You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am going to using crewai-tools in my program, and one of the dependencies are related to this repo. so I get this security errors from trivy-scanner while I am going to create new image based on it:
usr/local/lib/python3.10/site-packages/crewai_tools/tools/code_interpreter_tool/Dockerfile (dockerfile)
=======================================================================================================
Tests: 20 (SUCCESSES: 19, FAILURES: 1, EXCEPTIONS: 0)
Failures: 1 (HIGH: 1, CRITICAL: 0)
HIGH: Specify at least 1 USER command in Dockerfile with non-root user as argument
════════════════════════════════════════
Running containers with 'root' user can lead to a container escape situation. It is a best practice to run containers as non-root users, which can be done by adding a 'USER' statement to the Dockerfile.
See https://avd.aquasec.com/misconfig/ds002
────────────────────────────────────────
usr/local/lib/python3.10/site-packages/embedchain/deployment/fly.io/Dockerfile (dockerfile)
===========================================================================================
Tests: 20 (SUCCESSES: 19, FAILURES: 1, EXCEPTIONS: 0)
Failures: 1 (HIGH: 1, CRITICAL: 0)
HIGH: Specify at least 1 USER command in Dockerfile with non-root user as argument
════════════════════════════════════════
Running containers with 'root' user can lead to a container escape situation. It is a best practice to run containers as non-root users, which can be done by adding a 'USER' statement to the Dockerfile.
See https://avd.aquasec.com/misconfig/ds002
────────────────────────────────────────
I think we should use non-root user for Dockerfile. I also created a PR to resolve this issue please help me to merge it if it is ok
🚀 The feature
I am going to using crewai-tools in my program, and one of the dependencies are related to this repo. so I get this security errors from trivy-scanner while I am going to create new image based on it:
I think we should use non-root user for Dockerfile. I also created a PR to resolve this issue please help me to merge it if it is ok
Motivation, pitch
PR to resolve the issue: #2224
The text was updated successfully, but these errors were encountered: