Scan results · 1faca6c
main · 2 critical · 14 high · 59 medium · 82 low
- critical Service Running in Privileged Mode sast-engine/docker-compose.yml:6
[Service: web] Service is running in privileged mode. This grants container equivalent of root capabilities on the host machine. Can lead to container escapes and privilege escalation.
- critical Docker Socket Exposed to Container sast-engine/docker-compose.yml:17
[Service: web] Service mounts Docker socket. The owner of this socket is root. Giving container access to it is equivalent to giving unrestricted root access to host.
Get this for your repo.
Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.