dockerfile-security
dockerfile-security copied to clipboard
cr0hn
Static security checker for Dockerfiles
Hi cr0hn, According to your core.yaml file, you cite "https://snyk.io/blog/10-docker-image-security-best-practices/" for core-006. I am assuming you are referring to the heading "**7. Use COPY is stead of ADD**". There seems...
The regex needs to be worked on.... even though there is a USER defined in the Dockerfile, it is failing. Changing the regex to "^(USER[\s]+[\w\d\_]+)$" might fix this....
For rule core-006 the use of COPY is generally preferred, however the current rule reflects the inverse. Additional reference: https://docs.docker.com/develop/develop-images/dockerfile_best-practices/
