[jira] [Closed] (OFBIZ-12788) Sonarcloud security hotspot in Dockerfile

Daniel Watford (Jira) Fri, 31 Mar 2023 10:09:12 -0700


     [ 
https://issues.apache.org/jira/browse/OFBIZ-12788?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Daniel Watford closed OFBIZ-12788.
----------------------------------
    Resolution: Fixed

> Sonarcloud security hotspot in Dockerfile 
> ------------------------------------------
>
>                 Key: OFBIZ-12788
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-12788
>             Project: OFBiz
>          Issue Type: Improvement
>    Affects Versions: Upcoming Branch
>            Reporter: Daniel Watford
>            Assignee: Daniel Watford
>            Priority: Minor
>             Fix For: Upcoming Branch
>
>
> Sonarcloud has highlighted a security hotspot that needs to be addressed in 
> the Dockerfile:
> [https://sonarcloud.io/project/security_hotspots?id=apache_ofbiz-framework&file=Dockerfile&fileUuid=AYcD2nc8S2HJZtLSxvMT&sinceLeakPeriod=true]
>  
> The hotspot relates to write permissions set on the docker-entrypoint script.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Closed] (OFBIZ-12788) Sonarcloud security hotspot in Dockerfile

Reply via email to