Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Error was: Input length = 1 while publishing bom.xml in Jenkins pipeline for node.js applications
See original GitHub issueCurrent Behavior
After an upgrade from 4.5.0 to 4.6.2 all Jenkins nodejs pipelines started to fail with the same error code. Error was: Input length = 1
[Pipeline] sh
+ case $- in
+ return
+ npx @cyclonedx/bom@3.10.6 --include-dev -o bom.xml
npx: installed 76 in 9.844s
[Pipeline] dependencyTrackPublisher
[DependencyTrack] Publishing artifact to Dependency-Track
[DependencyTrack] An error occurred processing artifact "/home/jenkins/workspace/i-project_minimal-project_master/bom.xml". Error was: Input length = 1
[Pipeline] }
[Pipeline] // script
[Pipeline] }
[Pipeline] // stage
[Pipeline] }
[Pipeline] // withEnv
[Pipeline] }
[Pipeline] // node
[Pipeline] End of Pipeline
ERROR: Uploading artifact failed
[Bitbucket] Notifying commit build result
[Bitbucket] Build result notified
Finished: FAILURE
So far my troubleshooting included:
- Downgrading OWASP Dependency Track Jenkins plugin from 4.2.0 to 4.0.0 since it was upgraded in the same time as pipelines started to fail.
- Checked project files for UTF-8 Encoding
- Changed
npx @cyclonedx/cyclonedx-npmto npx@cyclonedx/bom@3.10.6
Steps to Reproduce
- Upgrade Dependency Track from 4.5.0 to 4.6.2
- Upgrade OWASP Dependency Track Plugin from 4.0.0 to 4.2.0
- Nothing else, nodejs pipelines just breaks on publishing to D-Track from now.
Expected Behavior
Publish bom.xml to Dependency Track
Dependency-Track Version
4.6.2
Dependency-Track Distribution
Container Image
Database Server
PostgreSQL
Database Server Version
No response
Browser
Mozilla Firefox
Checklist
- I have read and understand the contributing guidelines
- I have checked the existing issues for whether this defect was already reported
Issue Analytics
- State:
- Created 10 months ago
- Comments:11 (6 by maintainers)
Top Results From Across the Web
OWASP Dependency Tracker - Jenkins build error
I am Getting 403 Forbidden error while testing OWASP Dependency Tracker integration with Jenkins build. [DependencyTrack] Publishing ...
Read more >Error while configuring this pligin - Jenkins Jira
I was tried to enter all the details like in authenticaton and session properties and when i click save it throws a error....
Read more >Pipeline Steps Reference - Jenkins
Jenkins – an open source automation server which enables developers around the world to reliably build, test, and deploy their software.
Read more >NullPointerException on parsing Cobertura XML - Jenkins Jira
JENKINS -34160Getting ERROR: Failed to parse POMs while trying to build · Bug. JENKINS-32573Cobertura misconfiguration destroys 'publishers' node.
Read more >Changelog Archive - Jenkins
Installers, native packages, and jenkins.war were not published. Jenkins 2.352 was not placed in the artifact repository or on the download site. What's...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Here’s bom. bom.xml.gz
OWASP Plugin has been downgraded as well from 4.2.0 to 4.0.0 (It has been updated in the same time as D-Track) I’ll see what I can do about providing SBOM here.