Closed mimartin12 closed 2 months ago
Checkmarx One – Scan Summary & Details – 5d3fc8b9-1186-4e5c-b280-c6190e053109
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
Passwords And Secrets - Generic Password | /docker-compose.yml: 45 | Query to find passwords and secrets in infrastructure code. | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 22 | Query to find passwords and secrets in infrastructure code. | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 34 | Query to find passwords and secrets in infrastructure code. | |
Container Traffic Not Bound To Host Interface | /docker-compose.yml: 11 | Incoming container traffic should be bound to a specific host interface | |
Healthcheck Not Set | /docker-compose.yml: 19 | Check containers periodically to see if they are running properly. | |
Healthcheck Not Set | /docker-compose.yml: 4 | Check containers periodically to see if they are running properly. | |
Privileged Ports Mapped In Container | /docker-compose.yml: 11 | Privileged ports (1 to 1023) should not be mapped. Also you should drop net_bind_service linux capability from the container unless you absolutely ... | |
Security Opt Not Set | /docker-compose.yml: 4 | Attribute 'security_opt' should be defined. | |
Security Opt Not Set | /docker-compose.yml: 19 | Attribute 'security_opt' should be defined. | |
Container Capabilities Unrestricted | /docker-compose.yml: 19 | Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessa... | |
Container Capabilities Unrestricted | /docker-compose.yml: 4 | Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessa... |
Severity | Issue | Source File / Package |
---|---|---|
Passwords And Secrets - Generic Password | /docker-compose.yml: 23 | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 46 | |
Passwords And Secrets - Generic Password | /docker-compose.yml: 35 | |
Container Traffic Not Bound To Host Interface | /docker-compose.yml: 12 | |
Healthcheck Not Set | /docker-compose.yml: 20 | |
Healthcheck Not Set | /docker-compose.yml: 5 | |
Memory Not Limited | /docker-compose.yml: 20 | |
Memory Not Limited | /docker-compose.yml: 5 | |
Privileged Ports Mapped In Container | /docker-compose.yml: 12 | |
Security Opt Not Set | /docker-compose.yml: 20 | |
Security Opt Not Set | /docker-compose.yml: 5 | |
Container Capabilities Unrestricted | /docker-compose.yml: 20 | |
Container Capabilities Unrestricted | /docker-compose.yml: 5 | |
Cpus Not Limited | /docker-compose.yml: 20 | |
Cpus Not Limited | /docker-compose.yml: 5 |
Version is completely optional for docker compose and in the newest version is being labeled as obsolete.
04-version-and-name.md