Scan results · 00a5753

main · 2 critical · 14 high · 59 medium · 82 low

All 157 critical 2 high 14 medium 59 low 82

Clear

low Prefer apt-get over apt extension/secureflow/packages/secureflow-cli/Dockerfile:5
Use apt-get instead of apt for better script stability in Dockerfiles.
low Nonsensical Command extension/secureflow/packages/secureflow-cli/Dockerfile:5
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
low Missing -y flag for apt-get extension/secureflow/packages/secureflow-cli/Dockerfile:5
apt-get install without -y flag. Add -y or --yes for non-interactive builds.
low apt-get Without --no-install-recommends extension/secureflow/packages/secureflow-cli/Dockerfile:5
apt-get install without --no-install-recommends. This installs unnecessary packages, increasing image size and attack surface.
low Nonsensical Command extension/secureflow/packages/secureflow-cli/Dockerfile:16
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
low Prefer apt-get over apt extension/secureflow/packages/secureflow-cli/Dockerfile:16
Use apt-get instead of apt for better script stability in Dockerfiles.
low Use Absolute Path in WORKDIR extension/secureflow/packages/secureflow-cli/Dockerfile:23
WORKDIR should use absolute paths starting with /.
low Prefer apt-get over apt extension/secureflow/packages/secureflow-cli/Dockerfile:35
Use apt-get instead of apt for better script stability in Dockerfiles.
low Nonsensical Command extension/secureflow/packages/secureflow-cli/Dockerfile:35
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
low Prefer apt-get over apt extension/secureflow/packages/secureflow-cli/Dockerfile:40
Use apt-get instead of apt for better script stability in Dockerfiles.

Get this for your repo.

Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.

Get started View the open-source rules →