ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Modify rule S6470(Docker): Improve message (#1495)

Browse Source
This commit is contained in:
Loris S 2023-03-06 13:17:03 +01:00 committed by GitHub
parent 2cf782e3e6
commit a51217c6d9
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
rules/S6470/implementation.adoc
View File

@ -8,11 +8,13 @@ ifdef::env-github,rspecator-view[]
When a dangerous wildcard is found: When a dangerous wildcard is found:
* Make sure that using globbing in a (COPY|ADD) source is safe here. * COPY: Copying using a glob pattern might inadvertently add sensitive data to the container. Make sure it is safe here.
* ADD: Adding files using a glob pattern might inadvertently add sensitive data to the container. Make sure it is safe here.
In any other case: In any other case:
* Make sure that recursively copying directories is safe here. * COPY: Copying recursively might inadvertently add sensitive data to the container. Make sure it is safe here.
* ADD: Adding files recursively might inadvertently add sensitive data to the container. Make sure it is safe here.
== Highlighting == Highlighting