carlosjpr-collab
commented
3 years ago I see the same pb
Open ShockwaveNN opened 3 years ago
carlosjpr-collab
commented
3 years ago I see the same pb
jympetalmd
commented
3 years ago Looks like a permissions problem. The user in the docker container is app (UID: 9000) so file mounted with a volume should be accessible for this user. Since the file mounted are propably owned by you or root (in the case of my jenkins), you need to mount a new 'open world' volume writable by anyone, like most /tmp:
docker run \ -v "$(pwd)":/code:ro \ -v /tmp:/tmp \ presidentbeef/brakeman \ -o /tmp/brakeman_results.html
ShockwaveNN
commented
3 years ago @jympetalmd Nope, sorry, your variant (with adding \ to break lines) still does not work for me with the same error
docker run \
-v "$(pwd)":/code:ro \
-v /tmp:/tmp \
presidentbeef/brakeman \
-o brakeman_results.html
....
/usr/src/app/lib/brakeman.rb:427:in `initialize': Read-only file system @ rb_sysopen - brakeman_results.html (Errno::EROFS)
from /usr/src/app/lib/brakeman.rb:427:in `open'
from /usr/src/app/lib/brakeman.rb:427:in `block in write_report_to_files'
from /usr/src/app/lib/brakeman.rb:421:in `each'
from /usr/src/app/lib/brakeman.rb:421:in `each_with_index'
from /usr/src/app/lib/brakeman.rb:421:in `write_report_to_files'
from /usr/src/app/lib/brakeman.rb:407:in `scan'
from /usr/src/app/lib/brakeman.rb:86:in `run'
from /usr/src/app/lib/brakeman/commandline.rb:157:in `run_brakeman'
from /usr/src/app/lib/brakeman/commandline.rb:125:in `regular_report'
from /usr/src/app/lib/brakeman/commandline.rb:166:in `run_report'
from /usr/src/app/lib/brakeman/commandline.rb:35:in `run'
from /usr/src/app/lib/brakeman/commandline.rb:20:in `start'
from /usr/src/app/bin/brakeman:10:in `<main>'@jympetalmd Nope, sorry, your variant (with adding
\to break lines) still does not work for me with the same errordocker run \ -v "$(pwd)":/code:ro \ -v /tmp:/tmp \ presidentbeef/brakeman \ -o brakeman_results.html .... /usr/src/app/lib/brakeman.rb:427:in `initialize': Read-only file system @ rb_sysopen - brakeman_results.html (Errno::EROFS) from /usr/src/app/lib/brakeman.rb:427:in `open' from /usr/src/app/lib/brakeman.rb:427:in `block in write_report_to_files' from /usr/src/app/lib/brakeman.rb:421:in `each' from /usr/src/app/lib/brakeman.rb:421:in `each_with_index' from /usr/src/app/lib/brakeman.rb:421:in `write_report_to_files' from /usr/src/app/lib/brakeman.rb:407:in `scan' from /usr/src/app/lib/brakeman.rb:86:in `run' from /usr/src/app/lib/brakeman/commandline.rb:157:in `run_brakeman' from /usr/src/app/lib/brakeman/commandline.rb:125:in `regular_report' from /usr/src/app/lib/brakeman/commandline.rb:166:in `run_report' from /usr/src/app/lib/brakeman/commandline.rb:35:in `run' from /usr/src/app/lib/brakeman/commandline.rb:20:in `start' from /usr/src/app/bin/brakeman:10:in `<main>'
Sorry forgot to add /tmp to the -o output path: -o /tmp/brakeman_results.html
ShockwaveNN
commented
3 years ago docker run \
-v "$(pwd)":/code:ro \
-v /tmp:/tmp \
presidentbeef/brakeman \
-o /tmp/brakeman_results.htmlYep this variant works. I think we should fix readme, I can create PR or @jympetalmd you can do it?
jympetalmd
commented
3 years ago docker run \ -v "$(pwd)":/code:ro \ -v /tmp:/tmp \ presidentbeef/brakeman \ -o /tmp/brakeman_results.htmlYep this variant works. I think we should fix readme, I can create PR or @jympetalmd you can do it?
Background
Brakeman version: 5.0.0 Rails version: 6.1.1 Ruby version: ??? provided by default docker
Link to Rails application code: https://github.com/ONLYOFFICE/testing-wrata/ But I think project is not related
Issue
Run brakeman in docker with html report as said in README.md
brakeman is running, but resulting error on report finalization:
Seems like some kind of permission issue, I can provide some more info, but there is no strange permission applied to my current working directory
Other Error
Run Brakeman with
--debugto see the full stack trace.Cannot do in Docker