Closed github-actions[bot] closed 8 months ago
Checkmarx One – Scan Summary & Details – 00507eaf-c6b5-4f06-be65-232450a3111d
Severity | Issue | Source File / Package |
---|---|---|
Missing User Instruction | /Dockerfile: 176 | |
Passwords And Secrets - Generic Password | /Dockerfile: 203 | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 23 | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 46 | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 35 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 8 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 8 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 8 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 212 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 54 | |
Apt Get Install Pin Version Not Defined | /Dockerfile: 8 | |
Container Traffic Not Bound To Host Interface | /docker-compose.yml: 12 | |
Healthcheck Not Set | /docker-compose.yml: 5 | |
Healthcheck Not Set | /docker-compose.yml: 20 | |
Host Namespace is Shared | /docker-compose.yml: 5 | |
Host Namespace is Shared | /docker-compose.yml: 20 | |
Memory Not Limited | /docker-compose.yml: 5 | |
Memory Not Limited | /docker-compose.yml: 20 | |
NPM Install Command Without Pinned Version | /Dockerfile: 58 | |
Networks Not Set | /docker-compose.yml: 20 | |
Networks Not Set | /docker-compose.yml: 5 | |
Privileged Ports Mapped In Container | /docker-compose.yml: 12 | |
Security Opt Not Set | /docker-compose.yml: 20 | |
Security Opt Not Set | /docker-compose.yml: 5 | |
Unpinned Actions Full Length Commit SHA | /release.yml: 218 | |
Unpinned Actions Full Length Commit SHA | /update-links.yml: 63 | |
Unpinned Actions Full Length Commit SHA | /update-links.yml: 71 | |
Unpinned Actions Full Length Commit SHA | /release-digital-ocean.yml: 29 | |
Unpinned Actions Full Length Commit SHA | /release.yml: 114 | |
Unpinned Actions Full Length Commit SHA | /update-links.yml: 47 | |
Unpinned Actions Full Length Commit SHA | /build-unified.yml: 194 | |
Unpinned Actions Full Length Commit SHA | /update-versions.yml: 49 | |
Unpinned Actions Full Length Commit SHA | /release.yml: 257 | |
Unpinned Actions Full Length Commit SHA | /release.yml: 46 | |
Unpinned Actions Full Length Commit SHA | /DCT-test.yml: 30 | |
Unpinned Actions Full Length Commit SHA | /release-web-latest.yml: 35 | |
Unpinned Actions Full Length Commit SHA | /update-versions.yml: 73 | |
Unpinned Actions Full Length Commit SHA | /build-unified.yml: 101 | |
Unpinned Actions Full Length Commit SHA | /update-links.yml: 55 | |
Unpinned Actions Full Length Commit SHA | /update-versions.yml: 27 | |
Unpinned Actions Full Length Commit SHA | /build-unified.yml: 108 | |
Using Platform Flag with FROM Command | /Dockerfile: 5 | |
Using Platform Flag with FROM Command | /Dockerfile: 37 | |
Container Capabilities Unrestricted | /docker-compose.yml: 20 | |
Container Capabilities Unrestricted | /docker-compose.yml: 5 | |
Cpus Not Limited | /docker-compose.yml: 20 | |
Cpus Not Limited | /docker-compose.yml: 5 | |
Healthcheck Instruction Missing | /Dockerfile: 176 | |
Missing_CSP_Header | /docker-unified/hbs/app-id.hbs: 9 | |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 222 | |
Multiple RUN, ADD, COPY, Instructions Listed | /Dockerfile: 249 |