Scan results · 7a21c89
main · 9 high · 47 medium · 60 low
- low Missing -y flag for apt-get Dockerfile.mcp:15
apt-get install without -y flag. Add -y or --yes for non-interactive builds.
- low apt-get Without --no-install-recommends Dockerfile.mcp:15
apt-get install without --no-install-recommends. This installs unnecessary packages, increasing image size and attack surface.
- low Remove apt Package Lists Dockerfile.mcp:15
apt-get install without removing /var/lib/apt/lists/*. This wastes image space.
- low Prefer apt-get over apt Dockerfile.mcp:15
Use apt-get instead of apt for better script stability in Dockerfiles.
- low Nonsensical Command Dockerfile.mcp:22
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
- low pip install Without --no-cache-dir Dockerfile.mcp:22
pip install without --no-cache-dir. Pip cache remains in image, adding 50-200 MB depending on dependencies.
- low Prefer apt-get over apt Dockerfile.mcp:22
Use apt-get instead of apt for better script stability in Dockerfiles.
- low Prefer apt-get over apt Dockerfile.mcp:25
Use apt-get instead of apt for better script stability in Dockerfiles.
- low Nonsensical Command Dockerfile.mcp:25
RUN command uses 'cd' which doesn't persist. Use WORKDIR instead.
- low Prefer apt-get over apt Dockerfile.mcp:30
Use apt-get instead of apt for better script stability in Dockerfiles.
Get this for your repo.
Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.