Missing User Instruction @ /Dockerfile

**Checkmarx \(IaC\-Security\):** Missing User Instruction
**Checkmarx Project:** [Nova\-8/Damm\-Vulnerable\-CSharp\-API](https://deu.ast.checkmarx.net/projects/7e0a288a-1169-4ab4-a5a9-9ad183484848/overview?branch=master)
**Repository URL:** [https://github.com/Nova\-8/Damm\-Vulnerable\-CSharp\-API](https://github.com/Nova-8/Damm-Vulnerable-CSharp-API)
**Branch:** master
**Scan ID:** [2f22541b\-da6c\-459f\-9285\-99da61e0ed7d](https://deu.ast.checkmarx.net/projects/7e0a288a-1169-4ab4-a5a9-9ad183484848/scans?id=2f22541b-da6c-459f-9285-99da61e0ed7d&branch=master)


----
A user should be specified in the dockerfile, otherwise the image will run as root



**Locations:**

**Result 1:**
**Severity:** HIGH
**State:** TO_VERIFY
**Status:** RECURRENT
**&nbsp;&nbsp;&nbsp;&nbsp;File:** [/Dockerfile\[1,0\]](https://github.com/Nova-8/Damm-Vulnerable-CSharp-API/blob/master/Dockerfile#L1)
**&nbsp;&nbsp;&nbsp;&nbsp;Expected value:** The 'Dockerfile' should contain the 'USER' instruction
**&nbsp;&nbsp;&nbsp;&nbsp;Actual value:** The 'Dockerfile' does not contain any 'USER' instruction
&nbsp;&nbsp;&nbsp;&nbsp;Review result in Checkmarx One: [Missing User Instruction](https://deu.ast.checkmarx.net/results/2f22541b-da6c-459f-9285-99da61e0ed7d/7e0a288a-1169-4ab4-a5a9-9ad183484848/kics?result-id=pYspNqlZRvWxH4NxbW5miLkPlXQ%3D)




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Missing User Instruction @ /Dockerfile #9

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Missing User Instruction @ /Dockerfile #9

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions