Skip to content

Commit

Permalink
docker changes test
Browse files Browse the repository at this point in the history
  • Loading branch information
@JulioSCX
JulioSCX committed Jul 29, 2024
1 parent bcda3bd commit 173bfac
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,12 +26,14 @@ RUN CGO_ENABLED=0 GOOS=${TARGETOS} GOARCH=${TARGETARCH} go build \
-a -installsuffix cgo \
-o bin/kics cmd/console/main.go

USER nonroot


# Runtime image
# Ignore no User Cmd since KICS container is stopped afer scan
# kics-scan ignore-line
FROM cgr.dev/chainguard/git@sha256:8aca2e237da593d9326eb47aef652b3f4721b533b3b0f19cf62c3bbe1e8ec45d
FROM cgr.dev/chainguard/git@sha256:adaa6682821bd466d2bd93b92a5ae71f8bf5539acdf551ddc50d67e791c52a50

USER root

Check warning on line 36 in Dockerfile

View workflow job for this annotation

GitHub Actions / kics-scan

[HIGH] Last User Is 'root' 

Leaving the last user as root can cause security risks. Change to another user after running the commands the need privileges

ENV TERM xterm-256color

Expand Down

0 comments on commit 173bfac

Please sign in to comment.