mirror of
https://github.com/aquasecurity/trivy.git
synced 2025-12-12 07:40:48 -08:00
32 lines
995 B
Plaintext
32 lines
995 B
Plaintext
[
|
|
{
|
|
"Target": "Dockerfile",
|
|
"Class": "config",
|
|
"Type": "dockerfile",
|
|
"MisconfSummary": {
|
|
"Successes": 0,
|
|
"Failures": 0,
|
|
"Exceptions": 1
|
|
},
|
|
"Misconfigurations": [
|
|
{
|
|
"Type": "Dockerfile Security Check",
|
|
"ID": "DS002",
|
|
"Title": "Image user should not be 'root'",
|
|
"Description": "It is a good practice to run the container as a non-root user.",
|
|
"Message": "data.appshield.dockerfile.DS002.exception[_][_] == \"\"",
|
|
"Namespace": "appshield.dockerfile.DS002",
|
|
"Resolution": "Add 'USER \u003cnon root user name\u003e' line to the Dockerfile",
|
|
"Severity": "HIGH",
|
|
"PrimaryURL": "https://avd.aquasec.com/appshield/ds002",
|
|
"References": [
|
|
"https://avd.aquasec.com/appshield/ds002"
|
|
],
|
|
"Status": "EXCEPTION",
|
|
"Layer": {
|
|
"DiffID": "sha256:411d7a11745832de28b907ddc3498c6975ade3053d73e9e253b629f828cc1327"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
] |