Reculi opened a new issue, #14:
URL: https://github.com/apache/iotdb-mcp-server/issues/14
In file Dockerfile, you may facing the vulnerablity of
dockerfile.security.missing-user.missing-user
The risk is By not specifying a USER, a program in the container may run as
'root'. This is a security hazard. If an attacker can control a process running
as root, they may have control over the container. Ensure that the last USER in
a Dockerfile is a USER other than 'root'.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
