Skip to content

Commit 29dd645

Browse files
author
cx-Margarita-LevitM
committed
Fix IAC vulnerability issue
1 parent 9094056 commit 29dd645

1 file changed

Lines changed: 2 additions & 3 deletions

File tree

Dockerfile

Lines changed: 2 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,15 +1,14 @@
11
# Use AST Base image
22
FROM checkmarx/ast-cli:2.3.22@sha256:64cb2c7c244a342f0fe6308654cdac2bee35d26c35985bb97294575c9c192054
33

4-
# Docker actions must be run by the default Docker user (root).
5-
USER root
6-
74
# Copy the entrypoint script and properties used for the action
85
COPY entrypoint.sh /app/entrypoint.sh
96
COPY cleanup.sh /app/cleanup.sh
107

118
RUN chmod +x /app/entrypoint.sh \
129
&& chmod +x /app/cleanup.sh
1310

11+
# Docker actions must be run by the default Docker user (root).
12+
USER nonroot
1413

1514
HEALTHCHECK NONE

0 commit comments

Comments
 (0)