Added hits counter #20
shodanwashereAnnotations
2 errors and 10 warnings
|
π»ββοΈ Bearer CLI
Process completed with exit code 1.
|
|
π« Checkmarx KICS
KICS scan failed with exit code 50
|
|
[HIGH] Missing User Instruction:
backend/Dockerfile#L6
A user should be specified in the dockerfile, otherwise the image will run as root
|
|
[HIGH] Passwords And Secrets - Generic Password:
docker-compose.yml#L7
Query to find passwords and secrets in infrastructure code.
|
|
[MEDIUM] Container Capabilities Unrestricted:
docker-compose.yml#L3
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Capabilities Unrestricted:
docker-compose.yml#L11
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
|
[MEDIUM] Container Traffic Not Bound To Host Interface:
docker-compose.yml#L16
Incoming container traffic should be bound to a specific host interface
|
|
[MEDIUM] Container Traffic Not Bound To Host Interface:
docker-compose.yml#L9
Incoming container traffic should be bound to a specific host interface
|
|
[MEDIUM] Healthcheck Not Set:
docker-compose.yml#L3
Check containers periodically to see if they are running properly.
|
|
[MEDIUM] Healthcheck Not Set:
docker-compose.yml#L11
Check containers periodically to see if they are running properly.
|
|
[MEDIUM] Image Version Not Explicit:
backend/Dockerfile#L1
Always tag the version of an image explicitly
|
|
[MEDIUM] Memory Not Limited:
docker-compose.yml#L3
Memory limits should be defined for each container. This prevents potential resource exhaustion by ensuring that containers consume not more than the designated amount of memory
|