Scan results · 9e00502
main · 2 critical · 14 high · 59 medium · 82 low
- low Nonsensical Command Dockerfile:17
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
- low Prefer apt-get over apt Dockerfile:17
Use apt-get instead of apt for better script stability in Dockerfiles.
- low Prefer apt-get over apt Dockerfile:19
Use apt-get instead of apt for better script stability in Dockerfiles.
- low Nonsensical Command Dockerfile:19
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
- low Dockerfile Source Not Pinned Dockerfile:21
FROM instruction without digest pinning. Consider using @sha256:... for immutable builds.
- low Use Absolute Path in WORKDIR Dockerfile:23
WORKDIR should use absolute paths starting with /.
- low Prefer apt-get over apt Dockerfile:26
Use apt-get instead of apt for better script stability in Dockerfiles.
- low apk add Without --no-cache Dockerfile:26
apk add without --no-cache. Package cache remains in image, increasing size by 2-5 MB.
- low Nonsensical Command Dockerfile:26
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
- low Nonsensical Command Dockerfile:31
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
Get this for your repo.
Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.