[midPoint-ci] Build failed in Jenkins: midPoint - master - security checks #570

Fri Mar 7 07:55:30 CET 2025

See <https://jenkins.evolveum.com/job/midpoint-master-security/570/display/redirect>

Changes:


------------------------------------------
[...truncated 89512 lines...]
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.repo:repo-api:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.repo:audit-api:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.repo:repo-cache:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.infra:schema:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.repo:task-api:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Found snapshot reactor project in aggregate for com.evolveum.midpoint.repo:security-api:4.10-SNAPSHOT - creating a virtual dependency as the snapshot found in the repository may contain outdated dependencies.
[INFO] Checking for updates
[INFO] NVD CVE requires several updates; this could take a couple of minutes.
[INFO] Download Started for NVD CVE - 2002
[INFO] Download Complete for NVD CVE - 2002  (1364 ms)
[INFO] Processing Started for NVD CVE - 2002
[INFO] Download Started for NVD CVE - 2003
[INFO] Download Complete for NVD CVE - 2003  (984 ms)
[INFO] Processing Started for NVD CVE - 2003
[INFO] Processing Complete for NVD CVE - 2002  (6242 ms)
[INFO] Processing Complete for NVD CVE - 2003  (1651 ms)
[INFO] Download Started for NVD CVE - 2004
[INFO] Download Complete for NVD CVE - 2004  (4186 ms)
[INFO] Processing Started for NVD CVE - 2004
[INFO] Processing Complete for NVD CVE - 2004  (2305 ms)
[INFO] Download Started for NVD CVE - 2005
[INFO] Download Complete for NVD CVE - 2005  (1379 ms)
[INFO] Processing Started for NVD CVE - 2005
[INFO] Processing Complete for NVD CVE - 2005  (3261 ms)
[INFO] Download Started for NVD CVE - 2006
[INFO] Download Complete for NVD CVE - 2006  (1616 ms)
[INFO] Processing Started for NVD CVE - 2006
[INFO] Download Started for NVD CVE - 2007
[INFO] Processing Complete for NVD CVE - 2006  (5099 ms)
[INFO] Download Complete for NVD CVE - 2007  (1698 ms)
[INFO] Processing Started for NVD CVE - 2007
[INFO] Download Started for NVD CVE - 2008
[INFO] Processing Complete for NVD CVE - 2007  (4604 ms)
[INFO] Download Complete for NVD CVE - 2008  (1585 ms)
[INFO] Processing Started for NVD CVE - 2008
[INFO] Download Started for NVD CVE - 2009
[INFO] Download Complete for NVD CVE - 2009  (1553 ms)
[INFO] Processing Started for NVD CVE - 2009
[INFO] Processing Complete for NVD CVE - 2008  (6239 ms)
[INFO] Download Started for NVD CVE - 2010
[INFO] Download Complete for NVD CVE - 2010  (1571 ms)
[INFO] Processing Started for NVD CVE - 2010
[INFO] Processing Complete for NVD CVE - 2009  (5728 ms)
[INFO] Download Started for NVD CVE - 2011
[INFO] Download Complete for NVD CVE - 2011  (1475 ms)
[INFO] Processing Started for NVD CVE - 2011
[INFO] Processing Complete for NVD CVE - 2010  (6589 ms)
[INFO] Download Started for NVD CVE - 2012
[INFO] Download Complete for NVD CVE - 2012  (1587 ms)
[INFO] Processing Started for NVD CVE - 2012
[INFO] Processing Complete for NVD CVE - 2011  (7724 ms)
[INFO] Download Started for NVD CVE - 2013
[INFO] Download Complete for NVD CVE - 2013  (1708 ms)
[INFO] Processing Started for NVD CVE - 2013
[INFO] Processing Complete for NVD CVE - 2012  (8996 ms)
[INFO] Download Started for NVD CVE - 2014
[INFO] Download Complete for NVD CVE - 2014  (1719 ms)
[INFO] Processing Started for NVD CVE - 2014
[INFO] Processing Complete for NVD CVE - 2013  (8725 ms)
[INFO] Download Started for NVD CVE - 2015
[INFO] Download Complete for NVD CVE - 2015  (1803 ms)
[INFO] Processing Started for NVD CVE - 2015
[INFO] Processing Complete for NVD CVE - 2014  (7638 ms)
[INFO] Download Started for NVD CVE - 2016
[INFO] Download Complete for NVD CVE - 2016  (1820 ms)
[INFO] Processing Started for NVD CVE - 2016
[INFO] Processing Complete for NVD CVE - 2015  (6303 ms)
[INFO] Download Started for NVD CVE - 2017
[INFO] Download Complete for NVD CVE - 2017  (2138 ms)
[INFO] Processing Started for NVD CVE - 2017
[INFO] Processing Complete for NVD CVE - 2016  (6296 ms)
[INFO] Download Started for NVD CVE - 2018
[INFO] Download Complete for NVD CVE - 2018  (2332 ms)
[INFO] Processing Started for NVD CVE - 2018
[INFO] Processing Complete for NVD CVE - 2017  (7496 ms)
[INFO] Download Started for NVD CVE - 2019
[INFO] Download Complete for NVD CVE - 2019  (2685 ms)
[INFO] Processing Started for NVD CVE - 2019
[INFO] Processing Complete for NVD CVE - 2018  (7061 ms)
[INFO] Download Started for NVD CVE - 2020
[INFO] Processing Complete for NVD CVE - 2019  (6849 ms)
[INFO] Download Complete for NVD CVE - 2020  (9070 ms)
[INFO] Processing Started for NVD CVE - 2020
[INFO] Download Started for NVD CVE - 2021
[INFO] Download Complete for NVD CVE - 2021  (3119 ms)
[INFO] Processing Started for NVD CVE - 2021
[INFO] Processing Complete for NVD CVE - 2020  (8699 ms)
[INFO] Download Started for NVD CVE - 2022
[INFO] Download Complete for NVD CVE - 2022  (3200 ms)
[INFO] Processing Started for NVD CVE - 2022
[INFO] Processing Complete for NVD CVE - 2021  (9199 ms)
[INFO] Download Started for NVD CVE - 2023
[INFO] Download Complete for NVD CVE - 2023  (3323 ms)
[INFO] Processing Started for NVD CVE - 2023
[INFO] Processing Complete for NVD CVE - 2022  (10216 ms)
[INFO] Download Started for NVD CVE - 2024
[INFO] Download Complete for NVD CVE - 2024  (3718 ms)
[INFO] Processing Started for NVD CVE - 2024
[INFO] Processing Complete for NVD CVE - 2023  (11304 ms)
[INFO] Download Started for NVD CVE - 2025
[INFO] Download Complete for NVD CVE - 2025  (1108 ms)
[INFO] Processing Started for NVD CVE - 2025
[INFO] Processing Complete for NVD CVE - 2025  (489 ms)
[INFO] Processing Complete for NVD CVE - 2024  (8061 ms)
[INFO] Download Started for NVD CVE - Modified
[INFO] Download Complete for NVD CVE - Modified  (1102 ms)
[INFO] Processing Started for NVD CVE - Modified
[ERROR] org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to parse CPE: cpe:2.3:a:exclusiveaddons:exclusive_addons_for_elementor:*:*:*:*:free:wordpress:*:*	
org.owasp.dependencycheck.data.update.exception.UpdateException: org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to parse CPE: cpe:2.3:a:exclusiveaddons:exclusive_addons_for_elementor:*:*:*:*:free:wordpress:*:*	
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:157)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41)
    at java.util.concurrent.FutureTask.run (FutureTask.java:317)
    at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642)
    at java.lang.Thread.run (Thread.java:1583)
Caused by: org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to parse CPE: cpe:2.3:a:exclusiveaddons:exclusive_addons_for_elementor:*:*:*:*:free:wordpress:*:*	
    at org.owasp.dependencycheck.data.nvdcve.CveDB.parseCpe (CveDB.java:1257)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.lambda$parseCpes$3 (CveDB.java:1214)
    at java.util.ArrayList.forEach (ArrayList.java:1596)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.parseCpes (CveDB.java:1213)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:824)
    at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:115)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41)
    at java.util.concurrent.FutureTask.run (FutureTask.java:317)
    at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642)
    at java.lang.Thread.run (Thread.java:1583)
Caused by: us.springett.parsers.cpe.exceptions.CpeParsingException: Invalid other component: CPE strings may not contain whitespace; consider using an underscore instead
    at us.springett.parsers.cpe.CpeParser.parse23 (CpeParser.java:230)
    at us.springett.parsers.cpe.CpeParser.parse (CpeParser.java:77)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.parseCpe (CveDB.java:1247)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.lambda$parseCpes$3 (CveDB.java:1214)
    at java.util.ArrayList.forEach (ArrayList.java:1596)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.parseCpes (CveDB.java:1213)
    at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:824)
    at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:115)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114)
    at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41)
    at java.util.concurrent.FutureTask.run (FutureTask.java:317)
    at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642)
    at java.lang.Thread.run (Thread.java:1583)
[WARNING] A new version of dependency-check is available. Consider updating to version 12.1.0.
[INFO] Updating CISA Known Exploited Vulnerability list: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
[INFO] Begin database defrag
[INFO] End database defrag (4371 ms)
[WARNING] Unable to update 1 or more Cached Web DataSource, using local data instead. Results may not include recent vulnerabilities.
[ERROR] Unable to continue dependency-check analysis.
[INFO] ------------------------------------------------------------------------
[INFO] Reactor Summary for midPoint Project 4.10-SNAPSHOT:
[INFO] 
[INFO] midPoint Project ................................... FAILURE [03:50 min]
[INFO] midPoint Infrastructure ............................ SKIPPED
[INFO] midPoint Infrastructure - schema ................... SKIPPED
[INFO] midPoint Repository ................................ SKIPPED
[INFO] midPoint Repository - api .......................... SKIPPED
[INFO] midPoint Task Manager - api ........................ SKIPPED
[INFO] midPoint Infrastructure - testing utils (lvl 2) .... SKIPPED
[INFO] midPoint Infrastructure - common ................... SKIPPED
[INFO] midPoint Audit - api ............................... SKIPPED
[INFO] midPoint Security - api ............................ SKIPPED
[INFO] midPoint Repository - SQL common support ........... SKIPPED
[INFO] midPoint Repository - sql repository ............... SKIPPED
[INFO] midPoint System Initialization ..................... SKIPPED
[INFO] midPoint Repository - new SQL repository ........... SKIPPED
[INFO] midPoint Repository - sql repository test .......... SKIPPED
[INFO] midPoint Repository Cache .......................... SKIPPED
[INFO] midPoint Audit - logging impl ...................... SKIPPED
[INFO] midPoint Icf Connectors ............................ SKIPPED
[INFO] Dummy Resource ..................................... SKIPPED
[INFO] midPoint Repository - test utils ................... SKIPPED
[INFO] midPoint Security - impl ........................... SKIPPED
[INFO] midPoint Task Manager - Quartz impl ................ SKIPPED
[INFO] midPoint Tools ..................................... SKIPPED
[INFO] midPoint Tools - Ninja ............................. SKIPPED
[INFO] midPoint Tools - custom Spring Boot JAR layout ..... SKIPPED
[INFO] midPoint Infrastructure - pure JAXB schema ......... SKIPPED
[INFO] midPoint Repo Commons .............................. SKIPPED
[INFO] midPoint Security Enforcer - api ................... SKIPPED
[INFO] midPoint Security Enforcer - impl .................. SKIPPED
[INFO] midPoint Provisioning .............................. SKIPPED
[INFO] midPoint Provisioning - api ........................ SKIPPED
[INFO] Unified Connector Framework - api .................. SKIPPED
[INFO] Dummy Connector .................................... SKIPPED
[INFO] Unified Connector Framework - ConnId impl .......... SKIPPED
[INFO] Unified Connector Framework - Built-in impl ........ SKIPPED
[INFO] midPoint Provisioning - impl ....................... SKIPPED
[INFO] midPoint Model ..................................... SKIPPED
[INFO] midPoint Model - api ............................... SKIPPED
[INFO] midPoint Model - common ............................ SKIPPED
[INFO] midPoint Notifications - api ....................... SKIPPED
[INFO] Dummy Connector Fake ............................... SKIPPED
[INFO] midPoint Authentication - api ...................... SKIPPED
[INFO] midPoint Model - test .............................. SKIPPED
[INFO] midPoint Report - api .............................. SKIPPED
[INFO] midPoint Cases - api ............................... SKIPPED
[INFO] midPoint Access Certification - api ................ SKIPPED
[INFO] midPoint Model - impl .............................. SKIPPED
[INFO] midPoint Notifications - impl ...................... SKIPPED
[INFO] midPoint Report - impl ............................. SKIPPED
[INFO] midPoint Model - integration tests ................. SKIPPED
[INFO] midPoint Workflow - api ............................ SKIPPED
[INFO] midPoint Cases - impl .............................. SKIPPED
[INFO] midPoint Workflow - impl ........................... SKIPPED
[INFO] midPoint Access Certification - impl ............... SKIPPED
[INFO] midPoint Authentication - impl ..................... SKIPPED
[INFO] midPoint REST-ish service implementation ........... SKIPPED
[INFO] midPoint Customizations ............................ SKIPPED
[INFO] midPoint User Interface ............................ SKIPPED
[INFO] midPoint User Interface - admin web gui ............ SKIPPED
[INFO] midPoint Spring Boot JAR ........................... SKIPPED
[INFO] midPoint Testing Infrastructure .................... SKIPPED
[INFO] midPoint Testing - Resource Connection Tests ....... SKIPPED
[INFO] midPoint Testing - Long Tests ...................... SKIPPED
[INFO] midPoint Testing - Story Tests ..................... SKIPPED
[INFO] midPoint Testing - REST API ........................ SKIPPED
[INFO] midPoint Distribution .............................. SKIPPED
[INFO] midPoint API Distribution .......................... SKIPPED
[INFO] midPoint JavaDoc ................................... SKIPPED
[INFO] ------------------------------------------------------------------------
[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------
[INFO] Total time:  03:53 min
[INFO] Finished at: 2025-03-07T06:55:28Z
[INFO] ------------------------------------------------------------------------
[ERROR] Failed to execute goal org.owasp:dependency-check-maven:8.2.1:aggregate (default-cli) on project midpoint: Fatal exception(s) analyzing midPoint Project: One or more exceptions occurred during analysis:
[ERROR] 	UpdateException: org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to parse CPE: cpe:2.3:a:exclusiveaddons:exclusive_addons_for_elementor:*:*:*:*:free:wordpress:*:*	
[ERROR] 		caused by DatabaseException: Unable to parse CPE: cpe:2.3:a:exclusiveaddons:exclusive_addons_for_elementor:*:*:*:*:free:wordpress:*:*	
[ERROR] 		caused by CpeParsingException: Invalid other component: CPE strings may not contain whitespace; consider using an underscore instead
[ERROR] 	NoDataException: No documents exist
[ERROR] -> [Help 1]
[ERROR] 
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR] 
[ERROR] For more information about the errors and possible solutions, please read the following articles:
[ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoExecutionException
[Pipeline] }
[Pipeline] // container
[Pipeline] }
[Pipeline] // stage
[Pipeline] error
[Pipeline] step