Closed renovate[bot] closed 5 months ago
Checkmarx One – Scan Summary & Details – 7fe9091a-dfe6-4381-bb10-63c324d28c99
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
![]() |
Missing User Instruction | /Dockerfile: 176 | A user should be specified in the dockerfile, otherwise the image will run as root |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 54 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | When installing a package, its pin version should be defined |
![]() |
NPM Install Command Without Pinned Version | /Dockerfile: 58 | Check if packages installed by npm are pinning a specific version. |
![]() |
Using Platform Flag with FROM Command | /Dockerfile: 37 | Don't use '--platform' flag with FROM |
![]() |
Healthcheck Instruction Missing | /Dockerfile: 176 | Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working |
![]() |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 222 | Multiple commands (RUN, COPY, ADD) should be grouped in order to reduce the number of layers. |
![]() |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 249 | Multiple commands (RUN, COPY, ADD) should be grouped in order to reduce the number of layers. |
Severity | Issue | Source File / Package |
---|---|---|
![]() |
Missing User Instruction | /Dockerfile: 176 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 54 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 |
![]() |
NPM Install Command Without Pinned Version | /Dockerfile: 58 |
![]() |
Using Platform Flag with FROM Command | /Dockerfile: 37 |
![]() |
Healthcheck Instruction Missing | /Dockerfile: 176 |
![]() |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 249 |
![]() |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 222 |
Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.
You can manually request rebase by checking the rebase/retry box above.
âš Warning: custom changes will be lost.
This PR contains the following updates:
6.0
->8.0
6.0
->8.0
Configuration
📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
This PR has been generated by Mend Renovate. View repository job log here.