Skip to content

update solver docker and drawing pre model

Wiz Inc. (572fc38784) / Wiz IaC Scanner completed Feb 6, 2024 in 4s

Wiz IaC Scanner

Alakazam, Conjurer of Code! 🎩

Wiz's map of discovery unveiled concealed realms of insight within this PR. 🗺️✨

Revealing IaC misconfigurations with Wiz 🪄

🔮 Misconfigurations Detected: 2

― Note from Wiz: "Your commits are like magic potions - keep concocting, alchemist of code! 🧪✨"

Annotations

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'sudo'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'unzip'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'bind-utils'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'python3'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'openssh-clients'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check warning on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Yum install Without Version 

Rule ID: 4f2689b2-3a22-4765-973f-c6eea7676cf2
Severity: Medium
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: The package version should always be specified when using yum install
Found: No version is specified in package 'openssh-server'

Not specifying the package version can cause failures due to unanticipated changes in required packages

Check notice on line 16 in docker/solver/Dockerfile

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz IaC Scanner

Multiple RUN, ADD, COPY, Instructions Listed 

Rule ID: 9ab4fc4b-f836-4e3b-b82d-6b16761c9f28
Severity: Low
Resource: FROM={{centos:7}}.{{RUN yum -y install openssh-clients openssh-server bind-utils sudo python3 unzip &>/dev/null && yum clean all}}
File Type: Dockerfile
Expected: There isn´t any RUN instruction that could be grouped
Found: There are RUN instructions that could be grouped

Multiple commands (RUN, Copy, And) should be grouped in order to reduce the number of layers.
View more details on Wiz Inc. (572fc38784)