Use pkgdepends
#20
Use pkgdepends
#20
Wiz IaC Scanner
Revealing IaC misconfigurations with Wiz
IaC Misconfigurations Detected: 8
Annotations
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'liblzma-dev' has version defined
Found: Package 'liblzma-dev' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'libpng-dev' has version defined
Found: Package 'libpng-dev' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'libssl-dev' has version defined
Found: Package 'libssl-dev' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'libxml2-dev' has version defined
Found: Package 'libxml2-dev' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'python3' has version defined
Found: Package 'python3' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'libbz2-dev' has version defined
Found: Package 'libbz2-dev' does not have version defined
Check warning on line 20 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Apt Get Install Pin Version Not Defined
Rule ID: fd057dc6-f93a-4b30-87e8-68e1d9ff61c9
Severity: Medium
Resource: FROM={{r-base:4.4.1}}.RUN={{apt-get update && apt-get install -y --no-install-recommends libcurl4-openssl-dev libbz2-dev liblzma-dev libpng-dev libssl-dev libxml2-dev python3 && apt-get clean && rm -rf /var/lib/apt/lists/*}}
When installing a package, its pin version should be defined
Raw output
Expected: Package 'libcurl4-openssl-dev' has version defined
Found: Package 'libcurl4-openssl-dev' does not have version defined
Check notice on line 17 in Dockerfile
wiz-inc-8da00b022c / Wiz IaC Scanner
Healthcheck Instruction Missing
Rule ID: b0f1f03a-461a-4b7b-8daf-a61ca12d86da
Severity: Low
Resource: FROM={{r-base:4.4.1}}
Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working
Raw output
Expected: Dockerfile should contain instruction 'HEALTHCHECK'
Found: Dockerfile doesn't contain instruction 'HEALTHCHECK'