StackHawk

HawkScan has been configured to run in a GitLab pipeline, and:

the configuration files <code>stackhawk.yml</code> and <code>.gitlab-ci.yml </code>are present in the root of the repository

the OpenAPI spec file is present as yaml or json in the same repo root

app.openApiConf is configured to point to the spec file (e.g., in <code>app.openApiConf.filePath</code>)

- the configuration files <code>stackhawk.yml</code> and <code>.gitlab-ci.yml </code>are present in the root of the repository
- the OpenAPI spec file is present as yaml or json in the same repo root
- app.openApiConf is configured to point to the spec file (e.g., in <code>app.openApiConf.filePath</code>)

However, the scan fails with the following error:

<code>[File doesn't exist /hawk/example_filename.yml]</code>

<code>[File doesn't exist /hawk/example_filename.json]</code>

Docker socket issue in the <code>runners.docker</code> config (docker.sock not mapped into the container).

Add <code>-v /var/run/docker.sock:/var/run/docker.sock</code> to the Docker command in <code>.gitlab-ci.yml</code>

Add <code>volumes = ["/var/run/docker.sock:/var/run/docker.sock", "/cache"]</code> to the docker config for the StackHawk runner

- Add <code>-v /var/run/docker.sock:/var/run/docker.sock</code> to the Docker command in <code>.gitlab-ci.yml</code>
- Add <code>volumes = ["/var/run/docker.sock:/var/run/docker.sock", "/cache"]</code> to the docker config for the StackHawk runner

[[runners]] name = "stackhawk-test" url = "https://git.example.org/" token = "xxxxxxxxxxxxxxxxxxxx" executor = "docker" [runners.docker] tls_verify = false image = "docker:stable" privileged = true disable_cache = false volumes = ["/var/run/docker.sock:/var/run/docker.sock", "/cache"] shm_size = 0

This docker socket issue in can manifest elsewhere in the GitLab environment, such as:

at the <code>docker run</code> stage (error: <code>&lt;output indicates no files found, meaning the local dir was not mounted&gt;</code>)

"<code>File doesn't exist</code>" error when attempting to <a href="https://help.stackhawk.com/en/articles/6782341-hawkscan-fails-to-read-openapi-specification-file-when-running-in-gitlab">read in an OpenAPI specification</a>

<a href="https://help.stackhawk.com/en/articles/6782295-no-default-configuration-file-error-when-running-hawkscan-in-gitlab">'No default configuration file' error when running HawkScan in GitLab</a>

<a href="https://help.stackhawk.com/en/articles/6552321-docker-pull-stackhawk-hawkscan-fails-with-no-such-host-error-in-gitlab">'docker pull stackhawk/hawkscan' fails with 'no such host' error in GitLab</a>

- at the <code>docker run</code> stage (error: <code>&lt;output indicates no files found, meaning the local dir was not mounted&gt;</code>)
- "<code>File doesn't exist</code>" error when attempting to <a href="https://help.stackhawk.com/en/articles/6782341-hawkscan-fails-to-read-openapi-specification-file-when-running-in-gitlab">read in an OpenAPI specification</a>
- <a href="https://help.stackhawk.com/en/articles/6782295-no-default-configuration-file-error-when-running-hawkscan-in-gitlab">'No default configuration file' error when running HawkScan in GitLab</a>
- <a href="https://help.stackhawk.com/en/articles/6552321-docker-pull-stackhawk-hawkscan-fails-with-no-such-host-error-in-gitlab">'docker pull stackhawk/hawkscan' fails with 'no such host' error in GitLab</a>

See <a href="https://gitlab.com/gitlab-org/gitlab-runner/-/issues/4794" rel="nofollow noopener noreferrer" target="_blank">Issue 4794</a> on GitLab's issue list for more details

- See <a href="https://gitlab.com/gitlab-org/gitlab-runner/-/issues/4794" rel="nofollow noopener noreferrer" target="_blank">Issue 4794</a> on GitLab's issue list for more details

Issue

Cause

Solution

Additional Information