Skip to content

Commit

Permalink
fix: internal_site/Dockerfile to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE318-CURL-6104720
- https://snyk.io/vuln/SNYK-ALPINE318-CURL-6104720
- https://snyk.io/vuln/SNYK-ALPINE318-CURL-6104721
- https://snyk.io/vuln/SNYK-ALPINE318-CURL-6104721
  • Loading branch information
@snyk-bot
snyk-bot committed Dec 22, 2023
1 parent e14decd commit c020854
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion internal_site/Dockerfile
View file
Original file line number Diff line number Diff line change
@@ -1,2 +1,2 @@
FROM nginx:alpine
FROM nginx:1.25.3-alpine3.18

Check warning on line 1 in internal_site/Dockerfile

View workflow job for this annotation

GitHub Actions / AppScan CodeSweep #1

No non-root USER specified in Dockerfile configuration 

Vulnerability: PrivilegeEscalation	[Severity: High]
Raw output 
{"file":"Dockerfile","filePath":"internal_site/Dockerfile","lineNumber":1,"columnNumber":0,"language":"IaC-Docker","vulnName":"No non-root USER specified in Dockerfile configuration","vulnType":"PrivilegeEscalation","ruleName":"com.hcl.appscan.scanner.iac.rules.docker.NoDockerUserSpecifiedDockerfile","context":"FROM nginx:1.25.3-alpine3.18","severity":0,"codeFixes":[],"hashValues":{"0":1032572140,"1":-249492597,"2":796685092,"3":796685092,"4":860796423,"5":860796423}}
COPY . /usr/share/nginx/html

0 comments on commit c020854

Please sign in to comment.