From a9e2c0e1339fe528ed201c204fd9da4860c67203 Mon Sep 17 00:00:00 2001 From: Eli Trop Date: Thu, 11 Mar 2021 16:36:07 +0200 Subject: [PATCH] fix dockerfile --- Dockerfile | 12 ++++++------ scanresults@project=Checkmarx-kics-master | 1 + 2 files changed, 7 insertions(+), 6 deletions(-) create mode 100644 scanresults@project=Checkmarx-kics-master diff --git a/Dockerfile b/Dockerfile index 3e9dc11..9628f51 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,7 +1,7 @@ -FROM elitcx/kics:alpine - -COPY entrypoint.sh /entrypoint.sh - -RUN chmod +x /entrypoint.sh - +FROM elitcx/kics:alpine + +COPY entrypoint.sh /entrypoint.sh + +RUN chmod +x /entrypoint.sh + ENTRYPOINT ["/entrypoint.sh"] \ No newline at end of file diff --git a/scanresults@project=Checkmarx-kics-master b/scanresults@project=Checkmarx-kics-master new file mode 100644 index 0000000..6987975 --- /dev/null +++ b/scanresults@project=Checkmarx-kics-master @@ -0,0 +1 @@ +{"osa":null,"projectId":"702","team":"KICS","project":"Checkmarx-kics-master","link":"https://sast.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1049455&projectid=702","files":"1526","loc":"22018","scanType":"Full","output":null,"additionalDetails":{"flow-summary":{"Medium":3},"numFailedLoc":"0","scanRiskSeverity":"4","scanId":"1049455","scanStartDate":"Monday, January 4, 2021 3:02:19 PM","customFields":{},"scanRisk":"35"},"scanSummary":{"highSeverity":0,"mediumSeverity":3,"lowSeverity":1,"infoSeverity":0,"statisticsCalculationDate":"2021-01-04T15:09:22.987"},"scaResults":null,"astResults":null,"xissues":[{"vulnerability":"Denial_Of_Service_Resource_Exhaustion","vulnerabilityStatus":"TO VERIFY","similarityId":"626320759","cwe":"400","cve":null,"description":"","language":"Go","severity":"Medium","link":"https://sast.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1049455&projectid=702&pathid=1","filename":"pkg/kics/service.go","gitUrl":"","falsePositiveCount":0,"osaDetails":null,"scaDetails":null,"details":{"52":{"falsePositive":false,"codeSnippet":"\t\t\tcontent, err := ioutil.ReadAll(rc)","comment":""}},"additionalDetails":{"recommendedFix":"https://sast.checkmarx.net/CxWebClient/ScanQueryDescription.aspx?queryID=4679&queryVersionCode=107797906&queryTitle=Denial_Of_Service_Resource_Exhaustion","categories":null,"results":[{"sink":{"file":"pkg/kics/service.go","line":"62","column":"23","object":"<"},"state":"0","source":{"file":"pkg/kics/service.go","line":"52","column":"27","object":"ReadAll"}}]},"allFalsePositive":false},{"vulnerability":"Denial_Of_Service_Resource_Exhaustion","vulnerabilityStatus":"TO VERIFY","similarityId":"1471033900","cwe":"400","cve":null,"description":"","language":"Go","severity":"Medium","link":"https://sast.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1049455&projectid=702&pathid=2","filename":"test/main_test.go","gitUrl":"","falsePositiveCount":0,"osaDetails":null,"scaDetails":null,"details":{"83":{"falsePositive":false,"codeSnippet":"\tcontent, err := ioutil.ReadFile(filePath)","comment":""}},"additionalDetails":{"recommendedFix":"https://sast.checkmarx.net/CxWebClient/ScanQueryDescription.aspx?queryID=4679&queryVersionCode=107797906&queryTitle=Denial_Of_Service_Resource_Exhaustion","categories":null,"results":[{"sink":{"file":"test/main_test.go","line":"97","column":"6","object":"<"},"state":"0","source":{"file":"test/main_test.go","line":"83","column":"25","object":"ReadFile"}}]},"allFalsePositive":false},{"vulnerability":"Path_Traversal","vulnerabilityStatus":"TO VERIFY","similarityId":"251195871","cwe":"36","cve":null,"description":"","language":"Go","severity":"Medium","link":"https://sast.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1049455&projectid=702&pathid=3","filename":"cmd/builder/main.go","gitUrl":"","falsePositiveCount":0,"osaDetails":null,"scaDetails":null,"details":{"30":{"falsePositive":false,"codeSnippet":"\t\t\tcontent, err := ioutil.ReadFile(inPath)","comment":""}},"additionalDetails":{"recommendedFix":"https://sast.checkmarx.net/CxWebClient/ScanQueryDescription.aspx?queryID=4755&queryVersionCode=108916664&queryTitle=Path_Traversal","categories":"FISMA 2014;System And Information Integrity,NIST SP 800-53;SI-10 Information Input Validation (P1)","results":[{"sink":{"file":"cmd/builder/main.go","line":"74","column":"17","object":"Write"},"state":"0","source":{"file":"cmd/builder/main.go","line":"30","column":"27","object":"ReadFile"}}]},"allFalsePositive":false}],"sastScanId":null,"sastResults":true} \ No newline at end of file