here is the stack trace
/home/jenkins/.local/bin/snyk-threadfix --org-id aaff7f9f-1d7d-4ddf-8faa-1dcf1a0c5c7a --project-ids f1a3e9d7-0b29-454c-bdc1-8b0d1f245ff2 --debug
Traceback (most recent call last):
File "", line 67, in from_dict
File "", line 51, in from_dict
mashumaro.exceptions.MissingField: Field "fixedIn" of type List[str] is missing in FixInfo instance
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "", line 12, in from_dict
File "", line 12, in
File "", line 69, in from_dict
mashumaro.exceptions.InvalidFieldValue: Field "fixInfo" of type FixInfo in AggregatedIssue has invalid value {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/home/jenkins/.local/bin/snyk-threadfix", line 8, in
sys.exit(run())
File "/home/jenkins/.local/lib/python3.10/site-packages/snyk_threadfix/main.py", line 327, in run
main(args)
File "/home/jenkins/.local/lib/python3.10/site-packages/snyk_threadfix/main.py", line 300, in main
threadfix_findings = create_threadfix_findings_data(args.org_id, p_id)
File "/home/jenkins/.local/lib/python3.10/site-packages/snyk_threadfix/main.py", line 245, in create_threadfix_findings_data
for i in p.vulnerabilities:
File "/home/jenkins/.local/lib/python3.10/site-packages/snyk/models.py", line 640, in vulnerabilities
aggregated_vulns = self.issueset_aggregated.filter(**vuln_filter).issues
File "/home/jenkins/.local/lib/python3.10/site-packages/snyk/managers.py", line 439, in filter
return self.klass.from_dict(resp.json())
File "", line 14, in from_dict
mashumaro.exceptions.InvalidFieldValue: Field "issues" of type List[AggregatedIssue] in IssueSetAggregated has invalid value [{'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501741', 'issueData': {'id': '839501741', 'title': 'Container could be running with outdated image', 'severity': 'low', 'originalSeverity': 'low', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-42', 'description': 'The image policy does not prevent image reuse', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].spec.template.spec.containers[pet-pod].imagePullPolicy', 'violatedPolicyPublicId': 'SNYK-CC-K8S-42', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501740', 'issueData': {'id': '839501740', 'title': 'Container is running without privilege escalation control', 'severity': 'medium', 'originalSeverity': 'medium', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-9', 'description': 'allowPrivilegeEscalation
attribute is not set to false
', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].securityContext.allowPrivilegeEscalation', 'violatedPolicyPublicId': 'SNYK-CC-K8S-9', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501739', 'issueData': {'id': '839501739', 'title': 'Container is running without liveness probe', 'severity': 'low', 'originalSeverity': 'low', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-41', 'description': 'Liveness probe is not defined', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].spec.template.spec.containers[pet-pod].livenessProbe', 'violatedPolicyPublicId': 'SNYK-CC-K8S-41', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501738', 'issueData': {'id': '839501738', 'title': 'Container is running without memory limit', 'severity': 'low', 'originalSeverity': 'low', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-4', 'description': 'Memory limit is not defined', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].resources.limits.memory', 'violatedPolicyPublicId': 'SNYK-CC-K8S-4', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501737', 'issueData': {'id': '839501737', 'title': 'Container does not drop all default capabilities', 'severity': 'medium', 'originalSeverity': 'medium', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-6', 'description': 'All default capabilities are not explicitly dropped', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].securityContext.capabilities.drop', 'violatedPolicyPublicId': 'SNYK-CC-K8S-6', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501736', 'issueData': {'id': '839501736', 'title': 'Container is running with writable root filesystem', 'severity': 'low', 'originalSeverity': 'low', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-8', 'description': 'readOnlyRootFilesystem
attribute is not set to true
', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].securityContext.readOnlyRootFilesystem', 'violatedPolicyPublicId': 'SNYK-CC-K8S-8', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501735', 'issueData': {'id': '839501735', 'title': 'Container has no CPU limit', 'severity': 'low', 'originalSeverity': 'low', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-5', 'description': 'Container has no CPU limit', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].resources.limits.cpu', 'violatedPolicyPublicId': 'SNYK-CC-K8S-5', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}, {'issueType': 'configuration', 'pkgName': '', 'pkgVersions': [], 'introducedThrough': [], 'isPatched': False, 'fixInfo': {'isUpgradable': False, 'isPinnable': False, 'isPatchable': False, 'isFixable': False, 'isPartiallyFixable': False, 'nearestFixedInVersion': ''}, 'id': '839501734', 'issueData': {'id': '839501734', 'title': 'Container is running without root user control', 'severity': 'medium', 'originalSeverity': 'medium', 'url': 'https://snyk.io/security-rules/SNYK-CC-K8S-10', 'description': 'Container is running without root user control', 'disclosureTime': '2022-05-31T20:58:55+00:00', 'path': '[DocId: 0].input.spec.template.spec.containers[pet-pod].securityContext.runAsNonRoot', 'violatedPolicyPublicId': 'SNYK-CC-K8S-10', 'CVSSv3': '', 'credit': [], 'identifiers': {}, 'language': '', 'nearestFixedInVersion': '', 'patches': [], 'semver': {'vulnerable': ''}, 'cvssScore': None, 'exploitMaturity': None, 'publicationTime': None}, 'isIgnored': False}]
jenkins@fe72ebb7af05:/app$