Update Jenkinsfile #41
Inline scan results
Scan result is Failed
Annotations
Check failure on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
stop dockerfile
stop dockerfile:exposed_ports
Dockerfile exposes port (22) which is in policy file DENIEDPORTS list
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn dockerfile
warn dockerfile:instruction
Dockerfile directive 'HEALTHCHECK' not found, matching condition 'not_exists' check
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:stale_feed_data
The vulnerability feed for this image distro is older than MAXAGE (2) days
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/cryptography (CVE-2023-23931 - https://nvd.nist.gov/vuln/detail/CVE-2023-23931)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/pip (CVE-2021-3572 - https://nvd.nist.gov/vuln/detail/CVE-2021-3572)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/setuptools (CVE-2022-40897 - https://nvd.nist.gov/vuln/detail/CVE-2022-40897)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/cryptography (VULNDB-326175 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-326175)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/cryptography (VULNDB-327538 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-327538)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/cryptography (VULNDB-326555 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-326555)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/cryptography (VULNDB-241320 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-241320)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/numpy (VULNDB-276799 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-276799)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in non-os package type (python) - /usr/lib/python3/dist-packages/wheel (VULNDB-304690 - http://sysdigcloud-anchore-api:8228/v1/query/vulnerabilities?id=VULNDB-304690)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - cpp-10 (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - e2fsprogs (CVE-2022-1304 - https://security-tracker.debian.org/tracker/CVE-2022-1304)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - g++-10 (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - gcc-10 (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - gcc-10-base (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - gcc-9-base (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libasan6 (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libatomic1 (CVE-2023-4039 - https://security-tracker.debian.org/tracker/CVE-2023-4039)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libblas3 (CVE-2021-4048 - https://security-tracker.debian.org/tracker/CVE-2021-4048)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libc6 (CVE-2023-4806 - https://security-tracker.debian.org/tracker/CVE-2023-4806)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libc6 (CVE-2023-4813 - https://security-tracker.debian.org/tracker/CVE-2023-4813)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libc6-dev (CVE-2023-4806 - https://security-tracker.debian.org/tracker/CVE-2023-4806)
Check warning on line 1 in Dockerfile
github-actions / Scan results for localbuild/sysdiglabs/dummy-vuln-app:latest
warn vulnerabilities
warn vulnerabilities:package
MEDIUM Vulnerability found in os package type (dpkg) - libc6-dev (CVE-2023-4813 - https://security-tracker.debian.org/tracker/CVE-2023-4813)