fix: use bookworm codename for APT repository in Ubuntu Dockerfile #3
jeremisecurity-scan.yml
on: push
Trivy Security Scan
53s
Dockerfile Security Scan
10s
Dependency Security Check
29s
Annotations
6 errors
|
Dockerfile Security Scan:
Dockerfile#L79
DL3008 warning: Pin versions in apt get install. Instead of `apt-get install <package>` use `apt-get install <package>=<version>`
|
|
Dockerfile Security Scan:
Dockerfile#L79
DL3016 warning: Pin versions in npm. Instead of `npm install <package>` use `npm install <package>@<version>`
|
|
Dockerfile Security Scan:
Dockerfile#L49
DL3008 warning: Pin versions in apt get install. Instead of `apt-get install <package>` use `apt-get install <package>=<version>`
|
|
Dockerfile Security Scan:
Dockerfile#L27
DL4006 warning: Set the SHELL option -o pipefail before RUN with a pipe in it. If you are using /bin/sh in an alpine image or if your shell is symlinked to busybox then consider explicitly setting your SHELL to /bin/ash, or disable this check
|
|
Dockerfile Security Scan:
Dockerfile#L17
DL3008 warning: Pin versions in apt get install. Instead of `apt-get install <package>` use `apt-get install <package>=<version>`
|
|
Trivy Security Scan
buildx failed with: ERROR: failed to build: failed to solve: process "/bin/sh -c apt-get update && apt-get install -y --no-install-recommends openspp-17-daily && apt-get clean && rm -rf /var/lib/apt/lists/*" did not complete successfully: exit code: 100
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
dependency-check-report
Expired
|
40.4 KB |
sha256:713411be4527c69d290fc0a68be41f6bd2a37bbd2dc687c436702b3b2a7e999e
|
|