我们正在使用锚点扫描 dockerfile,我们的文件中存在以下漏洞。我还没有找到任何解决方案。 感谢您的帮助。
om/advisories/GHSA-w6g3-v46q-5p28) stop
dockerfile exposed_ports Dockerfile exposes port (8080) which is not in policy file ALLOWEDPORTS list stop
dockerfile instruction Dockerfile directive 'ADD' check 'exists' matched against '' for line 'file:5c44a80f547b7d68b550b0e64aef898b361666857abf9a5c8f3f8d0567b8e8e4 in /' warn
dockerfile instruction Dockerfile directive 'FROM' check 'not_in' matched against 'example_trusted_base1,example_trusted_base2' for line 'scratch' stop
files suid_or_guid_set SUID or SGID found set on file /usr/local/share/fonts. Mode: 0o42775 warn
files suid_or_guid_set SUID or SGID found set on file /var/local. Mode: 0o42775 whitelisted(DEB SUID Files)
files suid_or_guid_set SUID or SGID found set on file /var/mail. Mode: 0o42775 whitelisted(DEB SUID Files)