New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use `pkgdepends` #20

Merged

Faizal-Eeman merged 9 commits into main from mmootor-use-pkgdepends

Jul 30, 2024

Merged

Use `pkgdepends` #20

add space

Wiz Inc. (8da00b022c) / Wiz IaC Scanner completed Jul 30, 2024 in 2s

Wiz IaC Scanner

Revealing IaC misconfigurations with Wiz

IaC Misconfigurations Detected: 8

Annotations

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'liblzma-dev' has version defined
Found: Package 'liblzma-dev' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'libpng-dev' has version defined
Found: Package 'libpng-dev' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'libssl-dev' has version defined
Found: Package 'libssl-dev' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'libxml2-dev' has version defined
Found: Package 'libxml2-dev' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'python3' has version defined
Found: Package 'python3' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'libbz2-dev' has version defined
Found: Package 'libbz2-dev' does not have version defined

Check warning on line 20 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Apt Get Install Pin Version Not Defined

Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update     && apt-get install -y --no-install-recommends         libcurl4-openssl-dev         libbz2-dev         liblzma-dev         libpng-dev         libssl-dev         libxml2-dev         python3     && apt-get clean && rm -rf /var/lib/apt/lists/*}}

When installing a package, its pin version should be defined

Raw output


            Expected: Package 'libcurl4-openssl-dev' has version defined
Found: Package 'libcurl4-openssl-dev' does not have version defined

Check notice on line 17 in Dockerfile

wiz-inc-8da00b022c / Wiz IaC Scanner

Healthcheck Instruction Missing

Rule ID: b0f1f03a-461a-4b7b-8daf-a61ca12d86da
Severity: Low
Resource: FROM={{r-base:4.4.1}}

Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working

Raw output


            Expected: Dockerfile should contain instruction 'HEALTHCHECK'
Found: Dockerfile doesn't contain instruction 'HEALTHCHECK'

View more details on Wiz Inc. (8da00b022c)