shivasurya/code-pathfinder

high Container Running as Root - Missing USER

Dockerfile:1

Dockerfile does not specify USER instruction. Container will run as root by default, which increases the attack surface if the container is compromised.

CWE-250 open

Code

Dockerfile

1FROM cgr.dev/chainguard/go:latest AS builder
2
3WORKDIR /app
4

Seen on 8 scans

a7e137f line 1 2026-05-22
8a39ca7 line 1 2026-05-22
181f52c line 1 2026-05-22
91c7b3d line 1· PR #693 2026-05-22
00a5753 line 1 2026-05-22
490d33f line 1· PR #693 2026-05-22
9e00502 line 1 2026-05-22
1faca6c line 1 2026-05-21

Get this for your repo.

Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.

Get started View the open-source rules →