaky CDN downloads for the DB update every time the I am also interested on how to maintain db in a offline environment and specify it as an input for the action to import it without having to pull from the online network for every run? Any pointers to use and scale this offline approach across multiple repository pipelines is appreciated. |
Issue
Recently in our CI, we have been experiencing grype db tcp read timeouts while downloading the db as part of using the action. This is leading to delayed and failed CVE scanning / additional time for the build pipelines to complete.
Version
Grype version:
v0.74.4
Action Version:
anchore/scan-action@v3.6.4
Observation
Expectation
GRYPE_DB_AUTO_UPDATE: false
is set ? Does the action fail or run on first and subsequent invocations assuming no other DB is imported manually? (Eg: When invoked multiple times within the same pipeline job?) - Testing it seems it did fail (Refer screenshots in below comment)GRYPE_DB_AUTO_UPDATE: false && DB_STATUS=invalid
for first invocation of action within a single job?db.update-download-timeout
parameter in config across multiple repos using a shared workflow of this action?)The text was updated successfully, but these errors were encountered: