docker
Use of an insecure channel - Docker - Docker
Need Secure communication channels for Docker containers Context Usage of Node.js 20 for server-side JavaScript development Description Non compliant code # Dockerfile for a Node.js application FROM node:20 WORKDIR /usr/src/app COPY package*.json ./ ...
Supply Chain Attack - Docker - Docker
Need Ensuring secure and verifiable supply chain for Docker dependencies Context Usage of Python 3.11.5 for developing Python applications Usage of Flask version 2.3.3 for building web applications in Python Description Non compliant code # ...
Excessive Privileges - Docker - Docker
Need Enforce proper privilege separation in Docker containers Context Usage of Node.js 20 for server-side JavaScript development Description Non compliant code FROM node:20 WORKDIR /app COPY package*.json ./ RUN npm install COPY . . EXPOSE 8080 CMD [ ...
Insecure service configuration - Docker - Docker
Need Secure configuration of Docker services Context Usage of Docker for containerizing and deploying applications Usage of Ubuntu 18.04 as the operating system for development or deployment Description Non compliant code FROM ubuntu:18.04 ADD ...