[DOS-548][ci] fix dockerfile for upstream fe image #949
rogocofkics.yml
on: pull_request
Analyze frontend
37s
Analyze backend
38s
Annotations
16 warnings
|
[HIGH] Last User Is 'root':
cfx-frontend/cypress/Dockerfile#L32
Leaving the last user as root can cause security risks. Change to another user after running the commands the need privileges
|
|
[MEDIUM] Container Capabilities Unrestricted:
cfx-frontend/docker-compose.yml#L24
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Capabilities Unrestricted:
cfx-frontend/cypress/docker-compose.yml#L24
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Healthcheck Not Set:
cfx-frontend/cypress/docker-compose.yml#L24
Check containers periodically to see if they are running properly.
|
|
[MEDIUM] Host Namespace is Shared:
cfx-frontend/docker-compose.yml#L45
The hosts process namespace should not be shared by containers
|
|
[MEDIUM] Shared Host Network Namespace:
cfx-frontend/cypress/docker-compose.yml#L35
Container should not share the host network namespace
|
|
[MEDIUM] Container Capabilities Unrestricted:
tx-backend/docker/docker-compose.yml#L52
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Capabilities Unrestricted:
tx-backend/docker/docker-compose.yml#L34
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Capabilities Unrestricted:
tx-backend/docker/docker-compose.yml#L20
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Traffic Not Bound To Host Interface:
tx-backend/docker/docker-compose.yml#L56
Incoming container traffic should be bound to a specific host interface
|
|
[MEDIUM] Container Traffic Not Bound To Host Interface:
tx-backend/docker/docker-compose.yml#L27
Incoming container traffic should be bound to a specific host interface
|
|
[MEDIUM] Container Traffic Not Bound To Host Interface:
tx-backend/docker/docker-compose.yml#L44
Incoming container traffic should be bound to a specific host interface
|
|
[MEDIUM] Global Server Object Uses HTTP:
tx-backend/openapi/traceability-foss-backend.json#L13
Global server object URL should use 'https' protocol instead of 'http'
|
|
[MEDIUM] Healthcheck Not Set:
tx-backend/docker/docker-compose.yml#L34
Check containers periodically to see if they are running properly.
|
|
[MEDIUM] Healthcheck Not Set:
tx-backend/docker/docker-compose.yml#L20
Check containers periodically to see if they are running properly.
|
|
[MEDIUM] Healthcheck Not Set:
tx-backend/docker/docker-compose.yml#L52
Check containers periodically to see if they are running properly.
|