Skip to content

docker compose: switch to Valkey as message broker#13331

Merged
mtesauro merged 17 commits into
DefectDojo:devfrom
valentijnscholten:valkey-compose
Oct 31, 2025
Merged

docker compose: switch to Valkey as message broker#13331
mtesauro merged 17 commits into
DefectDojo:devfrom
valentijnscholten:valkey-compose

Revise 2.52 upgrade notes for Valkey integration

5440c51
Select commit
Loading
Failed to load commit list.
DryRunSecurity / General Security Analyzer succeeded Oct 27, 2025 in 1m 10s

DryRun Security

Details

General Security Analyzer Findings: 1 detected

⚠️ Hardcoded Default Secrets docker-compose.yml (click for details)
Type Hardcoded Default Secrets
Description The docker-compose.yml file contains hardcoded default values for DD_SECRET_KEY and DD_CREDENTIAL_AES_256_KEY. While these are intended as defaults for development environments, their presence in a file that could be used for production deployments without explicit overrides poses a risk. If these values are not overridden, an attacker who knows these default keys could compromise session integrity and decrypt sensitive credentials.
Filename docker-compose.yml
CodeLink
DD_SECRET_KEY: "${DD_SECRET_KEY:-hhZCp@D28z!n@NED*yB!ROMt+WzsY*iq}"
DD_CREDENTIAL_AES_256_KEY: "${DD_CREDENTIAL_AES_256_KEY:-&91a*agLqesc*0DJ+2*bAbsUZfR*4nLw}"