search

bitwarden / self-host

Bitwarden's self-hosted release repository
GNU General Public License v3.0
307 stars 54 forks source link

Remove version in docker-compose #249

Closed mimartin12 closed 2 months ago

mimartin12 commented 2 months ago

Version is completely optional for docker compose and in the newest version is being labeled as obsolete.

04-version-and-name.md

bitwarden-bot commented 2 months ago

Logo Checkmarx One – Scan Summary & Details5d3fc8b9-1186-4e5c-b280-c6190e053109

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 45 Query to find passwords and secrets in infrastructure code.
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 22 Query to find passwords and secrets in infrastructure code.
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 34 Query to find passwords and secrets in infrastructure code.
MEDIUM Container Traffic Not Bound To Host Interface /docker-compose.yml: 11 Incoming container traffic should be bound to a specific host interface
MEDIUM Healthcheck Not Set /docker-compose.yml: 19 Check containers periodically to see if they are running properly.
MEDIUM Healthcheck Not Set /docker-compose.yml: 4 Check containers periodically to see if they are running properly.
MEDIUM Privileged Ports Mapped In Container /docker-compose.yml: 11 Privileged ports (1 to 1023) should not be mapped. Also you should drop net_bind_service linux capability from the container unless you absolutely ...
MEDIUM Security Opt Not Set /docker-compose.yml: 4 Attribute 'security_opt' should be defined.
MEDIUM Security Opt Not Set /docker-compose.yml: 19 Attribute 'security_opt' should be defined.
LOW Container Capabilities Unrestricted /docker-compose.yml: 19 Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessa...
LOW Container Capabilities Unrestricted /docker-compose.yml: 4 Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessa...

Fixed Issues

Severity Issue Source File / Package
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 23
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 46
HIGH Passwords And Secrets - Generic Password /docker-compose.yml: 35
MEDIUM Container Traffic Not Bound To Host Interface /docker-compose.yml: 12
MEDIUM Healthcheck Not Set /docker-compose.yml: 20
MEDIUM Healthcheck Not Set /docker-compose.yml: 5
MEDIUM Memory Not Limited /docker-compose.yml: 20
MEDIUM Memory Not Limited /docker-compose.yml: 5
MEDIUM Privileged Ports Mapped In Container /docker-compose.yml: 12
MEDIUM Security Opt Not Set /docker-compose.yml: 20
MEDIUM Security Opt Not Set /docker-compose.yml: 5
LOW Container Capabilities Unrestricted /docker-compose.yml: 20
LOW Container Capabilities Unrestricted /docker-compose.yml: 5
LOW Cpus Not Limited /docker-compose.yml: 20
LOW Cpus Not Limited /docker-compose.yml: 5