StackHawk

When <a href="https://docs.stackhawk.com/continuous-integration/gitlab.html" rel="nofollow noopener noreferrer" target="_blank">running HawkScan in GitLab</a>, the following error appears in the GitLab runner logs and the scan fails to run:

General Configuration Error: No default configuration file (stackhawk.yml,stackhawk.yaml) found in /hawk"

One or more of the following issues with the Docker configuration is present in GitLab's Docker runner config (<code>config.toml</code>):

Docker isn't running in privileged mode (<code>privileged = true</code>) in the GitLab runner

The Docker UNIX socket (<code>docker.sock</code>) isn't mounted within the runner

Volume mounting issues associated with using the <code>docker.dind</code> image in <code>config.toml</code>

1. Docker isn't running in privileged mode (<code>privileged = true</code>) in the GitLab runner
2. The Docker UNIX socket (<code>docker.sock</code>) isn't mounted within the runner
3. Volume mounting issues associated with using the <code>docker.dind</code> image in <code>config.toml</code>

With <code>docker.sock</code> in the <code>volumes</code> configuration in <code>config.toml</code>

With <code>"/builds:/builds"</code> in the <code>volumes</code> list in <code>config.toml</code> (see <a href="https://gitlab.com/gitlab-org/gitlab-runner/-/issues/4794" rel="nofollow noopener noreferrer" target="_blank">Issue 4794</a> on GitLab's issue list for more details)

1. In privileged mode
2. With <code>docker.sock</code> in the <code>volumes</code> configuration in <code>config.toml</code>
3. With <code>"/builds:/builds"</code> in the <code>volumes</code> list in <code>config.toml</code> (see <a href="https://gitlab.com/gitlab-org/gitlab-runner/-/issues/4794" rel="nofollow noopener noreferrer" target="_blank">Issue 4794</a> on GitLab's issue list for more details)

[[runners]] name = "stackhawk-test" url = "https://git.example.org/" token = "xxxxxxxxxxxxxxxxxxxx" executor = "docker" [runners.docker] tls_verify = false image = "docker:stable" privileged = true disable_cache = false volumes = ["/var/run/docker.sock:/var/run/docker.sock","/cache","/builds:/builds"] shm_size = 0

This docker socket issue in can manifest elsewhere in the GitLab environment, such as:

at the <code>docker run</code> stage (error: <code>&lt;output indicates no files found, meaning the local dir was not mounted&gt;</code>)

"<code>File doesn't exist</code>" error when attempting to <a href="https://help.stackhawk.com/en/articles/6782341-hawkscan-fails-to-read-openapi-specification-file-when-running-in-gitlab">read in an OpenAPI specification</a>

<a href="https://help.stackhawk.com/en/articles/6552321-docker-pull-stackhawk-hawkscan-fails-with-no-such-host-error-in-gitlab">'docker pull stackhawk/hawkscan' fails with 'no such host' error in GitLab</a>

- at the <code>docker run</code> stage (error: <code>&lt;output indicates no files found, meaning the local dir was not mounted&gt;</code>)
- "<code>File doesn't exist</code>" error when attempting to <a href="https://help.stackhawk.com/en/articles/6782341-hawkscan-fails-to-read-openapi-specification-file-when-running-in-gitlab">read in an OpenAPI specification</a>
- <a href="https://help.stackhawk.com/en/articles/6552321-docker-pull-stackhawk-hawkscan-fails-with-no-such-host-error-in-gitlab">'docker pull stackhawk/hawkscan' fails with 'no such host' error in GitLab</a>

Issue

Cause

Solution

Additional Information