shivasurya/code-pathfinder

critical Service Running in Privileged Mode

sast-engine/docker-compose.yml:6

[Service: web] Service is running in privileged mode. This grants container equivalent of root capabilities on the host machine. Can lead to container escapes and privilege escalation.

CWE-250 open

Code

sast-engine/docker-compose.yml

3services:
4  web:
5    image: nginx:latest
6    privileged: true
7    network_mode: host
8    pid: host
9    ipc: host

Seen on 8 scans

a7e137f line 6 2026-05-22
8a39ca7 line 6 2026-05-22
181f52c line 6 2026-05-22
91c7b3d line 6· PR #693 2026-05-22
00a5753 line 6 2026-05-22
490d33f line 6· PR #693 2026-05-22
9e00502 line 6 2026-05-22
1faca6c line 6 2026-05-21

Get this for your repo.

Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.

Get started View the open-source rules →